Check an IP Address, Domain Name, Subnet, or ASN

123.14.123.126 was found in our database!

$ whois 123.14.123.126

country·🇨🇳 China

isp·CHINA UNICOM China169 Backbone

asn·AS4837

network·Standard

$ sikker risk 123.14.123.126scoring →

confidence

43%Medium

first_seen·Mar 25, 2026

last_seen·1h ago

sessions·1

events·1

$ sikker protocols 123.14.123.126

MONGODB

1 / 1

$ sikker summary 123.14.123.126

123.14.123.126 has a threat confidence score of 43%. This IP address from China (AS4837, CHINA UNICOM China169 Backbone) has been observed in 1 honeypot sessions targeting MONGODB protocols. First observed on March 25, 2026, most recently active March 25, 2026.

$ sikker behaviors 123.14.123.126catalog →

mediumMongodb Version Fingerprinting Reconnaissance1x

Remote client performs MongoDB service validation and environment fingerprinting by first initiating a wire-protocol handshake (ismaster / hello) followed by execution of the buildInfo command against the admin database. This sequence indicates targeted reconnaissance to determine server role, software version, build characteristics, and platform details. Such activity is commonly associated with automated scanning frameworks and pre-exploitation tooling used to assess exposure and identify version-specific vulnerabilities prior to authentication attempts or database enumeration

$ sikker primitives 123.14.123.126

mongodb_ismaster1 mongodb_buildinfo_admin_command1

$ sikker related 123.14.123.126

🇨🇳·More threats fromChina→AS·More threats fromCHINA UNICOM China169 Backbone→MONG·More threats targetingMONGODB→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
123.14.33.100	100%	19
171.39.49.52	81%	27
221.202.215.69	100%	44
153.37.76.34	94%	496
61.240.139.28	100%	58

IP Address	Confidence	Events
119.45.182.119	75%	185
120.84.193.115	64%	2
58.48.170.235	100%	821
58.34.42.158	43%	336
123.14.33.100	100%	16