JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.222

123.245.85.222 was found in our database!

This IP was reported 174 times. Confidence of Abuse is 52%: ?

52%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.222

Whois 123.245.85.222

IP Abuse Reports for 123.245.85.222:

This IP address has been reported a total of 174 times from 69 distinct sources. 123.245.85.222 was first reported on January 23rd 2024, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 TheHoneyPotter	2026-06-20 13:41:01 (12 hours ago)	Honeypot [fc-honeypot]: Large payload (1457 bytes); 7130 [1] TCP Reported by: https://github.com/sef ... show more Honeypot [fc-honeypot]: Large payload (1457 bytes); 7130 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 Axel	2026-06-14 10:53:40 (6 days ago)	Blocked by UFW on LAXHH [3306/tcp] \| SPT: 64937 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [3306/tcp] \| SPT: 64937 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-12 04:05:12 (1 week ago)	Blocked by UFW on LAXHH [2194/tcp] \| SPT: 59395 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [2194/tcp] \| SPT: 59395 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-11 01:31:38 (1 week ago)	Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: ME ... show more Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
Anonymous	2026-06-10 21:53:07 (1 week ago)	Reported from Nginx log analysis 17. Log: 123.245.85.222 - - [10/Jun/2026:xx:xx:xx 0200] "GET / HTT ... show more Reported from Nginx log analysis 17. Log: 123.245.85.222 - - [10/Jun/2026:xx:xx:xx 0200] "GET / HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36" "-" "CN China -" "AS4134" "Chinanet" show less	Port Scan Brute-Force SSH
🇺🇸 cybsecaoccol	2026-06-06 12:57:48 (2 weeks ago)	unauthorized connection or malicious port scan attempted on tcp port 22 - dr	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-05 17:02:17 (2 weeks ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇳🇱 BIV	2026-06-05 03:32:34 (2 weeks ago)	Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 9092. Automated ti ... show more Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 9092. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-04 21:43:55 (2 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 MPL	2026-06-04 10:28:59 (2 weeks ago)	tcp/6601	Port Scan
🇬🇧 PeravixGroup	2026-06-03 15:07:44 (2 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
Anonymous	2026-06-02 13:38:56 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 9981 GET / Accept: /; 9981 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 9981 GET / Accept: /; 9981 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-01 17:08:30 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 23:03:07 (3 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 20:08:59 (3 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking

Showing 1 to 15 of 174 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.83.114.88

🇰🇷 222.98.122.37

🇺🇸 207.90.244.25

🇧🇷 205.210.31.213

🇬🇧 198.244.240.255

🇵🇪 181.176.225.154

🇺🇸 107.150.101.57

🇸🇦 82.167.42.42

🇧🇷 20.201.77.247

🇺🇸 216.75.132.47

🇻🇪 186.92.248.74

🇺🇾 179.30.167.118

🇩🇪 164.92.226.68

🇫🇷 163.172.143.147

🇺🇸 162.216.149.221

🇺🇸 147.182.142.75

🇨🇳 139.212.61.162

🇮🇳 122.187.224.173

🇱🇰 112.134.166.225

🇺🇸 97.99.8.136