JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.84.159

123.245.84.159 was found in our database!

This IP was reported 172 times. Confidence of Abuse is 67%: ?

67%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.84.159

Whois 123.245.84.159

IP Abuse Reports for 123.245.84.159:

This IP address has been reported a total of 172 times from 65 distinct sources. 123.245.84.159 was first reported on January 19th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 sumnone	2026-06-14 16:26:31 (1 day ago)	Port probing on unauthorized port 12165	Port Scan Hacking Exploited Host
🇳🇱 BIV	2026-06-14 07:02:08 (1 day ago)	Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 5984. Automated ti ... show more Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 5984. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇺🇸 Axel	2026-06-13 18:44:13 (1 day ago)	Blocked by UFW on LAXHH [5061/tcp] \| SPT: 17318 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [5061/tcp] \| SPT: 17318 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Fraud VoIP
🇬🇧 PeravixGroup	2026-06-13 03:02:33 (2 days ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 kingjan1999	2026-06-11 08:22:46 (4 days ago)	Blocked by UFW [12137/tcp] \| SPT: 64196 \| TTL: 238 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/s ... show more Blocked by UFW [12137/tcp] \| SPT: 64196 \| TTL: 238 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-09 12:43:35 (6 days ago)	tcp/1700 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-07 20:11:25 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-07 00:51:20 (1 week ago)	tcp/8080 (4 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-06 14:54:44 (1 week ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇩🇪 KPS	2026-06-05 21:38:47 (1 week ago)	PortscanM	Port Scan
🇬🇧 PeravixGroup	2026-06-05 08:06:30 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇧🇷 ICS Labs	2026-06-01 21:21:33 (1 week ago)	ICS Labs identified 123.245.84.159 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 19:56:46 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-31 06:55:33 (2 weeks ago)	tcp/1088	Port Scan
🇩🇪 anycast_ac	2026-05-31 01:03:38 (2 weeks ago)	[mirai-detector honeypot] Inbound attack against our honeypot on tcp/27017 (generic). Commands captu ... show more [mirai-detector honeypot] Inbound attack against our honeypot on tcp/27017 (generic). Commands captured: $ : show less	DDoS Attack IoT Targeted Brute-Force

Showing 1 to 15 of 172 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.199.191.104

🇨🇳 182.138.158.30

🇺🇸 152.32.206.83

🇯🇵 150.60.181.111

🇺🇸 138.197.97.170

🇮🇳 124.123.68.73

🇺🇸 104.43.242.4

🇮🇩 103.129.221.202

🇸🇬 103.13.206.100

🇿🇦 102.219.170.74

🇺🇸 98.52.14.203

🇺🇸 93.152.208.38

🇱🇹 77.90.185.88

🇺🇸 68.169.41.107

🇳🇱 45.153.34.87

🇳🇱 45.142.193.118

🇺🇸 34.83.64.5

🇵🇱 20.215.220.182

🇮🇹 5.99.196.202

🇨🇳 222.176.200.175