JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.117.192.125

124.117.192.125 was found in our database!

This IP was reported 119 times. Confidence of Abuse is 35%: ?

35%

ISP	CHINANET Xinjiang province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Urumqi, Xinjiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.117.192.125

Whois 124.117.192.125

IP Abuse Reports for 124.117.192.125:

This IP address has been reported a total of 119 times from 46 distinct sources. 124.117.192.125 was first reported on August 19th 2022, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Justin F. \| AS204464	2026-05-31 11:46:32 (2 weeks ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 15555 [1] TCP Reported by: Justi ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 15555 [1] TCP Reported by: Justin F. show less	Port Scan
🇬🇧 PeravixGroup	2026-05-31 02:47:52 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-26 05:26:19 (3 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-22 04:33:45 (3 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-05-21 06:15:02 (4 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 Skyrider	2026-05-19 18:48:34 (4 weeks ago)	124.117.192.125 - - [19/May/2026:20:48:31 +0200] "GET /Alvin9999/https/fanfan1.net/daohang/ HTTP/2.0 ... show more 124.117.192.125 - - [19/May/2026:20:48:31 +0200] "GET /Alvin9999/https/fanfan1.net/daohang/ HTTP/2.0" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" 124.117.192.125 - - [19/May/2026:20:48:31 +0200] "GET /officialsite HTTP/2.0" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" 124.117.192.125 - - [19/May/2026:20:48:33 +0200] "GET /assets/fire_admin/images/logo.png HTTP/2.0" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" 124.117.192.125 - - [19/May/2026:20:48:33 +0200] "GET /assets/images/icon-vpnweb.ico HTTP/2.0" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" 124.117.192.125 - - [19/May/2026:20:48:34 +0200] "GET /assets/images/logo-cn-vpnweb.png HTTP/2.0" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" show less	Bad Web Bot Web App Attack
🇬🇧 PeravixGroup	2026-05-19 07:52:17 (4 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 ghostwarriors	2026-05-16 05:20:08 (1 month ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇩🇪 dispaisyenterprises	2026-05-07 18:12:32 (1 month ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 9998 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 9998 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 dispaisyenterprises	2026-05-07 02:34:49 (1 month ago)	Honeypot [fra-de-honeypot]: HTTP/1.1 request on 2212 GET / Accept: /; 2212 [1] TCP Reported by Di ... show more Honeypot [fra-de-honeypot]: HTTP/1.1 request on 2212 GET / Accept: /; 2212 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
Anonymous	2026-05-07 00:03:29 (1 month ago)	Drop from IP address 124.117.192.125 to tcp-port 7170	Port Scan
🇬🇧 PeravixGroup	2026-05-06 07:21:17 (1 month ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 donarev419	2026-05-03 03:42:07 (1 month ago)	Connection to port 9870 with data transfer. Data preview:	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-02 11:04:03 (1 month ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
🇫🇮 percocet	2026-05-01 19:05:54 (1 month ago)	Cloudflare blocked 1 requests (HTTP 403) in 1h. Country: CN	DDoS Attack Web App Attack

Showing 1 to 15 of 119 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 195.63.5.244

🇺🇸 195.63.5.234

🇺🇸 195.63.5.165

🇺🇸 195.63.5.32

🇺🇸 195.63.5.9

🇺🇸 172.253.1.26

🇷🇺 138.124.77.177

🇨🇳 101.126.30.240

🇺🇸 46.37.100.202

🇸🇬 43.160.250.64

🇩🇪 195.63.30.252

🇩🇪 195.63.30.31

🇺🇸 195.63.4.142

🇺🇸 195.63.4.124

🇺🇸 195.63.4.24

🇬🇧 193.163.125.53

🇨🇳 180.76.179.77

🇧🇬 78.128.112.6

🇺🇸 3.22.57.96

🇩🇪 195.63.30.152