JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.89.118.9

124.89.118.9 was found in our database!

This IP was reported 701 times. Confidence of Abuse is 84%: ?

84%

ISP	China Unicom Shannxi province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Xi'an, Shaanxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.89.118.9

Whois 124.89.118.9

IP Abuse Reports for 124.89.118.9:

This IP address has been reported a total of 701 times from 112 distinct sources. 124.89.118.9 was first reported on March 19th 2021, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-05 11:38:02 (14 hours ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-05 01:40:58 (1 day ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-04 14:13:14 (1 day ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-02 14:07:49 (3 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-02 03:19:53 (3 days ago)	Honeypot hit: HTTP/1.1 request on 12249 GET / Accept: /; 12249 [1] TCP Reported by: https://githu ... show more Honeypot hit: HTTP/1.1 request on 12249 GET / Accept: /; 12249 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-01 10:09:36 (4 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇧🇷 ICS Labs	2026-05-31 02:30:15 (6 days ago)	ICS Labs identified 124.89.118.9 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 16:34:01 (6 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 04:19:20 (6 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇵🇱 sefinek.net	2026-05-29 22:15:52 (1 week ago)	Honeypot hit: Large payload (1457 bytes); 60000 [1] TCP Reported by: https://github.com/sefinek/T-Po ... show more Honeypot hit: Large payload (1457 bytes); 60000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-05-29 15:38:07 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 07:03:43 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇳🇱 COMPLEX	2026-05-25 03:36:10 (1 week ago)	Unsolicited TCP traffic \| Action: DROP \| Port 12257	Brute-Force
🇬🇧 PeravixGroup	2026-05-23 12:02:45 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-21 19:38:01 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 701 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 191.9.113.131

🇵🇰 175.107.208.203

🇧🇪 34.140.168.155

🇳🇱 195.178.110.30

🇬🇧 192.248.150.180

🇧🇷 189.127.109.198

🇩🇪 159.195.21.168

🇺🇸 147.185.132.15

🇺🇸 146.88.240.145

🇨🇳 115.190.138.163

🇮🇱 89.139.140.173

🇺🇸 66.132.195.82

🇦🇷 190.7.237.14

🇺🇸 172.233.221.115

🇨🇦 85.217.149.66

🇺🇸 44.216.83.178

🇧🇪 34.14.4.23

🇫🇷 4.211.84.189

🇨🇳 218.197.29.144

🇲🇽 186.96.145.241