JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.109.206.56

101.109.206.56 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 0%: ?

ISP	TOT Public Company Limited
Usage Type	Fixed Line ISP
ASN	AS23969
Hostname(s)	node-14qg.pool-101-109.dynamic.nt-isp.net
Domain Name	totidc.net
Country	🇹🇭 Thailand
City	Bangkok, Bangkok

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.109.206.56

Whois 101.109.206.56

IP Abuse Reports for 101.109.206.56:

This IP address has been reported a total of 33 times from 19 distinct sources. 101.109.206.56 was first reported on October 12th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-05-14 06:00:00 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=3)	Hacking Brute-Force SSH
🇺🇸 RAP	2026-03-09 00:33:26 (3 months ago)	2026-03-09 00:33:26 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇺🇸 RAP	2026-03-08 22:30:44 (3 months ago)	2026-03-08 22:30:44 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇺🇸 RAP	2026-03-08 21:47:01 (3 months ago)	2026-03-08 21:47:01 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇫🇷 sthoyer.de	2026-03-08 20:15:24 (3 months ago)	Mar 8 21:15:23 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Mar 8 21:15:23 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=101.109.206.56 DST=173.212.223.67 LEN=44 TOS=0x00 PREC=0x20 TTL=237 ID=30885 PROTO=TCP SPT=58230 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 RAP	2026-03-08 19:51:00 (3 months ago)	2026-03-08 19:51:00 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇺🇸 RAP	2026-03-08 18:11:49 (3 months ago)	2026-03-08 18:11:49 UTC Unauthorized activity to TCP port 1433. SQL	Port Scan
🇺🇸 MPL	2026-03-08 16:13:12 (3 months ago)	tcp/445 (2 or more attempts)	Port Scan
🇨🇦 Largnet SOC	2026-03-08 15:58:36 (3 months ago)	101.109.206.56 triggered Icarus honeypot on port 445. Check us out on github.	Port Scan Hacking
🇮🇳 Mr.Singh	2026-03-08 09:30:00 (3 months ago)	NFT blocked 101.109.206.56 on 08-Mar-2026..	Port Scan Brute-Force
🇺🇸 Cyber Crusader	2026-03-08 06:24:21 (3 months ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇫🇷 vincent_EUDIER	2026-03-08 05:20:07 (3 months ago)	ET SCAN Suspicious inbound to MSSQL port 1433	Port Scan
🇺🇸 sumnone	2026-03-08 02:58:18 (3 months ago)	Port probing on unauthorized port 1433	Port Scan Hacking Exploited Host
🇳🇱 donarev419	2026-03-08 00:24:49 (3 months ago)	Connection to port 445 with data transfer. Data preview:	Port Scan Hacking
🇺🇸 xmission.com	2026-03-07 22:01:04 (3 months ago)	Blocked by UFW (TCP on 1433) Source port: 43210 TTL: 242 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1433) Source port: 43210 TTL: 242 Packet length: 44 TOS: 0x00 This report (for 101.109.206.56) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇲 216.10.214.35

🇨🇦 199.167.138.45

🇹🇼 198.235.24.91

🇬🇧 193.32.209.254

🇬🇧 185.247.137.195

🇩🇪 185.220.101.20

🇮🇷 185.180.131.9

🇺🇸 173.239.218.159

🇺🇸 147.185.132.28

🇺🇸 147.182.247.10

🇨🇦 144.217.74.127

🇮🇪 128.251.36.118

🇩🇪 109.163.238.250

🇨🇭 104.251.180.164

🇺🇸 104.236.83.20

🇺🇸 104.210.140.135

🇮🇳 103.127.30.137

🇳🇱 91.92.40.50

🇵🇱 87.251.64.176

🇩🇪 84.200.192.87