JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.249.63.222

101.249.63.222 was found in our database!

This IP was reported 39 times. Confidence of Abuse is 27%: ?

27%

ISP	CHINANET XIZANG PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.249.63.222

Whois 101.249.63.222

IP Abuse Reports for 101.249.63.222:

This IP address has been reported a total of 39 times from 20 distinct sources. 101.249.63.222 was first reported on March 16th 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-10 10:46:33 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-06-02 23:52:43 (2 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-02 14:00:24 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-29 04:24:17 (2 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 cybsecaoccol	2026-05-28 20:04:28 (2 weeks ago)	unauthorized connection or malicious port scan attempted on tcp port 22 - dr	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-28 14:31:29 (3 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-05-13 01:18:40 (1 month ago)	Blocked by UFW (TCP on 2277) Source port: 43977 TTL: 238 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 2277) Source port: 43977 TTL: 238 Packet length: 44 TOS: 0x00 This report (for 101.249.63.222) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2026-05-01 00:56:22 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.63.222 2 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.63.222 2026-04-30 18:50:16 http://www.soso.com/ show less	Web App Attack
🇦🇺 trentwiles.com	2026-04-21 06:23:20 (1 month ago)	Unauthorized connection attempt detected from IP address 101.249.63.222 to port 2377 [SYD]	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-20 16:37:21 (1 month ago)	Honeypot hit: Empty payload (likely service probe); 7530 [1] TCP	Port Scan
🇺🇸 RAP	2026-04-20 10:49:35 (1 month ago)	2026-04-20 10:49:35 UTC Unauthorized activity to TCP port 8089. Web App	Port Scan Web App Attack
Anonymous	2026-04-19 05:05:59 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇦🇺 LiftUp Hosting	2026-03-27 07:45:05 (2 months ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 12208 [1] TCP	Port Scan
🇳🇱 ras07	2026-03-26 12:00:15 (2 months ago)	Brute force SSH login attempts.	Brute-Force SSH
🇩🇪 Moritz	2026-03-09 15:15:03 (3 months ago)	Honeypot hit: HTTP/1.1 request on 10022 GET / Accept: /; 10022 [1] TCP Reported by: https://githu ... show more Honeypot hit: HTTP/1.1 request on 10022 GET / Accept: /; 10022 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot

Showing 1 to 15 of 39 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 210.86.225.158

🇨🇦 198.50.202.93

🇨🇳 120.236.49.131

🇮🇩 103.215.187.225

🇳🇱 93.123.109.152

🇵🇱 87.251.64.147

🇸🇬 2a09:bac5:55ff:1d0f::2e5:7

🇺🇸 2600:3c03::2000:50ff:fedb:3547

🇻🇳 210.86.225.157

🇻🇳 210.86.225.156

🇫🇷 85.217.140.9

🇷🇺 81.23.173.32

🇫🇷 2001:861:8d61:85f0:f9bc:f84b:cf69:80e0

🇦🇷 191.84.247.230

🇧🇷 177.2.7.116

🇺🇸 162.216.150.18

🇨🇳 121.40.217.100

🇭🇰 118.26.39.178

🇻🇳 116.99.173.91

🇨🇿 46.135.100.183