JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.74

123.245.85.74 was found in our database!

This IP was reported 206 times. Confidence of Abuse is 57%: ?

57%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.74

Whois 123.245.85.74

IP Abuse Reports for 123.245.85.74:

This IP address has been reported a total of 206 times from 73 distinct sources. 123.245.85.74 was first reported on January 17th 2024, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-21 10:55:11 (15 hours ago)	Blocked by UFW on LAXHH [902/tcp] \| SPT: 41689 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: githu ... show more Blocked by UFW on LAXHH [902/tcp] \| SPT: 41689 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-18 10:24:31 (3 days ago)	Honeypot hit: HTTP/1.1 request on 20013 GET / Accept: /; 20013 [1] TCP Reported by: https://githu ... show more Honeypot hit: HTTP/1.1 request on 20013 GET / Accept: /; 20013 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-16 02:19:38 (6 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-15 10:15:43 (6 days ago)	tcp/5598	Port Scan
🇺🇸 Axel	2026-06-12 22:31:24 (1 week ago)	Blocked by UFW on LAXHH [6379/tcp] \| SPT: 15924 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [6379/tcp] \| SPT: 15924 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-07 15:42:25 (2 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 xmission.com	2026-06-07 01:00:51 (2 weeks ago)	Blocked by UFW (TCP on 9042) Source port: 39661 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 9042) Source port: 39661 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 123.245.85.74) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-03 20:52:00 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-05-30 18:29:39 (3 weeks ago)	Blocked by UFW (TCP on 1110) Source port: 29105 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1110) Source port: 29105 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 123.245.85.74) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 zulzeen	2026-05-29 08:04:35 (3 weeks ago)	[distribamap-0] Blocked by SysWarden Firewall [GEO] (Database/Cache Attack)	Hacking Brute-Force
🇬🇧 PeravixGroup	2026-05-22 10:09:23 (4 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 Cyber Crusader	2026-05-21 14:53:49 (1 month ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇩🇪 centurion	2026-05-20 12:32:32 (1 month ago)	Blocked by UFW on ns02 [8025/tcp] Source port: 53552 TTL: 238 Packet length: 44 TOS: 0x00 This repo ... show more Blocked by UFW on ns02 [8025/tcp] Source port: 53552 TTL: 238 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2026-05-18 23:12:09 (1 month ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/123.245.85.74 20 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/123.245.85.74 2026-05-18 02:58:00 / show less	Web App Attack
🇧🇾 StatsMe	2026-05-17 21:38:19 (1 month ago)	2026-05-17T03:37:37.706524+0300 ET SCAN NMAP -sS window 1024	Port Scan

Showing 1 to 15 of 206 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇴 182.93.7.194

🇳🇱 86.54.31.40

🇨🇳 47.95.234.23

🇧🇪 34.62.254.84

🇨🇳 218.78.46.81

🇺🇸 205.210.31.57

🇨🇳 182.244.0.150

🇧🇷 179.102.26.14

🇸🇬 159.89.206.171

🇩🇪 141.98.102.187

🇷🇴 141.98.83.240

🇷🇺 95.215.108.47

🇧🇷 172.237.54.196

🇮🇳 172.83.83.194

🇸🇬 157.245.50.190

🇭🇰 152.32.135.81

🇺🇸 147.185.132.73

🇩🇪 141.11.107.166

🇨🇳 115.190.181.18

🇻🇳 113.160.129.170