JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.68.6.28

101.68.6.28 was found in our database!

This IP was reported 28 times. Confidence of Abuse is 36%: ?

36%

ISP	UNICOM ZheJiang Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Hangzhou, Zhejiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.68.6.28

Whois 101.68.6.28

IP Abuse Reports for 101.68.6.28:

This IP address has been reported a total of 28 times from 10 distinct sources. 101.68.6.28 was first reported on April 29th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-04 21:56:50 (2 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-05-20 12:50:37 (2 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 11:54:06 (2 weeks ago)	Honeypot hit: Large payload (1388 bytes); 3140 [1] TCP	Hacking
🇷🇸 Scan	2026-05-19 02:35:15 (2 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
Anonymous	2026-05-18 13:20:48 (2 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 xmission.com	2026-05-18 11:55:55 (2 weeks ago)	Blocked by UFW (TCP on 2162) Source port: 41721 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 2162) Source port: 41721 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 101.68.6.28) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Justin F. \| AS204464	2026-05-17 11:29:09 (3 weeks ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 11110 [1] TCP Reported by: Justi ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 11110 [1] TCP Reported by: Justin F. show less	Port Scan
🇬🇧 PeravixGroup	2026-05-10 07:30:12 (4 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-05-06 22:06:18 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-06 12:03:37 (1 month ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 centurion	2026-04-20 05:43:13 (1 month ago)	Blocked by UFW on ns02 [22/tcp] Source port: 54394 TTL: 237 Packet length: 44 TOS: 0x00 This report ... show more Blocked by UFW on ns02 [22/tcp] Source port: 54394 TTL: 237 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan SSH Brute-Force
Anonymous	2026-04-17 05:26:20 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-04-15 06:09:09 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2025-08-18 15:10:23 (9 months ago)	tcp/901 (2 or more attempts)	Port Scan
Anonymous	2025-08-18 02:55:03 (9 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 28 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇪 192.36.109.82

🇺🇸 172.203.234.251

🇺🇸 161.123.218.106

🇳🇬 152.32.140.39

🇨🇳 115.190.83.184

🇮🇩 103.171.85.192

🇸🇪 46.59.90.49

🇭🇰 45.10.175.77

🇵🇱 213.92.220.103

🇺🇸 206.162.244.24

🇦🇪 198.38.94.14

🇸🇪 192.36.109.125

🇸🇪 192.36.109.118

🇸🇬 178.128.84.81

🇫🇮 178.20.210.151

🇵🇪 161.132.37.31

🇺🇸 71.6.237.246

🇮🇳 61.95.199.54

🇸🇪 192.36.109.116

🇭🇰 150.5.169.138