JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.201

123.245.85.201 was found in our database!

This IP was reported 162 times. Confidence of Abuse is 70%: ?

70%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.201

Whois 123.245.85.201

IP Abuse Reports for 123.245.85.201:

This IP address has been reported a total of 162 times from 58 distinct sources. 123.245.85.201 was first reported on January 22nd 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Petre 21_ip	2026-06-18 09:12:35 (1 day ago)	2026-06-18T11:12:34.476364+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-06-18T11:12:34.476364+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=123.245.85.201 DST=155.133.26.57 LEN=44 TOS=0x00 PREC=0x00 TTL=230 ID=47297 PROTO=TCP SPT=25815 DPT=2400 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇮 sonot	2026-06-18 07:47:34 (1 day ago)	Blocked by UFW on mail [7048/tcp] \| SPT: 13894 \| TTL: 237 \| LEN: 44 \| TOS: 0x00 • Reported by: githu ... show more Blocked by UFW on mail [7048/tcp] \| SPT: 13894 \| TTL: 237 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-16 12:34:16 (3 days ago)	Blocked by UFW on LAXHH [7091/tcp] \| SPT: 22624 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [7091/tcp] \| SPT: 22624 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-15 02:26:15 (4 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇵🇱 sefinek.net	2026-06-14 22:38:45 (4 days ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 11211 [1] TCP Reported by: https://github. ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 11211 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 Axel	2026-06-13 19:12:36 (5 days ago)	Blocked by UFW on LAXHH [28017/tcp] \| SPT: 29538 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [28017/tcp] \| SPT: 29538 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Admins@FBN	2026-06-13 12:13:28 (6 days ago)	FW-PortScan: Traffic Blocked srcport=34501 dstport=9443	Port Scan
🇺🇸 Axel	2026-06-13 06:49:01 (6 days ago)	Blocked by UFW on LAXHH [9001/tcp] \| SPT: 20150 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [9001/tcp] \| SPT: 20150 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-10 02:27:10 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-07 08:51:27 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 23:57:57 (2 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-31 12:31:51 (2 weeks ago)	tcp/12346	Port Scan
Anonymous	2026-05-30 21:36:45 (2 weeks ago)	2026-05-30T22:36:44.465460+01:00 vps kernel: [41917175.067629] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-05-30T22:36:44.465460+01:00 vps kernel: [41917175.067629] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=123.245.85.201 DST=54.37.14.118 LEN=44 TOS=0x00 PREC=0x00 TTL=232 ID=34255 PROTO=TCP SPT=43943 DPT=8333 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇮🇩 David Koswari	2026-05-29 05:14:00 (3 weeks ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇺🇸 bitblockit	2026-05-27 17:21:14 (3 weeks ago)	Reconnaissance or port-scan activity observed on a honeypot sensor. Honeypot decoy type: P0f. Decoy ... show more Reconnaissance or port-scan activity observed on a honeypot sensor. Honeypot decoy type: P0f. Decoy listen port: 10411/tcp. Observed event time: 2026-05-27 17:21:14 UTC. Report from passive honeypot only; no payload or credentials included. show less	Port Scan

Showing 1 to 15 of 162 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇮 147.185.133.245

🇨🇳 115.190.14.210

🇻🇳 113.176.61.79

🇷🇺 91.244.113.178

🇧🇦 188.127.109.201

🇻🇳 171.244.201.80

🇮🇳 146.196.38.250

🇻🇳 116.97.104.18

🇩🇪 47.245.137.228

🇺🇸 23.234.109.239

🇷🇺 213.180.203.223

🇮🇳 182.70.255.242

🇨🇭 179.43.168.58

🇺🇸 172.217.107.25

🇺🇸 156.232.13.218

🇧🇩 103.136.107.173

🇻🇳 14.191.233.171

🇩🇪 207.154.250.9

🇳🇱 176.65.139.237

🇩🇪 130.12.180.65