JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.117.193.85

124.117.193.85 was found in our database!

This IP was reported 101 times. Confidence of Abuse is 44%: ?

44%

ISP	CHINANET Xinjiang province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Urumqi, Xinjiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.117.193.85

Whois 124.117.193.85

IP Abuse Reports for 124.117.193.85:

This IP address has been reported a total of 101 times from 40 distinct sources. 124.117.193.85 was first reported on June 5th 2022, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-05-29 23:32:07 (1 week ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-29 08:33:31 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-29 02:40:31 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-05-28 15:49:40 (1 week ago)	Blocked by UFW (TCP on 7547) Source port: 37613 TTL: 238 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 7547) Source port: 37613 TTL: 238 Packet length: 44 TOS: 0x00 This report (for 124.117.193.85) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-05-26 00:39:03 (2 weeks ago)	tcp/7091 (2 or more attempts)	Port Scan
🇩🇪 femboy.cat	2026-05-24 17:55:33 (2 weeks ago)	Port scan to tcp/9000 from 124.117.193.85	Brute-Force
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 18:03:26 (3 weeks ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 7115 [1] TCP	Port Scan
🇺🇸 Cyber Crusader	2026-05-12 00:31:51 (4 weeks ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇬🇧 PeravixGroup	2026-05-11 01:44:01 (1 month ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-09 05:33:04 (1 month ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇯🇵 mkaraki	2026-05-05 23:01:48 (1 month ago)	1778022100 # Service_probe # SIGNATURE_SEND # source_ip:124.117.193.85 # dst_port:12167 ...	Port Scan
🇮🇳 evicky2002	2026-05-05 06:00:00 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=86, sources=1)	Hacking Brute-Force SSH
🇷🇸 Scan	2026-05-04 02:33:50 (1 month ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-03 21:51:11 (1 month ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 2376. Severity: HI ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 2376. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇷🇸 Scan	2026-05-02 00:25:04 (1 month ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking

Showing 1 to 15 of 101 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 139.198.113.29

🇪🇬 62.193.91.121

🇰🇷 59.24.133.197

🇨🇳 36.107.94.31

🇬🇧 193.163.125.35

🇺🇸 172.59.28.2

🇺🇸 162.216.149.150

🇺🇸 157.230.190.25

🇭🇰 119.28.9.170

🇻🇳 103.149.170.59

🇩🇪 69.5.169.198

🇹🇼 220.128.137.164

🇺🇸 208.87.243.131

🇺🇸 194.99.24.207

🇧🇷 189.108.23.194

🇨🇳 171.105.76.40

🇺🇸 165.154.163.10

🇺🇸 132.196.99.215

🇨🇳 122.114.8.57

🇫🇷 91.231.89.81