JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.104

123.245.85.104 was found in our database!

This IP was reported 171 times. Confidence of Abuse is 37%: ?

37%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.104

Whois 123.245.85.104

IP Abuse Reports for 123.245.85.104:

This IP address has been reported a total of 171 times from 64 distinct sources. 123.245.85.104 was first reported on January 20th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-01 09:51:43 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 21:59:26 (1 week ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-28 10:02:27 (2 weeks ago)	Honeypot detection: Server-Side Template Injection (SSTI) attempt on port 9200. Severity: HIGH. Aara ... show more Honeypot detection: Server-Side Template Injection (SSTI) attempt on port 9200. Severity: HIGH. Aaran.cloud show less	Hacking Web App Attack
🇬🇧 PeravixGroup	2026-05-27 03:06:21 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇹🇼 tye	2026-05-26 18:25:15 (2 weeks ago)	Wazuh Alert Evidence: May 26 18:25:12 pico-gw1 named[3393073]: client @0xffff8400b848 123.245.85.104 ... show more Wazuh Alert Evidence: May 26 18:25:12 pico-gw1 named[3393073]: client @0xffff8400b848 123.245.85.104#31037 (clients1.google.com): query (cache) 'clients1.google.com/A/IN' denied (allow-query-cache did not match) show less	Hacking
🇬🇧 PeravixGroup	2026-05-23 11:52:02 (2 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 16:43:10 (3 weeks ago)	Honeypot hit: HTTP/1.1 request on 6024 GET / Accept: /; 6024 [1] TCP	Web App Attack
🇺🇸 MPL	2026-05-20 06:31:09 (3 weeks ago)	tcp/8765	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 03:10:25 (3 weeks ago)	Honeypot hit: Suspicious payload (possible command injection); 2401 [1] TCP	Hacking
Anonymous	2026-05-19 18:06:55 (3 weeks ago)	Blocked by UFW (TCP on 18888) Source port: 22288 TTL: 240 Packet length: 44 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 18888) Source port: 22288 TTL: 240 Packet length: 44 TOS: 0x14 This report (for 123.245.85.104) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-12 23:39:37 (4 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 MPL	2026-05-12 16:53:20 (4 weeks ago)	tcp/4430	Port Scan
🇧🇾 StatsMe	2026-05-09 22:28:50 (1 month ago)	2026-05-09T19:02:52.880433+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇬🇧 PeravixGroup	2026-05-09 04:14:22 (1 month ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇬🇧 PeravixGroup	2026-05-08 10:47:47 (1 month ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 171 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 122.185.178.218

🇨🇳 221.11.60.148

🇧🇷 205.210.31.217

🇺🇸 199.127.63.58

🇺🇸 198.23.239.168

🇮🇩 119.82.246.75

🇺🇸 91.230.168.213

🇧🇪 91.86.88.24

🇵🇱 87.251.64.146

🇫🇷 85.204.70.90

🇮🇳 68.233.116.124

🇮🇳 49.207.243.206

🇺🇸 209.250.4.207

🇫🇮 204.168.240.142

🇺🇸 132.148.26.32

🇹🇼 114.34.106.146

🇵🇭 143.44.162.215

🇻🇳 113.177.27.200

🇵🇱 104.245.245.53

🇳🇱 104.23.170.129