JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.8

123.245.85.8 was found in our database!

This IP was reported 159 times. Confidence of Abuse is 46%: ?

46%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.8

Whois 123.245.85.8

IP Abuse Reports for 123.245.85.8:

This IP address has been reported a total of 159 times from 57 distinct sources. 123.245.85.8 was first reported on January 31st 2024, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-08 09:20:39 (1 hour ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 ByeByte API	2026-06-04 06:32:10 (4 days ago)	Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 28658. Single burst at 20 ... show more Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 28658. Single burst at 2026-06-04 06:32 UTC. show less	Port Scan
🇬🇧 PeravixGroup	2026-06-03 21:32:31 (4 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 MPL	2026-06-02 12:51:08 (5 days ago)	tcp/2736	Port Scan
🇬🇧 PeravixGroup	2026-06-02 05:38:29 (6 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 donarev419	2026-06-02 03:40:30 (6 days ago)	Connection to port 12407 with data transfer. Data preview: �	Port Scan Hacking
🇳🇱 DrLex0	2026-06-01 16:15:31 (6 days ago)	Chinese Go crap 123.245.85.8 443 - [01/Jun/2026:16:15:31 +0000] "GET / HTTP/1.1" 200 13230 "-" "Go- ... show more Chinese Go crap 123.245.85.8 443 - [01/Jun/2026:16:15:31 +0000] "GET / HTTP/1.1" 200 13230 "-" "Go-http-client/1.1" show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-05-29 18:10:50 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 21:09:21 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-26 16:50:54 (1 week ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇬🇧 PeravixGroup	2026-05-26 02:31:28 (1 week ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇫🇷 sthoyer.de	2026-05-24 15:37:10 (2 weeks ago)	May 24 17:37:10 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 24 17:37:10 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=123.245.85.8 DST=173.212.223.67 LEN=44 TOS=0x00 PREC=0x00 TTL=238 ID=26558 PROTO=TCP SPT=58761 DPT=21 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇪 ghostwarriors	2026-05-24 07:50:04 (2 weeks ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇬🇧 PeravixGroup	2026-05-12 12:40:37 (3 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-09 11:56:09 (4 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 159 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 122.96.28.171

🇳🇱 109.121.45.55

🇩🇪 54.37.74.179

🇫🇷 51.68.226.87

🇳🇱 34.6.35.1

🇳🇱 2001:67c:e60:c0c:192:42:116:106

🇳🇱 165.140.116.230

🇨🇳 124.221.121.246

🇨🇳 119.97.189.108

🇨🇳 114.67.252.10

🇮🇩 111.92.164.170

🇮🇩 36.82.45.61

🇻🇳 14.177.41.114

🇷🇴 2.57.121.112

🇰🇷 1.176.134.242

🇰🇷 221.153.50.115

🇳🇱 192.42.116.144

🇧🇷 177.84.144.25

🇺🇸 159.65.68.128

🇰🇿 95.58.255.251