JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.249.63.170

101.249.63.170 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 30%: ?

30%

ISP	CHINANET XIZANG PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.249.63.170

Whois 101.249.63.170

IP Abuse Reports for 101.249.63.170:

This IP address has been reported a total of 28 times from 13 distinct sources. 101.249.63.170 was first reported on June 10th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇯🇵 mkaraki	2026-06-10 19:56:41 (1 day ago)	1781121400 # Service_probe # SIGNATURE_SEND # source_ip:101.249.63.170 # dst_port:8890 ...	Port Scan
Anonymous	2026-06-03 05:18:59 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 21:12:00 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-01 09:13:50 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-05-07 19:21:29 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇦🇺 trentwiles.com	2026-04-27 20:20:37 (1 month ago)	Unauthorized connection attempt detected from IP address 101.249.63.170 to port 40005 [SYD]	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-22 21:38:52 (1 month ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 3369 [1] TCP	Port Scan
Anonymous	2026-04-22 19:40:28 (1 month ago)	Unauthorized connection attempt. Port 14440	Port Scan
🇨🇳 ThreatBook.io	2026-03-17 01:31:28 (2 months ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.63.170 2 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.63.170 2026-03-16 10:36:41 //cn.bing.com:443 show less	Web App Attack
🇩🇪 iNetWorker	2026-02-08 11:50:22 (4 months ago)	firewall-block, port(s): 9042/tcp	Port Scan
🇺🇸 MPL	2026-01-26 17:40:25 (4 months ago)	tcp/51000 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-01-26 17:40:25 (4 months ago)	tcp/51000	Port Scan
🇺🇸 MPL	2026-01-25 04:00:00 (4 months ago)	tcp/98	Port Scan
Anonymous	2026-01-21 00:57:29 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 RAP	2026-01-21 00:56:35 (4 months ago)	2026-01-21 00:56:35 UTC Unauthorized activity to TCP port 9200.	Port Scan

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 165.154.129.151

🇨🇳 106.75.186.101

🇷🇴 92.118.39.236

🇷🇴 80.94.92.171

🇩🇪 213.209.159.217

🇨🇳 171.114.224.142

🇺🇸 66.132.195.40

🇳🇱 45.148.10.151

🇬🇧 35.203.210.186

🇧🇷 20.226.33.200

🇺🇸 20.64.105.251

🇷🇺 217.195.94.243

🇺🇸 205.210.31.42

🇺🇸 192.3.196.157

🇺🇸 162.216.150.232

🇺🇸 147.185.132.106

🇭🇰 118.193.44.169

🇨🇳 106.75.156.189

🇮🇩 103.110.34.131

🇵🇱 87.251.64.110