JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.249.62.39

101.249.62.39 was found in our database!

This IP was reported 34 times. Confidence of Abuse is 28%: ?

28%

ISP	CHINANET XIZANG PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.249.62.39

Whois 101.249.62.39

IP Abuse Reports for 101.249.62.39:

This IP address has been reported a total of 34 times from 17 distinct sources. 101.249.62.39 was first reported on February 6th 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-09 01:41:28 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 11:34:48 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 08:35:13 (1 week ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇬🇧 PeravixGroup	2026-05-26 16:47:11 (2 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 xmission.com	2026-05-23 15:28:34 (3 weeks ago)	Blocked by UFW (TCP on 2996) Source port: 18926 TTL: 238 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 2996) Source port: 18926 TTL: 238 Packet length: 44 TOS: 0x00 This report (for 101.249.62.39) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-19 18:00:02 (3 weeks ago)	Honeypot hit: Large payload (1388 bytes); 1467 [1] TCP	Hacking
Anonymous	2026-05-11 16:52:22 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇨🇳 ThreatBook.io	2026-05-08 00:32:34 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.62.39 20 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.62.39 2026-05-07 21:11:09 http://www.soso.com/ show less	Web App Attack
🇺🇸 trentwiles.com	2026-04-28 01:01:21 (1 month ago)	Unauthorized connection attempt detected from IP address 101.249.62.39 to port 5000 [SFO]	Port Scan
🇬🇧 PeravixGroup	2026-04-24 15:42:39 (1 month ago)	HoneyPot hit - Aaran.cloud \| Couchdb Exploit \| database attack	Hacking Web App Attack
🇩🇪 _ArminS_	2026-04-22 19:38:51 (1 month ago)	SP-Scan 25610:8082 detected 2026.04.22 21:38:51 blocked until 2026.06.11 14:41:38	Port Scan
🇵🇱 sefinek.net	2026-02-19 15:56:43 (3 months ago)	Honeypot hit: HTTP/1.1 request on 6666 GET / Accept: /; 6666 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 6666 GET / Accept: /; 6666 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇳🇱 StopAbuse	2026-02-07 07:34:33 (4 months ago)	tcp/5280	Port Scan
🇳🇱 VMHeaven.io	2026-02-04 15:38:38 (4 months ago)	Blocked by UFW [1443/tcp] Source port: 21294 TTL: 232 Packet length: 44	Port Scan
🇸🇬 dankmemer3920	2026-01-26 09:45:55 (4 months ago)	CrowdSec: import to_import.txt- 56363 ips	Port Scan

Showing 1 to 15 of 34 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 35.203.210.190

🇨🇳 220.250.10.58

🇺🇸 205.210.31.69

🇬🇧 193.163.125.232

🇨🇳 111.228.16.100

🇯🇵 103.125.146.34

🇯🇵 103.125.146.32

🇷🇴 80.94.92.171

🇺🇸 64.62.156.220

🇬🇧 5.198.94.230

🇮🇳 2401:4900:1f31:4057:c1a8:3fd9:fba3:fac5

🇩🇪 158.176.13.154

🇺🇸 65.49.1.192

🇺🇸 65.49.1.80

🇺🇸 52.224.247.165

🇳🇱 45.148.10.151

🇳🇱 45.142.193.164

🇳🇱 45.142.193.131

🇧🇪 34.38.218.86

🇮🇳 27.123.88.126