JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.249.61.245

101.249.61.245 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 20%: ?

20%

ISP	CHINANET XIZANG PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.249.61.245

Whois 101.249.61.245

IP Abuse Reports for 101.249.61.245:

This IP address has been reported a total of 32 times from 14 distinct sources. 101.249.61.245 was first reported on January 23rd 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-10 13:35:41 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 15:10:37 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 _ArminS_	2026-06-01 01:09:32 (3 weeks ago)	SP-Scan 22923:12207 detected 2026.06.01 03:09:32 blocked until 2026.07.20 20:12:19	Port Scan
🇬🇧 PeravixGroup	2026-05-28 12:59:11 (3 weeks ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇪🇪 McHoneypot	2026-05-28 03:18:47 (3 weeks ago)	Minecraft server scanning dectected on port 25565	Port Scan
🇬🇧 PeravixGroup	2026-05-27 16:12:24 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 11:59:38 (3 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-05-27 08:09:17 (3 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
Anonymous	2026-04-26 15:12:12 (1 month ago)	PROTO=TCP DPT=9711	Port Scan Hacking
🇺🇸 donarev419	2026-04-08 08:25:00 (2 months ago)	Connection to port 2040 with data transfer. Data preview: USER anonymous	Port Scan Hacking
🇨🇳 ThreatBook.io	2026-03-02 00:46:08 (3 months ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.61.245	SSH
🇵🇱 sefinek.net	2026-02-19 14:08:43 (4 months ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 12281 [1] TCP Reported by: https://github ... show more Honeypot hit: Unauthorized traffic (243 bytes of payload); 12281 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-02-11 10:41:21 (4 months ago)	Honeypot hit: HTTP/1.1 request on 1107 GET / Accept: /; 1107 [1] TCP	Web App Attack
🇬🇧 spamverify.com	2026-02-03 16:29:11 (4 months ago)	Honeypot Hit: Port Scan (9000) MINIO	Web Spam Blog Spam Bad Web Bot Web App Attack
🇺🇸 MPL	2026-01-15 04:07:20 (5 months ago)	tcp/9004 (2 or more attempts)	Port Scan

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 35.203.210.181

🇫🇮 2a00:1450:4010:c1e::127

🇬🇧 188.240.59.15

🇺🇸 148.153.121.146

🇩🇪 109.94.96.33

🇳🇱 91.92.40.10

🇨🇳 59.82.83.251

🇩🇪 47.245.138.182

🇳🇱 45.148.10.151

🇺🇸 44.41.9.131

🇮🇳 34.100.248.63

🇵🇪 200.106.49.149

🇫🇮 178.20.210.152

🇺🇸 174.179.100.65

🇺🇸 165.154.206.150

🇨🇳 123.187.243.243

🇮🇳 122.160.11.40

🇨🇳 112.46.207.141

🇳🇱 91.92.40.231

🇺🇸 44.117.68.216