JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.249.62.234

101.249.62.234 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 23%: ?

23%

ISP	CHINANET XIZANG PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.249.62.234

Whois 101.249.62.234

IP Abuse Reports for 101.249.62.234:

This IP address has been reported a total of 37 times from 16 distinct sources. 101.249.62.234 was first reported on February 17th 2022, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-11 00:32:33 (2 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 06:46:32 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇨🇭 4server	2026-05-21 13:38:06 (1 month ago)	[ThuMay2115:38:03.2440492026][security2:error][pid29192:tid29204][client101.249.62.234:0]ModSecurity ... show more [ThuMay2115:38:03.2440492026][security2:error][pid29192:tid29204][client101.249.62.234:0]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorGEmatched5atTX:anomaly_score.[file\"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf\"][line\"94\"][id\"949110\"][msg\"InboundAnomalyScoreExceeded\(TotalScore:5\)\"][severity\"CRITICAL\"][ver\"OWASP_CRS/3.3.9\"][tag\"application-multi\"][tag\"language-multi\"][tag\"platform-multi\"][tag\"attack-generic\"][hostname\"www.4host.biz\"][uri\"/theme/default/assets/compoments.js\"][unique_id\"ag8Ku9c8mOJxxgsnRo8tPwAAAAo\"] show less	Hacking Web App Attack
🇳🇱 donarev419	2026-05-19 05:39:58 (1 month ago)	Connection to port 11211 with data transfer. Data preview: USER anonymous	Port Scan Hacking
Anonymous	2026-05-15 16:41:36 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 gbzret4d	2026-05-07 05:34:39 (1 month ago)	Honeypot [uk-production01]: Unauthorized traffic (16 bytes of payload); 44400 [1] TCP	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-29 01:05:58 (1 month ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 9131 [1] TCP	Port Scan
🇨🇳 ThreatBook.io	2026-04-23 00:36:39 (2 months ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.62.234	SSH
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-19 17:25:25 (2 months ago)	Honeypot hit: HTTP/1.1 request on 1754 GET / Accept: /; 1754 [1] TCP	Web App Attack
🇩🇪 ValtonTahiri	2026-04-06 02:42:07 (2 months ago)	Honeypot hit: HTTP/1.1 request on 9443 GET / Accept: / Full payload: GET / HTTP/1.1 Host: [SOME-I ... show more Honeypot hit: HTTP/1.1 request on 9443 GET / Accept: / Full payload: GET / HTTP/1.1 Host: [SOME-IP]:9443 Accept: / on 9443/TCP (1 attempt) show less	Hacking Bad Web Bot
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-05 09:33:05 (2 months ago)	Honeypot hit: HTTP/1.1 request on 6688 GET / Accept: /; 6688 [1] TCP	Web App Attack
🇨🇳 ThreatBook.io	2026-04-03 01:50:37 (2 months ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.62.234	SSH
🇺🇸 drewf.ink	2026-03-09 14:50:10 (3 months ago)	[14:50] Port scanning. Port(s) scanned: TCP/8002	Port Scan
🇨🇦 Largnet SOC	2026-02-28 19:44:04 (3 months ago)	101.249.62.234 triggered Icarus honeypot on port 1433. Check us out on github.	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-02-20 04:33:46 (4 months ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 7460 [1] TCP	Port Scan

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.132.162

🇺🇸 152.32.150.7

🇫🇮 147.185.133.12

🇺🇸 143.42.0.20

🇫🇷 91.231.89.119

🇨🇦 85.217.149.57

🇺🇸 45.79.207.111

🇯🇵 8.216.8.168

🇬🇧 206.189.19.232

🇳🇱 195.178.110.227

🇳🇱 195.178.110.217

🇺🇸 43.130.9.111

🇻🇳 27.79.47.240

🇺🇸 20.65.193.94

🇷🇺 188.0.169.98

🇧🇷 177.30.64.65

🇺🇸 173.255.223.62

🇫🇮 147.185.133.224

🇺🇸 144.24.6.157

🇺🇸 143.42.1.213