JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.213

123.245.85.213 was found in our database!

This IP was reported 191 times. Confidence of Abuse is 52%: ?

52%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.213

Whois 123.245.85.213

IP Abuse Reports for 123.245.85.213:

This IP address has been reported a total of 191 times from 63 distinct sources. 123.245.85.213 was first reported on January 17th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-19 02:04:53 (1 day ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 Axel	2026-06-16 10:57:05 (4 days ago)	Blocked by UFW on LAXHH [5000/tcp] \| SPT: 19862 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [5000/tcp] \| SPT: 19862 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-16 10:11:42 (4 days ago)	Honeypot hit: Empty payload (likely service probe); 5888 [1] TCP	Port Scan
🇺🇸 Axel	2026-06-15 01:48:47 (6 days ago)	Blocked by UFW on LAXHH [50009/tcp] \| SPT: 38555 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [50009/tcp] \| SPT: 38555 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-13 15:27:29 (1 week ago)	Blocked by UFW on LAXHH [28017/tcp] \| SPT: 36109 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [28017/tcp] \| SPT: 36109 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 sandra361	2026-06-13 13:19:03 (1 week ago)	Port scan detected: 6 attempts across 1 ports (10080). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=12 ... show more Port scan detected: 6 attempts across 1 ports (10080). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=123.245.85.213 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=1192 DF PROTO=TCP SPT=12180 DPT=10080 WINDOW=29200 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 MPL	2026-06-13 11:14:09 (1 week ago)	tcp/16002 (2 or more attempts)	Port Scan
🇬🇧 gbzret4d	2026-06-12 13:27:53 (1 week ago)	Honeypot [uk-production01]: HTTP/1.1 request on 50060 GET / Accept: /; 50060 [1] TCP	Hacking Bad Web Bot
🇺🇸 Axel	2026-06-11 19:48:31 (1 week ago)	Blocked by UFW on LAXHH [10124/tcp] \| SPT: 44835 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [10124/tcp] \| SPT: 44835 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-09 21:12:19 (1 week ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 00:28:57 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-05 16:12:36 (2 weeks ago)	Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: ME ... show more Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇸🇬 drewf.ink	2026-05-30 16:11:16 (3 weeks ago)	[16:11] Port scanning. Port(s) scanned: TCP/6001	Port Scan
🇬🇧 PeravixGroup	2026-05-29 19:33:02 (3 weeks ago)	Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: M ... show more Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-27 21:28:26 (3 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking

Showing 1 to 15 of 191 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 222.89.15.85

🇲🇿 197.249.239.231

🇳🇱 193.176.31.153

🇺🇸 193.33.236.180

🇸🇦 176.224.54.24

🇫🇷 85.217.140.29

🇺🇸 72.88.254.218

🇳🇱 64.225.72.98

🇨🇳 59.52.178.14

🇨🇳 14.103.84.145

🇺🇸 2607:f8b0:4004:c25::12d

🇹🇼 220.133.165.83

🇺🇸 216.180.246.28

🇰🇷 211.62.111.247

🇺🇸 204.111.212.47

🇲🇽 201.141.108.240

🇭🇰 199.45.155.96

🇭🇰 199.45.154.159

🇳🇱 195.178.110.199

🇫🇷 194.163.137.135