JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 109.123.238.54

109.123.238.54 was found in our database!

This IP was reported 88 times. Confidence of Abuse is 27%: ?

27%

ISP	Contabo GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS141995
Hostname(s)	vmi3016326.contaboserver.net
Domain Name	contabo.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 109.123.238.54

Whois 109.123.238.54

IP Abuse Reports for 109.123.238.54:

This IP address has been reported a total of 88 times from 14 distinct sources. 109.123.238.54 was first reported on June 1st 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 dyln	2026-06-03 12:28:47 (3 weeks ago)	Dyls honeypot brute-force: RDP (26 total hits)	Brute-Force
🇺🇸 knock	2026-06-03 05:51:22 (3 weeks ago)	Knock-Knock honeypot brute-force: RDP (912 total hits)	Brute-Force
🇳🇱 EGP Abuse Dept	2026-06-03 05:05:22 (3 weeks ago)	Unauthorized connection to RDP port 3389	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-03 04:37:51 (3 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇦🇺 dyln	2026-06-03 00:58:06 (3 weeks ago)	Dyls honeypot brute-force: RDP (21 total hits)	Brute-Force
🇦🇺 dyln	2026-06-02 21:55:15 (3 weeks ago)	Dyls honeypot brute-force: RDP (20 total hits)	Brute-Force
🇦🇺 dyln	2026-06-02 12:17:02 (3 weeks ago)	Dyls honeypot brute-force: RDP (12 total hits)	Brute-Force
🇦🇺 dyln	2026-06-02 08:41:41 (3 weeks ago)	Dyls honeypot brute-force: RDP (9 total hits)	Brute-Force
🇦🇺 dyln	2026-06-02 02:51:50 (3 weeks ago)	Dyls honeypot brute-force: RDP (1 total hits)	Brute-Force
🇫🇷 ✨	2026-05-27 23:51:27 (4 weeks ago)	Rule : RDP Rule: RDP Event: RDP UserAccount : Administrator S-1-0-0 - - 0x0 S-1-0-0 Administrator ... show more Rule : RDP Rule: RDP Event: RDP UserAccount : Administrator S-1-0-0 - - 0x0 S-1-0-0 Administrator - 0xc000006d %#13 0xc000006a 3 NtLmSsp NTLM workstation - - 0 0x0 - 109.123.238.54 0 show less	SSH Brute-Force
🇺🇸 knock	2026-05-18 01:03:18 (1 month ago)	Knock-Knock honeypot brute-force: RDP (884 total hits)	Brute-Force
🇫🇷 ✨	2026-05-18 00:38:10 (1 month ago)	Rule : RDP Rule: RDP Event: RDP UserAccount : Administrator S-1-0-0 - - 0x0 S-1-0-0 Administrator ... show more Rule : RDP Rule: RDP Event: RDP UserAccount : Administrator S-1-0-0 - - 0x0 S-1-0-0 Administrator - 0xc000006d %#13 0xc000006a 3 NtLmSsp NTLM workstation - - 0 0x0 - 109.123.238.54 0 show less	SSH Brute-Force
🇺🇸 knock	2026-05-17 02:56:37 (1 month ago)	Knock-Knock honeypot brute-force: RDP (818 total hits)	Brute-Force
🇺🇸 knock	2026-05-16 02:41:04 (1 month ago)	Knock-Knock honeypot brute-force: RDP (717 total hits)	Brute-Force
🇺🇸 knock	2026-05-15 02:50:37 (1 month ago)	Knock-Knock honeypot brute-force: RDP (618 total hits)	Brute-Force

Showing 1 to 15 of 88 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 240d:c010:15c:2::41

🇭🇰 240d:c010:64:8::104

🇭🇰 240d:c010:64:1::144

🇧🇷 205.210.31.198

🇹🇼 198.235.24.69

🇹🇼 198.235.24.45

🇱🇹 45.227.254.170

🇬🇧 35.203.210.215

🇭🇰 240d:c010:64:b::6c

🇭🇰 240d:c010:64:8::105

🇰🇷 221.162.9.13

🇹🇼 198.235.24.84

🇳🇱 192.109.200.215

🇺🇸 172.185.24.228

🇹🇭 147.50.231.135

🇮🇳 103.104.53.119

🇺🇸 100.54.89.184

🇷🇸 87.116.134.128

🇺🇸 86.111.176.100

🇱🇹 62.60.130.219