JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.114

123.245.85.114 was found in our database!

This IP was reported 199 times. Confidence of Abuse is 67%: ?

67%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.114

Whois 123.245.85.114

IP Abuse Reports for 123.245.85.114:

This IP address has been reported a total of 199 times from 66 distinct sources. 123.245.85.114 was first reported on January 17th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 sefinek.net	2026-06-15 15:36:34 (2 days ago)	Honeypot hit: Empty payload (likely service probe); 1400 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 1400 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 sumnone	2026-06-14 12:25:19 (3 days ago)	Port probing on unauthorized port 2145	Port Scan Hacking Exploited Host
🇺🇸 Axel	2026-06-14 03:48:36 (3 days ago)	Blocked by UFW on LAXHH [3389/tcp] \| SPT: 48986 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [3389/tcp] \| SPT: 48986 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-14 02:54:07 (3 days ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 Axel	2026-06-12 21:00:42 (4 days ago)	Blocked by UFW on LAXHH [12445/tcp] \| SPT: 60931 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [12445/tcp] \| SPT: 60931 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇷🇸 Scan	2026-06-10 02:29:08 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-10 00:52:38 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-09 18:13:24 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇮 6kilowatti	2026-06-09 16:11:52 (1 week ago)	2026-06-09T19:11:52.110578+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-06-09T19:11:52.110578+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=123.245.85.114 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=237 ID=5093 PROTO=TCP SPT=38513 DPT=16000 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-06-09 07:33:34 (1 week ago)	Honeypot detection: OS command injection in HTTP parameters on port 8080. Severity: MEDIUM. Aaran.cl ... show more Honeypot detection: OS command injection in HTTP parameters on port 8080. Severity: MEDIUM. Aaran.cloud show less	Hacking Web App Attack
🇬🇧 PeravixGroup	2026-05-29 07:52:56 (2 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇺🇸 xmission.com	2026-05-24 02:00:36 (3 weeks ago)	Blocked by UFW (TCP on 3006) Source port: 52086 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 3006) Source port: 52086 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 123.245.85.114) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-21 02:14:03 (3 weeks ago)	Honeypot hit: Large payload (1457 bytes); 8764 [1] TCP	Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-19 17:22:37 (4 weeks ago)	Honeypot hit: Empty payload (likely service probe); 14891 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-05-19 11:58:01 (4 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking

Showing 1 to 15 of 199 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 58.209.234.84

🇰🇷 49.247.37.22

🇨🇳 8.138.204.154

🇩🇪 212.227.140.112

🇧🇷 205.210.31.172

🇧🇪 198.235.24.209

🇹🇼 198.235.24.59

🇫🇷 185.188.249.30

🇭🇰 156.245.246.50

🇺🇸 147.185.132.253

🇵🇰 139.135.44.107

🇧🇷 138.0.146.200

🇨🇳 39.105.205.153

🇭🇰 199.45.154.185

🇲🇽 187.230.121.176

🇮🇳 182.95.52.170

🇹🇭 182.52.127.107

🇫🇷 85.217.140.1

🇳🇱 45.153.34.112

🇱🇰 43.224.126.107