JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 116.207.115.254

116.207.115.254 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 26%: ?

26%

ISP	CHINANET Hubei province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Wuhan, Hubei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 116.207.115.254

Whois 116.207.115.254

IP Abuse Reports for 116.207.115.254:

This IP address has been reported a total of 23 times from 18 distinct sources. 116.207.115.254 was first reported on November 10th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇾 stroytrest	2026-06-25 10:49:32 (2 days ago)	2026-06-25T13:49:31.278530+03:00 gate kernel: [2699170.445370] nftables: JAIL-TELNET IN=wan OUT= MAC ... show more 2026-06-25T13:49:31.278530+03:00 gate kernel: [2699170.445370] nftables: JAIL-TELNET IN=wan OUT= MAC= SRC=116.207.115.254 DST=xxx.xxx.xxx.xxx LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=42684 DF PROTO=TCP SPT=37456 DPT=23 WINDOW=29040 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇧🇾 stroytrest	2026-06-24 14:04:12 (3 days ago)	2026-06-24T17:04:11.147298+03:00 gate kernel: [2624450.314139] nftables: JAIL-TELNET IN=wan OUT= MAC ... show more 2026-06-24T17:04:11.147298+03:00 gate kernel: [2624450.314139] nftables: JAIL-TELNET IN=wan OUT= MAC= SRC=116.207.115.254 DST=xxx.xxx.xxx.xxx LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=37565 DF PROTO=TCP SPT=59282 DPT=23 WINDOW=29040 RES=0x00 SYN URGP=0 ... show less	Port Scan
Anonymous	2026-06-02 17:43:59 (3 weeks ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇺🇸 sefinek.net	2026-06-01 17:24:13 (3 weeks ago)	Blocked by UFW on NY01 [23/tcp] \| SPT: 46841 \| TTL: 45 \| LEN: 60 \| TOS: 0x08 • Reported by: github.c ... show more Blocked by UFW on NY01 [23/tcp] \| SPT: 46841 \| TTL: 45 \| LEN: 60 \| TOS: 0x08 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan IoT Targeted
🇬🇧 PeravixGroup	2026-05-31 19:36:33 (3 weeks ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇬🇧 PeravixGroup	2026-05-23 23:50:54 (1 month ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 RAP	2026-05-23 21:18:40 (1 month ago)	2026-05-23 21:18:40 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇹🇷 rtbh.com.tr	2025-11-12 16:09:52 (7 months ago)	list.rtbh.com.tr report: tcp/23	Brute-Force
🇯🇵 Kinsei Engineering Inc.	2025-11-12 16:05:09 (7 months ago)	UFW:High-frequency access to non-released SSH or Telnet ports	Port Scan SSH
🇮🇳 Parth Maniar	2025-11-12 13:21:37 (7 months ago)	This IP address carried out 4 port scanning attempts on 11-11-2025. For more information or to repor ... show more This IP address carried out 4 port scanning attempts on 11-11-2025. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇩🇪 bescared	2025-11-12 12:26:39 (7 months ago)	F2B - Malicious activity detected. Unauthorized connection attempt: Telnet.	Port Scan
🇩🇪 Grizzlytools	2025-11-12 06:07:40 (7 months ago)	Kingcopy(AI-IDS)RouterOS: Portscanner detected.	Port Scan
🇺🇸 RAP	2025-11-12 00:25:05 (7 months ago)	2025-11-12 00:25:05 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇨🇳 ThreatBook.io	2025-11-11 23:58:21 (7 months ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/116.207.115.254	SSH
🇨🇿 Countryman	2025-11-11 22:28:20 (7 months ago)	repeated unauthorized connection attempts, host sweep, port 23	Hacking Brute-Force

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 186.228.152.50

🇻🇳 171.234.9.227

🇺🇸 151.245.252.136

🇨🇳 117.50.211.146

🇻🇳 103.228.36.70

🇺🇸 2600:1f18:34ac:6c44:c162:be6a:f888:f4cf

🇵🇱 172.64.200.35

🇨🇴 152.200.181.42

🇺🇸 146.190.63.73

🇺🇸 104.22.93.21

🇬🇧 89.37.172.142

🇳🇱 86.54.31.32

🇳🇱 64.34.87.185

🇷🇺 46.44.40.82

🇫🇷 91.231.89.251

🇳🇱 45.148.10.200

🇺🇸 43.135.134.180

🇺🇸 35.222.117.243

🇺🇸 216.25.89.104

🇵🇰 202.163.68.43