JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.84.254

123.245.84.254 was found in our database!

This IP was reported 185 times. Confidence of Abuse is 46%: ?

46%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.84.254

Whois 123.245.84.254

IP Abuse Reports for 123.245.84.254:

This IP address has been reported a total of 185 times from 63 distinct sources. 123.245.84.254 was first reported on January 17th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 RAP	2026-06-11 14:14:14 (1 week ago)	2026-06-11 14:14:14 UTC Unauthorized activity to TCP port 25.	Port Scan
🇬🇧 PeravixGroup	2026-06-11 07:17:39 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-09 15:13:13 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-08 09:27:08 (2 weeks ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 MPL	2026-06-07 18:09:19 (2 weeks ago)	tcp/12415	Port Scan
🇧🇷 ICS Labs	2026-06-04 18:21:31 (2 weeks ago)	ICS Labs identified 123.245.84.254 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 09:02:52 (3 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-31 09:21:41 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇵🇱 sefinek.net	2026-05-31 07:28:06 (3 weeks ago)	Blocked by UFW on PL02 [9030/tcp] \| SPT: 64524 \| TTL: 228 \| LEN: 44 \| TOS: 0x00 • Reported by: githu ... show more Blocked by UFW on PL02 [9030/tcp] \| SPT: 64524 \| TTL: 228 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-28 21:32:36 (3 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 dispaisyenterprises	2026-05-28 07:51:48 (3 weeks ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 28080 [1] TCP Reported by Di ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 28080 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-05-28 06:23:48 (3 weeks ago)	Honeypot detection: IMAP email brute-force authentication attempt on port 143. Severity: MEDIUM. Aar ... show more Honeypot detection: IMAP email brute-force authentication attempt on port 143. Severity: MEDIUM. Aaran.cloud show less	Brute-Force
🇬🇧 PeravixGroup	2026-05-27 12:23:37 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-24 05:00:38 (4 weeks ago)	tcp/2009	Port Scan
🇨🇭 pingusurmars	2026-05-23 03:41:36 (4 weeks ago)	Blocked by UFW on ampereone [19091/tcp] Source port: 11281 TTL: 232 Packet length: 44 TOS: 0x00 Thi ... show more Blocked by UFW on ampereone [19091/tcp] Source port: 11281 TTL: 232 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 185 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇭 178.83.226.186

🇮🇹 151.0.154.194

🇫🇮 147.185.133.159

🇺🇸 44.232.155.189

🇫🇷 185.177.72.68

🇰🇷 183.104.220.195

🇲🇽 148.224.96.29

🇨🇳 115.231.78.11

🇨🇳 103.236.93.87

🇳🇱 91.92.40.8

🇬🇧 87.106.65.126

🇸🇬 68.178.160.25

🇺🇸 209.59.176.102

🇻🇳 157.66.26.248

🇹🇼 101.13.4.119

🇳🇱 91.92.40.6

🇺🇸 44.52.26.48

🇬🇧 35.203.210.171

🇳🇱 195.178.110.157

🇬🇧 193.163.125.161