JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.84.91

123.245.84.91 was found in our database!

This IP was reported 151 times. Confidence of Abuse is 66%: ?

66%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.84.91

Whois 123.245.84.91

IP Abuse Reports for 123.245.84.91:

This IP address has been reported a total of 151 times from 60 distinct sources. 123.245.84.91 was first reported on January 24th 2024, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Soncraft	2026-06-27 06:24:42 (1 hour ago)	Blocked by UFW on Jellyfin [2049/tcp] Source port: 26295 TTL: 235 Packet length: 44 TOS: 0x08 This ... show more Blocked by UFW on Jellyfin [2049/tcp] Source port: 26295 TTL: 235 Packet length: 44 TOS: 0x08 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-27 03:12:40 (5 hours ago)	Honeypot detection: n8n workflow automation auth bypass / RCE attempt (CVE-2026-21858) on port 8443. ... show more Honeypot detection: n8n workflow automation auth bypass / RCE attempt (CVE-2026-21858) on port 8443. Severity: CRITICAL. Aaran.cloud show less	Hacking Web App Attack
Anonymous	2026-06-26 01:21:49 (1 day ago)	Honeypot hit: Large payload (1388 bytes); 13720 [1] TCP Reported by: https://github.com/sefinek/T-Po ... show more Honeypot hit: Large payload (1388 bytes); 13720 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 xmission.com	2026-06-24 05:16:15 (3 days ago)	Blocked by UFW (TCP on 10334) Source port: 54254 TTL: 239 Packet length: 44 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 10334) Source port: 54254 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 123.245.84.91) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Admins@FBN	2026-06-23 12:53:05 (3 days ago)	FW-PortScan: Traffic Blocked srcport=39274 dstport=2121	Port Scan
🇺🇸 xmission.com	2026-06-22 15:13:16 (4 days ago)	Blocked by UFW (TCP on 1177) Source port: 43344 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1177) Source port: 43344 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 123.245.84.91) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 EinfxchFinn	2026-06-21 12:05:35 (5 days ago)	Unauthorized connection attempt to port 999 from 123.245.84.91	Port Scan
🇺🇸 Axel	2026-06-15 18:26:50 (1 week ago)	Blocked by UFW on LAXHH [12392/tcp] \| SPT: 40653 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [12392/tcp] \| SPT: 40653 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 donarev419	2026-06-12 07:16:11 (2 weeks ago)	Connection to port 7288 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:7288 ... show more Connection to port 7288 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:7288 Accept: / show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-11 09:02:20 (2 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-07 05:34:43 (2 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-06-06 16:16:44 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 femboy.cat	2026-06-02 10:59:53 (3 weeks ago)	Port scan to tcp/16012 from 123.245.84.91	Brute-Force
🇬🇧 gbzret4d	2026-06-01 11:15:53 (3 weeks ago)	Honeypot [uk-production01]: HTTP/1.1 request on 19233 GET / Accept: /; 19233 [1] TCP	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-05-31 03:00:04 (3 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 151 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 213.201.243.217

🇵🇭 175.176.18.99

🇺🇸 66.132.186.141

🇲🇽 38.65.137.116

🇬🇧 13.42.103.51

🇹🇷 5.26.192.152

🇳🇱 204.76.203.219

🇧🇷 177.221.120.233

🇨🇳 106.13.138.2

🇮🇩 103.120.170.101

🇺🇸 67.23.166.166

🇽🇰 46.99.192.57

🇺🇸 45.146.55.139

🇨🇳 43.248.108.206

🇺🇸 172.203.251.111

🇺🇸 64.62.156.186

🇺🇸 50.6.228.111

🇺🇸 47.253.5.130

🇮🇩 2406:da19:776:6e01:f769:600b:281f:79ef

🇺🇸 198.44.134.4