JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 114.97.191.42

114.97.191.42 was found in our database!

This IP was reported 62 times. Confidence of Abuse is 40%: ?

40%

ISP	CHINANET Anhui PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Hefei, Anhui

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 114.97.191.42

Whois 114.97.191.42

IP Abuse Reports for 114.97.191.42:

This IP address has been reported a total of 62 times from 28 distinct sources. 114.97.191.42 was first reported on December 4th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Cyber Crusader	2026-06-01 04:58:05 (1 week ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇬🇧 PeravixGroup	2026-06-01 02:56:34 (1 week ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 donarev419	2026-05-26 12:22:27 (2 weeks ago)	Connection to port 6666 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:6666 ... show more Connection to port 6666 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:6666 Accept: / show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-25 18:08:02 (2 weeks ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇺🇸 MPL	2026-05-21 21:28:53 (3 weeks ago)	tcp/25565 (2 or more attempts)	Port Scan
Anonymous	2026-05-20 18:53:04 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 17:41:18 (3 weeks ago)	Honeypot hit: Empty payload (likely service probe); 6380 [1] TCP	Port Scan
🇺🇸 MPL	2026-05-20 16:33:38 (3 weeks ago)	tcp/2278 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-05-15 22:57:55 (3 weeks ago)	tcp/8080	Port Scan
🇳🇱 donarev419	2026-05-06 02:23:07 (1 month ago)	Port scan detected on port 8069 (connection without data transfer)	Port Scan
Anonymous	2026-05-05 13:47:47 (1 month ago)	Drop from IP address 114.97.191.42 to tcp-port 5566	Port Scan
🇩🇪 iNetWorker	2026-04-27 23:40:38 (1 month ago)	firewall-block, port(s): 541/tcp	Port Scan
🇬🇧 gbzret4d	2026-04-24 02:39:39 (1 month ago)	Honeypot [uk-production01]: Unauthorized traffic (16 bytes of payload); 60010 [1] TCP	Port Scan
Anonymous	2026-04-17 09:32:55 (1 month ago)	Unauthorized connection attempt. Port 33039	Port Scan
🇺🇸 RAP	2026-04-16 19:57:37 (1 month ago)	2026-04-16 19:57:37 UTC Unauthorized activity to TCP port 22. SSH	SSH

Showing 1 to 15 of 62 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 185.237.97.248

🇱🇹 77.90.185.16

🇨🇳 223.75.122.142

🇺🇸 208.84.101.231

🇳🇱 195.178.110.30

🇲🇽 187.194.142.89

🇺🇸 185.181.252.147

🇺🇸 173.239.240.54

🇨🇳 153.37.177.219

🇨🇳 120.48.22.91

🇨🇱 104.23.202.232

🇩🇪 5.231.28.193

🇺🇸 2601:19b:1081:f550:c158:ca07:8807:e53c

🇻🇳 183.91.27.6

🇩🇪 167.94.145.17

🇹🇭 122.154.74.205

🇵🇰 103.74.21.165

🇺🇸 50.116.44.176

🇷🇺 46.34.144.9

🇰🇷 43.164.130.238