JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.245.85.89

123.245.85.89 was found in our database!

This IP was reported 147 times. Confidence of Abuse is 50%: ?

50%

ISP	JunQu2-SY-LN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.245.85.89

Whois 123.245.85.89

IP Abuse Reports for 123.245.85.89:

This IP address has been reported a total of 147 times from 55 distinct sources. 123.245.85.89 was first reported on January 18th 2024, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-08 05:27:03 (8 hours ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇵🇱 sefinek.net	2026-06-06 05:09:37 (2 days ago)	Honeypot hit: Large payload (1457 bytes); 19101 [1] TCP Reported by: https://github.com/sefinek/T-Po ... show more Honeypot hit: Large payload (1457 bytes); 19101 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-06 02:24:52 (2 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 xmission.com	2026-06-03 05:06:52 (5 days ago)	Blocked by UFW (TCP on 61616) Source port: 65163 TTL: 237 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 61616) Source port: 65163 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 123.245.85.89) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-02 15:25:44 (5 days ago)	tcp/2014 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-21 05:39:34 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 08:27:45 (2 weeks ago)	Honeypot hit: Large payload (1457 bytes); 4042 [1] TCP	Hacking
🇺🇸 sumnone	2026-05-19 13:35:01 (2 weeks ago)	Port probing on unauthorized port 10264	Port Scan Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-19 09:57:43 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 10357 GET / Accept: /; 10357 [1] TCP	Web App Attack
🇬🇧 PeravixGroup	2026-05-18 06:58:25 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-16 13:41:28 (3 weeks ago)	tcp/447 (2 or more attempts)	Port Scan
🇦🇺 LiftUp Hosting	2026-05-06 05:21:59 (1 month ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 8291 [1] TCP	Port Scan
🇺🇸 xmission.com	2026-05-04 03:34:31 (1 month ago)	Blocked by UFW (TCP on 900) Source port: 21504 TTL: 237 Packet length: 44 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 900) Source port: 21504 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 123.245.85.89) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 security.rdmc.fr	2026-05-03 11:04:51 (1 month ago)	Port Scan Attack proto:TCP src:57661 dst:5061	Port Scan
🇨🇭 pingusurmars	2026-04-29 00:32:38 (1 month ago)	Blocked by UFW on ampereone [12391/tcp] Source port: 30363 TTL: 231 Packet length: 44 TOS: 0x00 Thi ... show more Blocked by UFW on ampereone [12391/tcp] Source port: 30363 TTL: 231 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 147 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.218.206.83

🇨🇴 179.33.186.150

🇩🇪 167.94.145.16

🇳🇱 83.168.106.26

🇩🇪 34.179.247.11

🇹🇷 212.64.199.127

🇫🇷 194.163.183.94

🇺🇸 172.202.117.171

🇩🇪 164.92.182.200

🇺🇸 157.230.180.212

🇦🇪 145.241.123.102

🇨🇳 122.96.28.82

🇱🇹 45.227.254.170

🇵🇱 31.179.197.26

🇨🇳 220.177.204.49

🇻🇳 171.236.169.240

🇱🇾 102.203.197.6

🇩🇪 69.5.169.227

🇺🇸 66.132.186.163

🇺🇸 45.130.83.113