JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.107

123.245.85.107 was found in our database!

This IP was reported 191 times. Confidence of Abuse is 67%: ?

67%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.107

Whois 123.245.85.107

IP Abuse Reports for 123.245.85.107:

This IP address has been reported a total of 191 times from 60 distinct sources. 123.245.85.107 was first reported on January 26th 2024, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇾 StatsMe	2026-06-20 21:48:57 (11 hours ago)	2026-06-20T01:41:33.084396+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇺🇸 Cyber Crusader	2026-06-19 00:23:53 (2 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇬🇧 PeravixGroup	2026-06-18 02:30:35 (3 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 Axel	2026-06-17 18:21:17 (3 days ago)	Blocked by UFW on LAXHH [587/tcp] \| SPT: 47089 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: githu ... show more Blocked by UFW on LAXHH [587/tcp] \| SPT: 47089 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Email Spam
🇺🇸 xmission.com	2026-06-16 05:25:45 (5 days ago)	Blocked by UFW (TCP on 9998) Source port: 44681 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 9998) Source port: 44681 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 123.245.85.107) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-14 02:52:09 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 13:59:54 (1 week ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 00:21:11 (1 week ago)	Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: ME ... show more Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇹🇷 Threat.live	2026-06-05 10:50:07 (2 weeks ago)	Threat.live: Web Scan	Web App Attack
🇮🇩 David Koswari	2026-06-05 05:44:00 (2 weeks ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇩🇪 Admins@FBN	2026-06-04 13:19:03 (2 weeks ago)	FW-PortScan: Traffic Blocked srcport=55999 dstport=6050	Port Scan
🇩🇪 Honeypot-EU-Fru	2026-06-04 03:34:13 (2 weeks ago)	1780544052 - 06/04/2026 05:34:12 Host: 123.245.85.107/123.245.85.107 Port: 88 TCP Blocked ...	Port Scan
🇺🇸 MPL	2026-05-28 07:34:51 (3 weeks ago)	tcp/9100	Port Scan
🇬🇧 PeravixGroup	2026-05-27 16:36:53 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 StopAbuse	2026-05-26 11:51:31 (3 weeks ago)	tcp/9443	Port Scan

Showing 1 to 15 of 191 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 193.34.73.147

🇳🇱 185.93.89.39

🇺🇸 162.216.149.193

🇫🇷 141.94.78.40

🇺🇸 70.175.180.117

🇮🇩 2406:da19:776:6e01:91d9:53b0:c3af:634d

🇨🇳 183.234.189.5

🇩🇪 139.177.179.28

🇺🇸 107.150.105.153

🇩🇪 57.129.81.227

🇧🇷 200.175.201.167

🇷🇺 188.168.86.6

🇳🇱 176.65.139.181

🇰🇷 112.216.129.27

🇭🇰 103.229.125.106

🇻🇳 103.74.121.5

🇺🇸 66.132.195.24

🇺🇸 38.46.221.215

🇹🇭 223.207.240.67

🇭🇰 193.176.211.38