JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 112.5.66.5

112.5.66.5 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 100%: ?

100%

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS9808
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Xiamen, Fujian

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 112.5.66.5

Whois 112.5.66.5

IP Abuse Reports for 112.5.66.5:

This IP address has been reported a total of 23 times from 21 distinct sources. 112.5.66.5 was first reported on March 26th 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-17 22:45:00 (5 days ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 xmission.com	2026-06-17 01:44:52 (6 days ago)	Blocked by UFW (TCP on 23) Source port: 14080 TTL: 49 Packet length: 40 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 14080 TTL: 49 Packet length: 40 TOS: 0x00 This report (for 112.5.66.5) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
Anonymous	2026-06-17 01:40:43 (6 days ago)	Drop from IP address 112.5.66.5 to tcp-port 23	Port Scan
🇺🇸 Xarcotic	2026-06-17 01:31:13 (6 days ago)	SSH login on honeypot.	Brute-Force SSH
🇩🇪 xserverx.ru	2026-06-17 01:01:15 (6 days ago)	[UFW SCAN!!!!] SRC=112.5.66.5 LEN=40 TOS=0x08 PREC=0x20 TTL=43 PROTO=TCP SPT=24733 DPT=23 WINDOW=636 ... show more [UFW SCAN!!!!] SRC=112.5.66.5 LEN=40 TOS=0x08 PREC=0x20 TTL=43 PROTO=TCP SPT=24733 DPT=23 WINDOW=6365 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-06-17 00:48:32 (6 days ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
Anonymous	2026-06-17 00:26:45 (6 days ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
🇺🇸 RAP	2026-06-17 00:19:50 (6 days ago)	2026-06-17 00:19:50 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 MPL	2026-06-16 23:23:40 (6 days ago)	tcp/2323	Port Scan
🇨🇦 DRI	2026-06-16 22:07:39 (6 days ago)	Unsolicited TCP traffic on Honeypot, srcport=57794 dstport=23	Port Scan Hacking
🇩🇪 Justin F. \| AS204464	2026-06-16 21:40:42 (6 days ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 2323 [2] TCP Reported by: Justin ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 2323 [2] TCP Reported by: Justin F. show less	Port Scan
Anonymous	2026-06-16 21:25:37 (6 days ago)	Unauthorized connection to Telnet port 23	Port Scan
🇨🇦 alexbfr	2026-06-16 21:06:51 (6 days ago)	Fail2Ban Report, custom-honeypot jail: Automated honeypot detection.	Port Scan
🇦🇺 dyln	2026-06-16 20:56:51 (6 days ago)	Dyls honeypot brute-force: Telnet (1 total hits)	Brute-Force
🇺🇸 drewf.ink	2026-06-16 20:56:22 (6 days ago)	[20:56] Attempted telnet login on port 23 with username	Brute-Force Exploited Host

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 2a10:4646:190::5d39:bfe2

🇺🇸 192.129.243.42

🇨🇭 179.43.163.26

🇺🇸 172.71.254.151

🇨🇭 107.189.8.133

🇷🇺 46.50.240.92

🇬🇧 35.203.210.76

🇵🇰 110.93.224.226

🇺🇸 44.242.180.143

🇮🇩 43.173.1.69

🇮🇩 39.194.1.96

🇺🇸 35.80.40.210

🇺🇸 20.39.62.227

🇵🇰 2407:d000:506:1eea:743c:fcf9:ebf5:420

🇩🇪 217.154.226.150

🇮🇩 210.210.155.71

🇫🇷 185.250.237.63

🇳🇱 45.148.10.152

🇳🇱 45.148.10.141

🇺🇸 43.153.12.68