JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.233.238.152

123.233.238.152 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 22%: ?

22%

ISP	China Unicom Shandong Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Qingdao, Shandong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.233.238.152

Whois 123.233.238.152

IP Abuse Reports for 123.233.238.152:

This IP address has been reported a total of 7 times from 6 distinct sources. 123.233.238.152 was first reported on March 31st 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-07 22:03:07 (5 days ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 gbzret4d	2026-06-07 20:09:55 (5 days ago)	Honeypot [uk-production01]: HTTP/1.1 request on 3523 GET / Accept: /; 3523 [1] TCP	Hacking Bad Web Bot
🇺🇸 Rayulcifer	2026-06-06 20:35:07 (6 days ago)	123.233.238.152 - - [06/Jun/2026:15:35:05 -0500] "CONNECT www.baidu.com:443 HTTP/1.1" 403 344 "-" "P ... show more 123.233.238.152 - - [06/Jun/2026:15:35:05 -0500] "CONNECT www.baidu.com:443 HTTP/1.1" 403 344 "-" "PycURL/7.43.0 libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3" 123.233.238.152 - - [06/Jun/2026:15:35:05 -0500] "GET http://www.wujieliulan.com/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36" 123.233.238.152 - - [06/Jun/2026:15:35:05 -0500] "GET http://www.rfa.org/english/ HTTP/1.1" 200 0 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.101 Safari/537.36" 123.233.238.152 - - [06/Jun/2026:15:35:06 -0500] "CONNECT cn.bing.com:443 HTTP/1.1" 403 344 "-" "PycURL/7.43.0 libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3" 123.233.238.152 - - [06/Jun/2026:15:35:06 -0500] "CONNECT www.voanews.com:443 HTTP/1.1" 403 344 "-" "PycURL/7.43.0 libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇬🇧 PeravixGroup	2026-06-06 15:15:51 (6 days ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇫🇮 Alexandr Kulkov	2026-04-05 11:02:28 (2 months ago)	123.233.238.152 triggered Icarus honeypot on port 3306.	Port Scan Hacking
🇮🇳 Mr.Singh	2026-04-01 21:30:10 (2 months ago)	NFT blocked 123.233.238.152 on 02-Apr-2026..	Port Scan Brute-Force
Anonymous	2026-03-31 19:20:31 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.90.244.27

🇩🇪 161.35.65.86

🇳🇱 109.236.86.20

🇧🇪 34.62.137.49

🇭🇰 223.197.145.126

🇬🇧 213.166.84.42

🇰🇷 203.252.10.4

🇳🇱 195.62.32.180

🇺🇸 191.101.33.115

🇲🇽 187.191.48.22

🇰🇷 175.118.127.138

🇺🇸 172.182.212.51

🇮🇳 125.19.245.34

🇨🇳 115.201.185.23

🇨🇦 85.217.149.70

🇪🇸 85.48.46.117

🇵🇱 82.47.63.141

🇳🇱 64.188.77.26

🇬🇧 51.89.166.236

🇺🇸 35.254.159.8