JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.229

123.245.85.229 was found in our database!

This IP was reported 202 times. Confidence of Abuse is 41%: ?

41%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.229

Whois 123.245.85.229

IP Abuse Reports for 123.245.85.229:

This IP address has been reported a total of 202 times from 72 distinct sources. 123.245.85.229 was first reported on January 18th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-10 13:25:08 (1 day ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-06-07 23:58:03 (4 days ago)	Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: ME ... show more Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-06 11:42:53 (6 days ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-04 21:24:08 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-04 06:09:38 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-03 00:56:32 (1 week ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
🇬🇧 PeravixGroup	2026-06-01 15:42:51 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 foobax	2026-05-29 19:54:53 (1 week ago)	was unable to negotiate from port 52510	SSH Port Scan
🇺🇸 xmission.com	2026-05-29 05:31:41 (2 weeks ago)	Blocked by UFW (TCP on 28017) Source port: 15150 TTL: 239 Packet length: 44 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 28017) Source port: 15150 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 123.245.85.229) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇷 ICS Labs	2026-05-28 19:59:20 (2 weeks ago)	ICS Labs identified 123.245.85.229 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
🇦🇹 services.org.pl	2026-05-22 18:15:56 (2 weeks ago)	open() "/var/www/html/localizations/zh.json" failed (2: No such file or directory), client: 123.245. ... show more open() "/var/www/html/localizations/zh.json" failed (2: No such file or directory), client: 123.245.85.229, server: api.services.org.pl, request: "GET /localizations/zh.json HTTP/1.1", host: "46.102.157.176" show less	Bad Web Bot Web App Attack
🇺🇸 Cyber Crusader	2026-05-20 21:56:20 (3 weeks ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇬🇧 PeravixGroup	2026-05-15 00:34:42 (4 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-14 01:03:09 (4 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇨🇳 ThreatBook.io	2026-05-11 22:46:18 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/123.245.85.229 2 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/123.245.85.229 2026-05-11 19:54:33 http://www.minghui.org/ show less	Web App Attack

Showing 1 to 15 of 202 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 202.47.73.10

🇲🇽 186.96.145.241

🇷🇺 185.204.2.68

🇹🇭 184.22.211.47

🇺🇸 34.26.152.112

🇷🇴 2.57.121.112

🇫🇷 2001:41d0:33d:9200::40a

🇰🇷 220.127.148.6

🇰🇷 211.104.137.55

🇹🇼 198.235.24.74

🇮🇶 188.64.139.147

🇨🇴 179.51.118.87

🇺🇸 162.216.149.223

🇲🇦 160.178.173.178

🇫🇮 147.185.133.91

🇺🇸 66.132.172.221

🇺🇸 23.95.191.250

🇺🇸 3.131.24.55

🇧🇷 205.210.31.129

🇩🇪 152.53.22.30