JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.249.60.159

101.249.60.159 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 36%: ?

36%

ISP	CHINANET XIZANG PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.249.60.159

Whois 101.249.60.159

IP Abuse Reports for 101.249.60.159:

This IP address has been reported a total of 31 times from 13 distinct sources. 101.249.60.159 was first reported on February 7th 2022, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-05 00:26:01 (5 hours ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-04 16:53:51 (13 hours ago)	Honeypot detection: LDAP injection / directory service abuse attempt on port 9042. Severity: MEDIUM. ... show more Honeypot detection: LDAP injection / directory service abuse attempt on port 9042. Severity: MEDIUM. Aaran.cloud show less	Web App Attack
🇵🇱 sefinek.net	2026-06-04 14:48:26 (15 hours ago)	Honeypot hit: HTTP/1.1 request on 10000 GET / Accept: /; 10000 [1] TCP Reported by: https://githu ... show more Honeypot hit: HTTP/1.1 request on 10000 GET / Accept: /; 10000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇺🇸 xmission.com	2026-06-04 09:13:46 (21 hours ago)	Blocked by UFW (TCP on 5557) Source port: 13667 TTL: 238 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 5557) Source port: 13667 TTL: 238 Packet length: 44 TOS: 0x00 This report (for 101.249.60.159) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-03 03:48:25 (2 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-05-13 14:14:14 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-05-08 07:26:23 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 Justin F. \| AS204464	2026-05-07 01:05:05 (4 weeks ago)	Honeypot [nx-infrastructure]: Unauthorized traffic (243 bytes of payload); 16073 [1] TCP Reported by ... show more Honeypot [nx-infrastructure]: Unauthorized traffic (243 bytes of payload); 16073 [1] TCP Reported by: Justin F. show less	Port Scan
Anonymous	2026-04-17 06:13:14 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-05 00:04:35 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 6071 [1] TCP	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-03-29 09:38:00 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 12338 [1] TCP	Port Scan
🇺🇸 LSPCCU	2026-03-23 05:04:12 (2 months ago)	TSEC Honeypot Network report. Threat score: 60/100. Categories: Hacking. Honeypot: ssh-telnet, cowri ... show more TSEC Honeypot Network report. Threat score: 60/100. Categories: Hacking. Honeypot: ssh-telnet, cowrie. Context: 101. show less	Hacking
🇩🇪 Moritz	2026-03-17 21:43:43 (2 months ago)	Honeypot hit: Unauthorized traffic (15 bytes of payload); 10000 [1] TCP	Port Scan
🇩🇪 _ArminS_	2026-01-31 23:20:30 (4 months ago)	SP-Scan 34343:2118 detected 2026.02.01 00:20:30 blocked until 2026.03.22 17:23:17	Port Scan
Anonymous	2026-01-30 15:07:25 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 69.5.169.149

🇩🇪 69.5.169.44

🇩🇪 69.5.169.29

🇩🇪 69.5.169.8

🇲🇾 47.250.14.85

🇲🇽 38.124.192.114

🇷🇴 2.57.121.112

🇨🇳 218.4.156.254

🇰🇷 210.114.22.126

🇺🇿 195.158.14.232

🇫🇮 172.217.37.146

🇨🇳 120.48.154.88

🇩🇪 69.5.169.123

🇩🇪 64.89.163.50

🇳🇱 45.148.10.141

🇮🇹 37.32.80.182

🇬🇧 35.203.211.28

🇸🇬 4.194.4.255

🇹🇷 212.252.136.133

🇬🇧 195.140.214.22