JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 218.245.1.249

218.245.1.249 was found in our database!

This IP was reported 236 times. Confidence of Abuse is 100%: ?

100%

ISP	Beijing Topnew Info&Tech co., LTD.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24404
Domain Name	topnewinfo.cn
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 218.245.1.249

Whois 218.245.1.249

IP Abuse Reports for 218.245.1.249:

This IP address has been reported a total of 236 times from 119 distinct sources. 218.245.1.249 was first reported on March 29th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Jon Rhine	2026-05-28 11:11:12 (1 week ago)	2026-05-28 6:11:12 229946 [Warning] Access denied for user 'root'@'218.245.1.249' (using password: ... show more 2026-05-28 6:11:12 229946 [Warning] Access denied for user 'root'@'218.245.1.249' (using password: YES) 2026-05-28 6:11:12 229945 [Warning] Access denied for user 'root'@'218.245.1.249' (using password: YES) 2026-05-28 6:11:12 229943 [Warning] Access denied for user 'root'@'218.245.1.249' (using password: YES) 2026-05-28 6:11:12 229944 [Warning] Access denied for user 'root'@'218.245.1.249' (using password: YES) ... show less	Brute-Force Hacking
🇫🇷 Faeeth	2026-05-28 10:40:34 (1 week ago)	Multiple hits on Honeypot UID:PTRW50NM46 Port:MySQL (3306)	Brute-Force
🇫🇷 vincent_EUDIER	2026-05-28 10:40:01 (1 week ago)	ET SCAN Suspicious inbound to mySQL port 3306	Port Scan
🇹🇼 kk_it_man	2026-05-28 10:03:06 (1 week ago)	ET SCAN Suspicious inbound to mySQL port 3306	Port Scan
🇫🇷 zulzeen	2026-05-28 08:12:59 (1 week ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (Database/Cache Attack)	Hacking Brute-Force
🇹🇭 Sawasdee	2026-05-28 07:30:09 (1 week ago)	Port Scan ...	Port Scan
🇵🇱 Yachiyo Runami	2026-05-28 07:23:41 (1 week ago)	Port Scan on Honeypot \| Ports: 3306/MySQL \| Proto: TCP(1) \| Flags: all SYN \| TTL: 99 \| Len: 40B \| Wi ... show more Port Scan on Honeypot \| Ports: 3306/MySQL \| Proto: TCP(1) \| Flags: all SYN \| TTL: 99 \| Len: 40B \| Win: 16384(1) \| F2B/ufw-honeypot@2026-05-28T07:23:41Z show less	Port Scan Hacking
🇨🇦 Slackin' Jack	2026-05-28 06:56:32 (1 week ago)	Triggered honeypot on port 3306. (218.245.1.249)	Port Scan
Anonymous	2026-05-28 06:40:34 (1 week ago)	Heralding honeypot: mysql on port 3306	Brute-Force
🇫🇷 Elysium Security	2026-05-28 06:37:56 (1 week ago)	Mass port scanning on a whole network	Port Scan
🇩🇪 femboy.cat	2026-05-28 06:04:41 (1 week ago)	Port scan to tcp/3306 from 218.245.1.249	Brute-Force
🇩🇪 manuelisus	2026-05-28 05:49:39 (1 week ago)	Honeypot MYSQL: +10: honeypot_connection, +15: short_automated_session, +25: instant_disconnect, +40 ... show more Honeypot MYSQL: +10: honeypot_connection, +15: short_automated_session, +25: instant_disconnect, +40: repeat_visitor_5plus show less	Hacking
🇩🇪 ezscale	2026-05-28 05:49:21 (1 week ago)	SSH brute force on mysql-primary (3 failures). Detected by fail2ban.	Brute-Force SSH
🇩🇪 xserverx.ru	2026-05-28 05:23:31 (1 week ago)	[UFW SCAN!!!!] SRC=218.245.1.249 LEN=40 TOS=0x00 PREC=0x00 TTL=94 PROTO=TCP SPT=6000 DPT=3306 WINDOW ... show more [UFW SCAN!!!!] SRC=218.245.1.249 LEN=40 TOS=0x00 PREC=0x00 TTL=94 PROTO=TCP SPT=6000 DPT=3306 WINDOW=16384 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇮🇩 hermawan	2026-05-28 03:29:52 (1 week ago)	05/28/2026-10:29:49.242744 [Drop] [] [1:921856:0] Suricata Dibuat Gemini External TCP Connection ... show more 05/28/2026-10:29:49.242744 [Drop] [] [1:921856:0] Suricata Dibuat Gemini External TCP Connection Attempt to MariaDB [**] [Classification: Potential Corporate Privacy Violation] [Priority: 1] {TCP} 218.245.1.249:6000 -> 103.166.156.58:3306 ... show less	Email Spam Hacking

Showing 1 to 15 of 236 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇿 46.42.239.204

🇫🇷 176.185.197.223

🇺🇸 129.213.142.121

🇻🇳 123.30.240.7

🇺🇸 98.90.43.197

🇺🇸 44.57.148.130

🇦🇺 35.197.175.35

🇨🇳 223.150.153.232

🇸🇪 162.158.182.94

🇭🇰 152.32.239.122

🇺🇸 136.107.180.183

🇮🇳 106.222.207.157

🇳🇬 102.88.137.213

🇮🇷 85.9.87.53

🇷🇴 80.94.92.171

🇳🇱 77.83.39.54

🇬🇧 51.77.110.3

🇺🇸 44.9.227.35

🇺🇸 12.231.110.72

🇺🇸 2600:1f18:3120:f501:c89b:c0e5:fce2:34ba