JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.4.161.37

106.4.161.37 was found in our database!

This IP was reported 73 times. Confidence of Abuse is 26%: ?

26%

ISP	CHINANET JIANGXI PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	bta.net.cn
Country	🇨🇳 China
City	Nanchang, Jiangxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.4.161.37

Whois 106.4.161.37

IP Abuse Reports for 106.4.161.37:

This IP address has been reported a total of 73 times from 25 distinct sources. 106.4.161.37 was first reported on March 2nd 2021, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-31 03:40:15 (2 weeks ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 Hobby Bob	2026-05-03 00:50:09 (1 month ago)	2026-05-03T00:50:09.468322+00:00 server dovecot: pop3-login: Disconnected: Connection closed (no aut ... show more 2026-05-03T00:50:09.468322+00:00 server dovecot: pop3-login: Disconnected: Connection closed (no auth attempts in 0 secs): user=, rip=106.4.161.37, lip=X.X.X.X session= show less	Port Scan Hacking
🇺🇸 cybsecaoccol	2026-05-02 23:33:08 (1 month ago)	unauthorized connection or malicious port scan attempted on tcp port 23 - dr	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-02 15:45:10 (1 month ago)	Honeypot hit: Unauthorized traffic (4 bytes of payload); 20002 [1] TCP	Port Scan
🇦🇺 trentwiles.com	2026-04-28 17:52:18 (1 month ago)	Unauthorized connection attempt detected from IP address 106.4.161.37 to port 9018 [SYD]	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-28 04:28:19 (1 month ago)	Honeypot hit: Empty payload (likely service probe); 8125 [1] TCP	Port Scan
Anonymous	2026-04-27 15:50:41 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 RAP	2026-04-27 00:10:55 (1 month ago)	2026-04-27 00:10:55 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇵🇱 sefinek.net	2026-04-23 10:51:35 (1 month ago)	Honeypot hit: HTTP/1.1 request on 32100 GET / Accept: /; 32100 [1] TCP Reported by: https://githu ... show more Honeypot hit: HTTP/1.1 request on 32100 GET / Accept: /; 32100 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇯🇵 mkaraki	2026-04-23 04:47:47 (1 month ago)	1776919663 # Service_probe # SIGNATURE_SEND # source_ip:106.4.161.37 # dst_port:9443 ...	Port Scan
🇧🇾 StatsMe	2026-03-16 22:39:39 (2 months ago)	2026-03-16T23:58:17.864575+0300 ET SCAN NMAP -sS window 1024	Port Scan
Anonymous	2026-03-16 19:18:14 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-03-01 01:45:33 (3 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-02-25 21:21:26 (3 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-02-25 19:47:26 (3 months ago)	tcp/3306	Port Scan

Showing 1 to 15 of 73 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.129

🇳🇱 195.178.110.132

🇺🇸 172.236.228.115

🇺🇸 172.233.219.44

🇺🇸 139.144.239.98

🇳🇮 138.97.162.26

🇲🇾 113.211.214.107

🇳🇱 45.148.10.151

🇪🇸 88.21.166.161

🇪🇸 79.117.193.190

🇺🇸 66.132.186.140

🇺🇸 23.26.0.63

🇨🇦 15.223.209.84

🇺🇸 195.184.76.133

🇳🇱 192.42.116.20

🇫🇮 147.185.133.109

🇮🇹 146.241.111.154

🇹🇭 118.193.56.149

🇮🇳 103.25.47.94

🇷🇺 91.78.118.54