JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.190

123.245.85.190 was found in our database!

This IP was reported 194 times. Confidence of Abuse is 59%: ?

59%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.190

Whois 123.245.85.190

IP Abuse Reports for 123.245.85.190:

This IP address has been reported a total of 194 times from 68 distinct sources. 123.245.85.190 was first reported on January 17th 2024, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇯🇵 jay hung	2026-06-21 14:54:45 (7 hours ago)	2026-06-21T14:54:43.993023+00:00 quarktech kernel: [698337.692309] [UFW BLOCK] IN=eth0 OUT= MAC=22:0 ... show more 2026-06-21T14:54:43.993023+00:00 quarktech kernel: [698337.692309] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=123.245.85.190 DST=172.237.20.248 LEN=44 TOS=0x00 PREC=0x00 TTL=230 ID=39368 PROTO=TCP SPT=55436 DPT=5010 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 sumnone	2026-06-19 00:49:41 (2 days ago)	Port probing on unauthorized port 7288	Port Scan Hacking Exploited Host
🇺🇸 Cyber Crusader	2026-06-16 01:03:26 (5 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇺🇸 Axel	2026-06-15 23:54:08 (5 days ago)	Blocked by UFW on LAXHH [4567/tcp] \| SPT: 15013 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [4567/tcp] \| SPT: 15013 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 TheHoneyPotter	2026-06-14 19:01:04 (1 week ago)	Honeypot [fc-honeypot]: Empty payload (likely service probe); 8444 [1] TCP Reported by: https://gith ... show more Honeypot [fc-honeypot]: Empty payload (likely service probe); 8444 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 Axel	2026-06-14 14:18:19 (1 week ago)	Blocked by UFW on LAXHH [5236/tcp] \| SPT: 40576 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [5236/tcp] \| SPT: 40576 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-13 02:29:53 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-10 21:11:02 (1 week ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇬🇧 PeravixGroup	2026-06-10 04:50:42 (1 week ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-09 01:23:50 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-06-06 11:34:48 (2 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 05:33:07 (2 weeks ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 00:17:18 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 gbzret4d	2026-06-03 22:03:53 (2 weeks ago)	Honeypot [uk-production01]: Unauthorized traffic (16 bytes of payload); 1688 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-05-31 19:13:12 (3 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 194 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.253.219.152

🇭🇰 152.32.215.224

🇻🇳 103.183.119.48

🇨🇳 223.109.141.190

🇺🇸 162.158.154.57

🇫🇷 51.75.247.232

🇺🇸 44.226.17.71

🇺🇸 44.62.213.178

🇺🇸 172.70.230.110

🇻🇳 160.250.181.54

🇺🇸 147.185.132.177

🇭🇰 118.26.39.178

🇺🇸 44.68.160.159

🇫🇷 195.154.176.37

🇺🇸 172.236.228.218

🇺🇸 147.185.132.246

🇨🇳 115.56.238.174

🇹🇼 114.26.75.61

🇺🇸 75.141.129.143

🇫🇮 65.21.150.20