JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 114.97.190.130

114.97.190.130 was found in our database!

This IP was reported 53 times. Confidence of Abuse is 28%: ?

28%

ISP	CHINANET Anhui PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Hefei, Anhui

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 114.97.190.130

Whois 114.97.190.130

IP Abuse Reports for 114.97.190.130:

This IP address has been reported a total of 53 times from 26 distinct sources. 114.97.190.130 was first reported on December 5th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-29 12:41:13 (3 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 BIV	2026-05-28 12:11:13 (3 weeks ago)	Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 14534. Automated tiered (T-Pot+DS ... show more Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 14534. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-28 00:01:42 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-05-26 08:26:04 (3 weeks ago)	Blocked by UFW (TCP on 4000) Source port: 53296 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 4000) Source port: 53296 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 114.97.190.130) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2026-05-18 00:54:29 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/114.97.190.130 2 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/114.97.190.130 2026-05-17 02:51:23 http://dongtaiwang.com/ show less	Web App Attack
🇺🇸 MPL	2026-05-15 20:23:19 (1 month ago)	tcp/80 (2 or more attempts)	Port Scan
🇮🇩 David Koswari	2026-05-11 05:15:00 (1 month ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇧🇾 StatsMe	2026-04-30 21:28:52 (1 month ago)	2026-04-30T02:13:56.453574+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇨🇳 ThreatBook.io	2026-04-29 01:02:57 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/114.97.190.130 2 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/114.97.190.130 2026-04-28 16:17:45 / show less	Web App Attack
🇦🇺 trentwiles.com	2026-04-22 07:50:37 (1 month ago)	Unauthorized connection attempt detected from IP address 114.97.190.130 to port 3105 [SYD]	Port Scan
🇳🇱 donarev419	2026-04-16 03:46:07 (2 months ago)	Connection to port 8801 with data transfer. Data preview: USER anonymous	Port Scan Hacking
🇩🇪 dispaisyenterprises	2026-04-13 22:15:47 (2 months ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 50000 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 50000 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 MPL	2026-04-13 18:24:36 (2 months ago)	tcp/1025 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-04-13 07:25:47 (2 months ago)	tcp/60001 (3 or more attempts)	Port Scan
🇩🇪 _ArminS_	2026-04-12 11:57:05 (2 months ago)	SP-Scan 58718:50000 detected 2026.04.12 13:57:05 blocked until 2026.06.01 06:59:52	Port Scan

Showing 1 to 15 of 53 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 213.128.70.19

🇧🇷 177.11.196.84

🇭🇰 103.100.208.168

🇳🇱 103.69.224.23

🇦🇺 2620:171:75:f003:9999::244

🇦🇷 200.80.43.223

🇺🇸 193.33.236.160

🇺🇸 147.182.196.204

🇧🇩 103.183.62.1

🇧🇩 103.86.198.162

🇰🇭 103.30.198.130

🇺🇸 91.230.168.168

🇬🇧 89.37.172.147

🇧🇷 20.226.88.145

🇺🇸 20.169.49.231

🇺🇸 162.216.150.51

🇨🇳 113.221.98.191

🇧🇩 103.149.56.17

🇬🇷 62.1.254.49

🇳🇱 45.148.10.157