JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.84.4

123.245.84.4 was found in our database!

This IP was reported 175 times. Confidence of Abuse is 47%: ?

47%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.84.4

Whois 123.245.84.4

IP Abuse Reports for 123.245.84.4:

This IP address has been reported a total of 175 times from 60 distinct sources. 123.245.84.4 was first reported on January 30th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-28 08:47:22 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-27 18:30:13 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 12:51:14 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-26 14:30:24 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-25 05:06:28 (1 week ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 geeek	2026-05-21 07:16:08 (2 weeks ago)	Port scanning: 3389 TCP Blocked	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-21 02:36:38 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 8323 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-05-19 19:36:02 (2 weeks ago)	Honeypot detection: RTSP streaming server scanning / unauthorized access attempt on port 554. Severi ... show more Honeypot detection: RTSP streaming server scanning / unauthorized access attempt on port 554. Severity: LOW. Aaran.cloud show less	Port Scan
🇱🇹 NotACaptcha	2026-05-19 05:59:56 (2 weeks ago)	Unauthorised access (May 19 08:59) SRC=123.245.84.4 LEN=44 TTL=235 ID=61200 TCP DPT=3389 WINDOW=1024 ... show more Unauthorised access (May 19 08:59) SRC=123.245.84.4 LEN=44 TTL=235 ID=61200 TCP DPT=3389 WINDOW=1024 SYN show less	Port Scan
🇨🇳 ThreatBook.io	2026-05-15 23:19:14 (3 weeks ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/123.245.84.4	SSH
🇺🇸 xmission.com	2026-05-14 20:28:20 (3 weeks ago)	Blocked by UFW (TCP on 9080) Source port: 60490 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9080) Source port: 60490 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 123.245.84.4) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 dispaisyenterprises	2026-05-13 07:03:41 (3 weeks ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (243 bytes of payload); 1123 [1] TCP Reported by Di ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (243 bytes of payload); 1123 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-05-12 23:42:59 (3 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇩🇪 _ArminS_	2026-05-12 16:34:47 (3 weeks ago)	SP-Scan 47604:14100 detected 2026.05.12 18:34:47 blocked until 2026.07.01 11:37:34	Port Scan
🇨🇳 ThreatBook.io	2026-05-09 23:28:04 (3 weeks ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/123.245.84.4 202 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/123.245.84.4 2026-05-09 07:05:29 http://www.rfa.org/english/ show less	Web App Attack

Showing 1 to 15 of 175 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 217.145.72.199

🇺🇸 162.216.150.172

🇷🇺 94.25.40.30

🇫🇷 62.210.199.83

🇺🇸 40.124.171.173

🇬🇧 35.203.210.184

🇺🇸 195.184.76.4

🇫🇮 147.185.133.18

🇺🇸 147.185.132.230

🇩🇪 47.245.135.122

🇬🇧 35.203.210.124

🇩🇪 213.209.159.158

🇧🇬 193.24.211.107

🇸🇬 128.106.214.148

🇺🇸 91.230.168.255

🇬🇧 35.203.210.159

🇩🇪 8.209.101.19

🇨🇳 220.197.78.171

🇲🇽 200.68.173.215

🇩🇪 193.176.86.52