JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.249.62.61

101.249.62.61 was found in our database!

This IP was reported 30 times. Confidence of Abuse is 38%: ?

38%

ISP	CHINANET XIZANG PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.249.62.61

Whois 101.249.62.61

IP Abuse Reports for 101.249.62.61:

This IP address has been reported a total of 30 times from 16 distinct sources. 101.249.62.61 was first reported on February 22nd 2022, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 security.rdmc.fr	2026-06-13 17:45:09 (4 days ago)	IP in Malicious Database	Web App Attack
🇬🇧 PeravixGroup	2026-06-12 02:39:01 (5 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 drewf.ink	2026-06-12 02:38:15 (5 days ago)	[02:38] Port scanning. Port(s) scanned: TCP/3306	Port Scan
🇩🇪 dispaisyenterprises	2026-06-11 20:15:48 (5 days ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 49159 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 49159 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-08 20:27:32 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-03 18:36:02 (2 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 anycast_ac	2026-06-03 15:32:54 (2 weeks ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/6667 (generic). Commands captur ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/6667 (generic). Commands captured: $ GET / HTTP/1.1 show less	DDoS Attack IoT Targeted Brute-Force
🇬🇧 PeravixGroup	2026-06-03 09:35:21 (2 weeks ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
🇩🇪 femboy.cat	2026-05-30 20:08:46 (2 weeks ago)	Port scan to tcp/3389 from 101.249.62.61	Brute-Force
🇬🇧 PeravixGroup	2026-04-23 08:48:54 (1 month ago)	HoneyPot hit - Aaran.cloud \| Tls Probe \| reconnaissance \| [TLS Handshake/SNI Probe] SP7_LW$HUu ^""\|! ... show more HoneyPot hit - Aaran.cloud \| Tls Probe \| reconnaissance \| [TLS Handshake/SNI Probe] SP7_LW$HUu ^""\|!v\64!V'$F&+/,0 /5 { + 3&$ =zF? YzSC[c}f rh show less	Web App Attack
Anonymous	2026-04-11 21:00:26 (2 months ago)	Fail2Ban triggered	Spoofing Port Scan
Anonymous	2026-04-10 21:55:42 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇷 GoodOldTOS	2026-04-05 16:15:23 (2 months ago)	Connection to Oracle honeypot	Hacking
🇬🇧 spamverify.com	2026-02-16 00:10:49 (4 months ago)	Honeypot Hit: Port Scan (6443) CCS	Web Spam Blog Spam Bad Web Bot Web App Attack
🇫🇮 Nullcore07	2026-02-11 00:59:15 (4 months ago)	2026-02-11 00:59:15 UTC Unauthorized activity to TCP port 5000. TCP connection established to port 5 ... show more 2026-02-11 00:59:15 UTC Unauthorized activity to TCP port 5000. TCP connection established to port 5000 (redirect=true). Banner sent; connection dropped. show less	Port Scan

Showing 1 to 15 of 30 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.51

🇵🇪 181.176.231.166

🇲🇾 115.135.29.255

🇰🇷 110.14.190.221

🇸🇬 86.105.106.72

🇸🇬 84.247.146.34

🇻🇪 82.86.115.145

🇨🇳 49.64.242.249

🇩🇿 41.99.69.29

🇰🇷 222.109.73.135

🇰🇷 211.46.188.16

🇲🇽 187.246.16.137

🇲🇽 187.190.35.163

🇧🇷 179.151.5.159

🇺🇸 172.236.228.38

🇺🇸 167.99.54.222

🇺🇸 166.62.41.190

🇺🇸 159.203.179.244

🇭🇰 144.48.241.162

🇺🇸 135.237.125.195