JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.84.51

123.245.84.51 was found in our database!

This IP was reported 163 times. Confidence of Abuse is 61%: ?

61%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.84.51

Whois 123.245.84.51

IP Abuse Reports for 123.245.84.51:

This IP address has been reported a total of 163 times from 68 distinct sources. 123.245.84.51 was first reported on January 18th 2024, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 NXTwoThou	2026-06-19 00:16:58 (14 hours ago)	POP3	Port Scan
Anonymous	2026-06-17 12:37:30 (2 days ago)	Honeypot hit: Empty payload (likely service probe); 1443 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 1443 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 Axel	2026-06-17 00:28:27 (2 days ago)	Blocked by UFW on LAXHH [16993/tcp] \| SPT: 31536 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [16993/tcp] \| SPT: 31536 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-16 21:22:46 (2 days ago)	Honeypot hit: Empty payload (likely service probe); 1554 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 1554 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇱🇹 NotACaptcha	2026-06-16 09:57:29 (3 days ago)	Unauthorised access (Jun 16 12:57) SRC=123.245.84.51 LEN=44 TTL=235 ID=46792 TCP DPT=8080 WINDOW=102 ... show more Unauthorised access (Jun 16 12:57) SRC=123.245.84.51 LEN=44 TTL=235 ID=46792 TCP DPT=8080 WINDOW=1024 SYN show less	Port Scan
🇺🇸 chronos	2026-06-15 23:29:04 (3 days ago)	[AUTORAVALT][[15/06/2026 - 20:29:04 -03:00 UTC] Attack from [CHINANET-LN Network Administrater China ... show more [AUTORAVALT][[15/06/2026 - 20:29:04 -03:00 UTC] Attack from [CHINANET-LN Network Administrater Chinatelecom Liaoning Branch] [123.245.84.51]-[RANGE:123.245.64.0 - 123.245.95.255] Action: BLocKed Phishing -> Phishing websites and/or email. Email Spam -> Spam email content, infected attachments, and phishing emails. Hacking... Unauthorized attempts to access th] ... show less	Brute-Force Email Spam Spoofing Phishing Hacking
🇺🇸 chronos	2026-06-15 06:20:52 (4 days ago)	[AUTORAVALT][[15/06/2026 - 03:20:51 -03:00 UTC] Attack from [CHINANET-LN Network Administrater China ... show more [AUTORAVALT][[15/06/2026 - 03:20:51 -03:00 UTC] Attack from [CHINANET-LN Network Administrater Chinatelecom Liaoning Branch] [123.245.84.51]-[RANGE:123.245.64.0 - 123.245.95.255] Action: BLocKed Phishing -> Phishing websites and/or email. Email Spam -> Spam email content, infected attachments, and phishing emails. Hacking... Unauthorized attempts to access th] ... show less	Brute-Force Email Spam Spoofing Phishing Hacking
🇺🇸 chronos	2026-06-12 01:57:42 (1 week ago)	[AUTORAVALT][[11/06/2026 - 22:57:40 -03:00 UTC] Attack from [CHINANET-LN Network Administrater China ... show more [AUTORAVALT][[11/06/2026 - 22:57:40 -03:00 UTC] Attack from [CHINANET-LN Network Administrater Chinatelecom Liaoning Branch] [123.245.84.51]-[RANGE:123.245.64.0 - 123.245.95.255] [;; communications error to 127.0.0.53#53: timed out ;; communications error to 127.0.0.53#53: timed out ;; no servers could be reached] Action: BLocKed Phishing -> Phishing websites] ... show less	Brute-Force Email Spam Spoofing Phishing Hacking
🇬🇧 PeravixGroup	2026-06-11 07:07:26 (1 week ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇯🇵 jay hung	2026-06-09 01:50:47 (1 week ago)	2026-06-09T01:50:46.845689+00:00 quarktech kernel: [804688.804430] [UFW BLOCK] IN=eth0 OUT= MAC=22:0 ... show more 2026-06-09T01:50:46.845689+00:00 quarktech kernel: [804688.804430] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=123.245.84.51 DST=172.237.20.248 LEN=44 TOS=0x00 PREC=0x00 TTL=230 ID=45505 PROTO=TCP SPT=59856 DPT=9000 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-06-08 23:59:54 (1 week ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇬🇧 PeravixGroup	2026-06-07 13:27:21 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-07 06:23:09 (1 week ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 MPL	2026-06-04 17:12:18 (2 weeks ago)	tcp/9042 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-03 18:24:14 (2 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 163 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 2400:cb00:929:1000:f5a:28f3:a914:ed42

🇷🇴 141.98.83.240

🇨🇳 114.240.145.68

🇮🇳 106.192.105.200

🇧🇩 103.154.49.157

🇮🇷 85.133.193.72

🇺🇸 64.62.156.122

🇺🇸 52.188.224.110

🇸🇬 43.134.81.219

🇹🇼 198.235.24.99

🇨🇳 183.132.242.171

🇨🇴 181.54.70.40

🇨🇳 111.231.54.103

🇭🇰 101.36.107.243

🇷🇺 94.233.127.218

🇨🇦 85.217.149.52

🇩🇪 51.75.64.35

🇭🇰 47.86.47.175

🇺🇸 45.61.124.71

🇳🇱 34.141.173.1