JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.117.110.104

106.117.110.104 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 46%: ?

46%

ISP	CHINANET hebei province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shijiazhuang, Hebei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.117.110.104

Whois 106.117.110.104

IP Abuse Reports for 106.117.110.104:

This IP address has been reported a total of 37 times from 18 distinct sources. 106.117.110.104 was first reported on December 5th 2025, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 dispaisyenterprises	2026-06-25 16:46:48 (5 hours ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 8139 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 8139 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-09 18:26:29 (2 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 23:22:53 (2 weeks ago)	Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: ... show more Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: MEDIUM. Aaran.cloud show less	Port Scan Brute-Force
🇩🇪 femboy.cat	2026-06-08 15:37:11 (2 weeks ago)	Port scan to tcp/6581 from 106.117.110.104	Brute-Force
🇺🇸 xmission.com	2026-06-08 14:19:28 (2 weeks ago)	Blocked by UFW (TCP on 16030) Source port: 8159 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 16030) Source port: 8159 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 106.117.110.104) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-07 14:59:19 (2 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
Anonymous	2026-06-07 04:36:12 (2 weeks ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 6565 [1] TCP Reported by: https://github.c ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 6565 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇷🇸 Scan	2026-06-07 02:20:11 (2 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-06 14:58:47 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 11:52:23 (2 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-05 07:33:43 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-04 22:04:32 (3 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
Anonymous	2026-06-04 21:39:27 (3 weeks ago)	Honeypot hit: Unauthorized traffic (4 bytes of payload); 9000 [1] TCP Reported by: https://github.co ... show more Honeypot hit: Unauthorized traffic (4 bytes of payload); 9000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇵🇱 sefinek.net	2026-06-04 08:03:51 (3 weeks ago)	Honeypot hit: Empty payload (likely service probe); 9000 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 9000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-03 18:43:09 (3 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.184.76.90

🇳🇱 195.178.110.30

🇧🇹 157.10.138.68

🇲🇾 49.124.154.171

🇳🇱 45.148.10.147

🇬🇭 41.139.19.239

🇨🇳 36.138.134.121

🇮🇱 2.54.84.186

🇲🇾 219.93.156.9

🇺🇸 66.132.172.121

🇮🇶 65.20.166.171

🇱🇹 45.227.254.170

🇺🇸 20.80.88.197

🇧🇬 185.253.160.24

🇧🇷 131.161.249.165

🇳🇱 91.92.40.29

🇬🇧 193.163.125.91

🇳🇱 185.236.20.195

🇳🇱 176.65.149.178

🇨🇦 85.217.149.68