JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.249.63.68

101.249.63.68 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 11%: ?

11%

ISP	CHINANET XIZANG PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Chengguan Qu, Tibet

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.249.63.68

Whois 101.249.63.68

IP Abuse Reports for 101.249.63.68:

This IP address has been reported a total of 24 times from 8 distinct sources. 101.249.63.68 was first reported on February 28th 2022, and the most recent report was 16 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-06 22:37:41 (16 minutes ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-06 18:41:38 (4 hours ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-05 20:36:28 (1 day ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-23 07:02:34 (2 weeks ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-20 18:55:51 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇨🇳 ThreatBook.io	2026-04-10 22:29:28 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.63.68 20 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.63.68 2026-04-10 13:22:34 http://www.minghui.org/ show less	Web App Attack
🇨🇳 ThreatBook.io	2026-04-05 22:37:33 (2 months ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.63.68 20 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/101.249.63.68 2026-04-05 01:20:12 / show less	Web App Attack
🇺🇸 donarev419	2026-04-05 03:12:45 (2 months ago)	Connection to port 8888 with data transfer. Data preview:	Port Scan Hacking
🇺🇸 MPL	2026-01-15 16:14:38 (4 months ago)	tcp/2166 (3 or more attempts)	Port Scan
Anonymous	2026-01-15 12:43:23 (4 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇧🇷 SOC Blue Team	2026-01-06 04:48:41 (5 months ago)	Tatic: TA0011 \| Technique: T1568 \| Source: Firewall \| Country Destination: BR	Email Spam
🇺🇸 MPL	2026-01-05 19:11:10 (5 months ago)	tcp/5236 (3 or more attempts)	Port Scan
🇯🇵 mkaraki	2026-01-05 08:44:42 (5 months ago)	1767602666 # Service_probe # SIGNATURE_SEND # source_ip:101.249.63.68 # dst_port:15000 ...	Port Scan
🇺🇸 MPL	2025-12-31 07:28:28 (5 months ago)	tcp/11210 (2 or more attempts)	Port Scan
Anonymous	2025-12-18 18:18:38 (5 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 141.11.250.227

🇨🇳 101.96.198.153

🇺🇸 107.174.53.252

🇺🇦 46.229.60.71

🇬🇧 185.217.117.22

🇸🇬 47.79.11.32

🇳🇿 219.89.206.236

🇺🇸 162.216.149.5

🇺🇸 150.107.36.223

🇺🇸 149.102.242.64

🇭🇰 45.142.154.99

🇧🇪 34.77.29.152

🇲🇿 197.219.228.246

🇺🇸 162.216.150.221

🇺🇸 162.216.149.225

🇻🇳 116.110.0.137

🇺🇸 104.28.245.40

🇵🇱 81.210.53.108

🇺🇸 54.204.240.232

🇩🇪 212.30.36.160