JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 144.123.76.235

144.123.76.235 was found in our database!

This IP was reported 89 times. Confidence of Abuse is 54%: ?

54%

ISP	CHINANET SHANDONG PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Qingdao, Shandong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 144.123.76.235

Whois 144.123.76.235

IP Abuse Reports for 144.123.76.235:

This IP address has been reported a total of 89 times from 36 distinct sources. 144.123.76.235 was first reported on January 23rd 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-06-08 12:30:56 (1 week ago)	ICS Labs identified 144.123.76.235 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇯🇵 mkaraki	2026-05-27 23:11:17 (2 weeks ago)	1779923476 # Service_probe # SIGNATURE_SEND # source_ip:144.123.76.235 # dst_port:9090 ...	Port Scan
🇺🇸 MPL	2026-05-26 23:14:32 (2 weeks ago)	tcp/9008 (2 or more attempts)	Port Scan
🇸🇪 NordhTech	2026-05-24 00:30:06 (3 weeks ago)	More than 3 malicious connection attempts, trying port(s) 18080/tcp, then blocked from services ...	Port Scan Hacking
🇸🇪 donarev419	2026-05-23 06:17:09 (3 weeks ago)	Port scan detected on port 8069 (connection without data transfer)	Port Scan
🇵🇱 sefinek.net	2026-05-20 18:07:31 (3 weeks ago)	Blocked by UFW on PL02 [5985/tcp] \| SPT: 64122 \| TTL: 228 \| LEN: 44 \| TOS: 0x00 • Reported by: githu ... show more Blocked by UFW on PL02 [5985/tcp] \| SPT: 64122 \| TTL: 228 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 04:05:21 (3 weeks ago)	Honeypot hit: Empty payload (likely service probe); 2567 [1] TCP	Port Scan
🇧🇾 StatsMe	2026-05-19 23:06:37 (3 weeks ago)	2026-05-19T22:02:52.982772+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇺🇸 MPL	2026-05-19 14:41:08 (3 weeks ago)	tcp/447 (2 or more attempts)	Port Scan
🇺🇸 donarev419	2026-05-19 01:29:19 (3 weeks ago)	Connection to port 18000 with data transfer. Data preview: ~	Port Scan Hacking
🇨🇳 ThreatBook.io	2026-05-15 01:23:46 (1 month ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/144.123.76.235 2026-05 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/144.123.76.235 2026-05-14 06:00:44 //www.voanews.com:443 show less	Web App Attack
🇺🇸 MPL	2026-05-14 02:02:55 (1 month ago)	tcp/1177	Port Scan
🇺🇸 MPL	2026-05-11 11:51:14 (1 month ago)	tcp/7778	Port Scan
🇦🇹 Pingger Shikkoken	2026-05-10 23:08:55 (1 month ago)	2026-05-10T23:08:55+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6 ... show more 2026-05-10T23:08:55+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=144.123.76.235 DST=152.53.50.28 LEN=44 TOS=0x00 PREC=0x00 TTL=236 ID=29027 PROTO=TCP SPT=41385 DPT=53 WINDOW=1024 RES=0x00 SYN URGP=0 show less	DNS Poisoning Hacking
🇺🇸 RAP	2026-05-09 19:37:35 (1 month ago)	2026-05-09 19:37:35 UTC Unauthorized activity to TCP port 8089. Web App	Port Scan Web App Attack

Showing 1 to 15 of 89 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 123.58.212.28

🇰🇷 110.14.190.221

🇧🇬 91.148.190.150

🇺🇸 216.25.89.101

🇨🇳 175.174.77.59

🇨🇳 112.113.108.64

🇺🇸 107.150.101.136

🇩🇪 82.165.109.70

🇫🇮 80.66.83.80

🇱🇹 45.227.254.170

🇳🇱 20.160.86.7

🇧🇪 198.235.24.221

🇬🇧 159.65.94.135

🇯🇵 152.32.201.11

🇺🇸 136.118.198.233

🇺🇸 64.37.63.170

🇫🇷 51.68.34.131

🇭🇰 23.91.97.170

🇺🇸 18.190.15.50

🇨🇳 8.136.56.76