JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.74

123.245.85.74 was found in our database!

This IP was reported 202 times. Confidence of Abuse is 55%: ?

55%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.74

Whois 123.245.85.74

IP Abuse Reports for 123.245.85.74:

This IP address has been reported a total of 202 times from 72 distinct sources. 123.245.85.74 was first reported on January 17th 2024, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-12 22:31:24 (2 days ago)	Blocked by UFW on LAXHH [6379/tcp] \| SPT: 15924 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [6379/tcp] \| SPT: 15924 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-07 15:42:25 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 xmission.com	2026-06-07 01:00:51 (1 week ago)	Blocked by UFW (TCP on 9042) Source port: 39661 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 9042) Source port: 39661 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 123.245.85.74) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-03 20:52:00 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-05-30 18:29:39 (2 weeks ago)	Blocked by UFW (TCP on 1110) Source port: 29105 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1110) Source port: 29105 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 123.245.85.74) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 zulzeen	2026-05-29 08:04:35 (2 weeks ago)	[distribamap-0] Blocked by SysWarden Firewall [GEO] (Database/Cache Attack)	Hacking Brute-Force
🇬🇧 PeravixGroup	2026-05-22 10:09:23 (3 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 Cyber Crusader	2026-05-21 14:53:49 (3 weeks ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇩🇪 centurion	2026-05-20 12:32:32 (3 weeks ago)	Blocked by UFW on ns02 [8025/tcp] Source port: 53552 TTL: 238 Packet length: 44 TOS: 0x00 This repo ... show more Blocked by UFW on ns02 [8025/tcp] Source port: 53552 TTL: 238 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2026-05-18 23:12:09 (3 weeks ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/123.245.85.74 20 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/123.245.85.74 2026-05-18 02:58:00 / show less	Web App Attack
🇧🇾 StatsMe	2026-05-17 21:38:19 (4 weeks ago)	2026-05-17T03:37:37.706524+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇬🇧 PeravixGroup	2026-05-17 19:41:52 (4 weeks ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇺🇸 MPL	2026-05-17 19:20:59 (4 weeks ago)	tcp/8080 (2 or more attempts)	Port Scan
Anonymous	2026-05-17 15:59:13 (4 weeks ago)	PROTO=TCP DPT=10373	Port Scan Hacking
🇨🇦 DRI	2026-05-17 03:31:19 (4 weeks ago)	Unsolicited TCP traffic on Honeypot, srcport=43545 dstport=2080	Port Scan Hacking

Showing 1 to 15 of 202 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 143.20.49.38

🇨🇳 116.179.33.19

🇺🇸 104.28.165.14

🇮🇳 49.36.170.103

🇬🇭 41.204.63.118

🇺🇸 2604:a880:400:d1:0:4:9635:9001

🇺🇸 2604:a880:400:d1:0:4:9623:6001

🇨🇳 222.170.96.30

🇭🇰 199.45.155.93

🇳🇱 185.213.174.34

🇺🇸 170.106.180.139

🇰🇷 118.37.214.187

🇺🇸 109.105.210.60

🇳🇱 104.23.166.34

🇪🇸 88.20.32.205

🇻🇳 14.225.206.171

🇰🇷 221.156.126.1

🇸🇪 217.211.208.125

🇩🇪 213.209.159.108

🇷🇴 193.46.255.93