JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 112.124.38.136

112.124.38.136 was found in our database!

This IP was reported 162 times. Confidence of Abuse is 38%: ?

38%

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Hangzhou, Zhejiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 112.124.38.136

Whois 112.124.38.136

IP Abuse Reports for 112.124.38.136:

This IP address has been reported a total of 162 times from 48 distinct sources. 112.124.38.136 was first reported on March 2nd 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-12 16:15:32 (1 week ago)	Blocked by UFW on MVI [5872/tcp] \| SPT: 40930 \| TTL: 233 \| LEN: 40 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on MVI [5872/tcp] \| SPT: 40930 \| TTL: 233 \| LEN: 40 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 ISPLtd	2026-06-03 18:22:58 (2 weeks ago)	Jun 3 15:22:56 112.124.38.136 TCP SPT=50975 DPT=33860 SYN Jun 3 15:22:56 112.124.38.136 TCP SPT=50 ... show more Jun 3 15:22:56 112.124.38.136 TCP SPT=50975 DPT=33860 SYN Jun 3 15:22:56 112.124.38.136 TCP SPT=50975 DPT=52906 SYN Jun 3 15:22:57 112.124.38.136 TCP SPT=50975 DPT=44030 ... show less	Port Scan
🇭🇰 pengpeng	2026-05-31 07:38:57 (2 weeks ago)	monitor: on ser162528253480 \| port: 43231 \| ttl: 236 script: github.com/sefinek/UFW-AbuseIPDB-Repor ... show more monitor: on ser162528253480 \| port: 43231 \| ttl: 236 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇦 Blinker73	2026-05-30 07:33:26 (2 weeks ago)	2026-05-30T03:33 kernel: OUT= SRC=112.124.38.136 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=43284 PR ... show more 2026-05-30T03:33 kernel: OUT= SRC=112.124.38.136 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=43284 PROTO=TCP SPT=46400 DPT=45458 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-30T03:33 kernel: OUT= SRC=112.124.38.136 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=60628 PROTO=TCP SPT=46400 DPT=37711 WINDOW=1024 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 ISPLtd	2026-05-27 09:47:24 (3 weeks ago)	May 27 03:47:19 112.124.38.136 TCP SPT=55237 DPT=40730 SYN May 27 03:47:21 112.124.38.136 TCP SPT=55 ... show more May 27 03:47:19 112.124.38.136 TCP SPT=55237 DPT=40730 SYN May 27 03:47:21 112.124.38.136 TCP SPT=55237 DPT=21637 SYN May 27 03:47:23 112.124.38.136 TCP SPT=55237 DPT=61379 ... show less	Port Scan
🇺🇸 baltic-lab.com	2026-05-27 02:59:17 (3 weeks ago)	2026-05-27T04:56:35.734317+02:00 us kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:57:66:9b:c8:08:8b: ... show more 2026-05-27T04:56:35.734317+02:00 us kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:57:66:9b:c8:08:8b:ff:ce:a1:08:00 SRC=112.124.38.136 DST=89.117.22.226 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=59018 PROTO=TCP SPT=50595 DPT=58676 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-27T04:56:36.219733+02:00 us kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:57:66:9b:c8:08:8b:ff:ce:a1:08:00 SRC=112.124.38.136 DST=89.117.22.226 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=15825 PROTO=TCP SPT=50595 DPT=11148 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-27T04:56:36.990253+02:00 us kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:57:66:9b:c8:08:8b:ff:ce:a1:08:00 SRC=112.124.38.136 DST=89.117.22.226 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=60521 PROTO=TCP SPT=50595 DPT=34417 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-27T04:56:55.328679+02:00 us kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:57:66:9b:c8:08:8b:ff:ce:a1:08:00 SRC=112.124.38.136 DST=89.117.22.226 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=59187 PROTO=TCP SPT=50595 DPT=51712 W ... show less	Brute-Force Hacking
🇩🇪 acadeova	2026-05-23 15:02:47 (3 weeks ago)	Blocked by UFW on vps2 [5355/tcp] Source port: 48549 TTL: 241 Packet length: 40 TOS: 0x00 This repo ... show more Blocked by UFW on vps2 [5355/tcp] Source port: 48549 TTL: 241 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 acadeova	2026-05-18 05:01:26 (1 month ago)	Blocked by UFW on vps2 [63281/tcp] Source port: 40475 TTL: 241 Packet length: 40 TOS: 0x00 This rep ... show more Blocked by UFW on vps2 [63281/tcp] Source port: 40475 TTL: 241 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2026-05-15 23:55:02 (1 month ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/112.124.38.136	SSH
🇬🇧 PeravixGroup	2026-05-12 07:56:06 (1 month ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇨🇦 Blinker73	2026-05-08 18:46:30 (1 month ago)	2026-05-08T14:46 kernel: OUT= SRC=112.124.38.136 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=64340 PR ... show more 2026-05-08T14:46 kernel: OUT= SRC=112.124.38.136 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=64340 PROTO=TCP SPT=45986 DPT=6026 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-08T14:46 kernel: OUT= SRC=112.124.38.136 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=22282 PROTO=TCP SPT=45986 DPT=8921 WINDOW=1024 RES=0x00 SYN URGP=0 2026-05-08T14:46 kernel: OUT= SRC=112.124.38.136 LEN=40 TOS=0x00 PREC=0x00 TTL=228 ID=36722 PROTO=TCP SPT=45986 DPT=30112 WINDOW=1024 RES=0x00 SYN URGP= show less	Port Scan
🇬🇧 PeravixGroup	2026-05-08 14:24:32 (1 month ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-08 10:55:21 (1 month ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇰🇷 winter	2026-04-30 01:51:44 (1 month ago)	Connection attemp from 112.124.38.136 to port 22	Brute-Force SSH
🇨🇳 ThreatBook.io	2026-04-28 00:07:33 (1 month ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/112.124.38.136 2026 ... show more ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/112.124.38.136 2026-04-27 02:46:27 / 2026-04-27 02:46:30 / show less	Web App Attack

Showing 1 to 15 of 162 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4003:c07::121

🇺🇸 216.25.89.74

🇳🇱 195.178.110.30

🇧🇷 189.50.142.78

🇮🇩 163.7.3.154

🇷🇸 95.180.94.239

🇫🇷 85.217.140.52

🇺🇸 65.111.9.33

🇻🇪 200.82.188.129

🇳🇱 185.93.89.132

🇨🇳 116.228.233.93

🇨🇳 116.147.40.93

🇬🇧 94.2.214.89

🇫🇷 90.3.206.159

🇨🇦 85.217.149.26

🇨🇦 85.217.149.19

🇨🇦 85.217.149.1

🇬🇧 80.176.98.44

🇳🇱 45.148.10.152

🇺🇸 34.16.243.85