JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.129

123.245.85.129 was found in our database!

This IP was reported 169 times. Confidence of Abuse is 46%: ?

46%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.129

Whois 123.245.85.129

IP Abuse Reports for 123.245.85.129:

This IP address has been reported a total of 169 times from 50 distinct sources. 123.245.85.129 was first reported on January 19th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 donarev419	2026-06-09 05:18:13 (1 week ago)	Connection to port 1521 with data transfer. Data preview: GET / HTTP/1.1 Host: 109.110.170.76:1521 ... show more Connection to port 1521 with data transfer. Data preview: GET / HTTP/1.1 Host: 109.110.170.76:1521 Accept: / show less	Port Scan Hacking
Anonymous	2026-06-09 00:06:14 (1 week ago)	Honeypot hit: Unauthorized traffic (7 bytes of payload); 11211 [1] TCP Reported by: https://github.c ... show more Honeypot hit: Unauthorized traffic (7 bytes of payload); 11211 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-08 15:49:59 (1 week ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-06 20:04:09 (1 week ago)	tcp/3003 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-06-04 20:52:06 (2 weeks ago)	tcp/50000	Port Scan
🇩🇪 pltcldvlpr	2026-06-02 11:18:53 (2 weeks ago)	Bogus Useragent: 123.245.85.129 - - [02/Jun/2026:13:18:53 +0200] "GET /localizations/zh.json HTTP/1. ... show more Bogus Useragent: 123.245.85.129 - - [02/Jun/2026:13:18:53 +0200] "GET /localizations/zh.json HTTP/1.1" 444 0 "-" "curl/7.76.0" asn=4134 org="Chinanet" country=CN ... show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-05-30 11:00:07 (2 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 Justin F. \| AS204464	2026-05-30 07:10:36 (2 weeks ago)	Honeypot [nx-infrastructure]: Large payload (1457 bytes); 12125 [1] TCP Reported by: Justin F.	Bad Web Bot
🇬🇧 PeravixGroup	2026-05-29 21:26:11 (3 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-29 05:58:37 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 lister171254	2026-05-27 19:23:59 (3 weeks ago)	May 27 21:23:59 imap-login: Info: Disconnected: Connection closed: SSL_accept() failed: error:0A0000 ... show more May 27 21:23:59 imap-login: Info: Disconnected: Connection closed: SSL_accept() failed: error:0A0000C1:SSL routines::no shared cipher (no auth attempts in 0 secs): user=<>, rip=123.245.85.129, lip=45.92.8.208, TLS handshaking: SSL_accept() failed: error:0A0000C1:SSL routines::no shared cipher ... show less	Brute-Force
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 12:43:33 (4 weeks ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 1971 [1] TCP	Port Scan
🇺🇸 Cyber Crusader	2026-05-17 07:52:08 (1 month ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇺🇸 RAP	2026-05-15 16:03:51 (1 month ago)	2026-05-15 16:03:51 UTC Unauthorized activity to TCP port 3306.	Port Scan
🇮🇩 David Koswari	2026-05-04 05:52:00 (1 month ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted

Showing 1 to 15 of 169 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.93.106.153

🇩🇪 65.111.28.214

🇫🇷 2001:41d0:303:34af::1

🇺🇸 216.25.89.147

🇦🇲 212.34.246.3

🇩🇪 130.12.180.196

🇮🇳 122.168.127.153

🇹🇷 89.252.131.17

🇺🇸 75.82.150.117

🇩🇪 65.111.28.208

🇳🇱 45.148.10.151

🇳🇱 45.148.10.147

🇨🇳 223.221.36.42

🇹🇼 198.235.24.70

🇫🇷 194.99.23.220

🇧🇷 187.19.185.26

🇻🇳 163.61.182.82

🇺🇸 138.68.61.2

🇨🇳 118.81.193.224

🇩🇪 65.111.28.199