JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.152.1.70

124.152.1.70 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 93%: ?

93%

ISP	China Unicom Gansu province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Lanzhou, Gansu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.152.1.70

Whois 124.152.1.70

IP Abuse Reports for 124.152.1.70:

This IP address has been reported a total of 25 times from 19 distinct sources. 124.152.1.70 was first reported on January 24th 2026, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 GamesGames	2026-06-18 03:37:41 (12 hours ago)	SSH login attempts	Brute-Force SSH
🇩🇪 tentwentyfour	2026-06-18 01:27:09 (14 hours ago)	Blocked for probing SSH accounts	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-17 14:01:54 (1 day ago)	124.152.1.70 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports ... show more 124.152.1.70 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 17 09:01:33 14338 sshd[4457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.152.1.70 user=root Jun 17 09:01:34 14338 sshd[4457]: Failed password for root from 124.152.1.70 port 43296 ssh2 Jun 17 09:01:36 14338 sshd[4507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.152.1.70 user=root Jun 17 09:00:22 14338 sshd[3840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.14.122.221 user=root Jun 17 09:00:24 14338 sshd[3840]: Failed password for root from 34.14.122.221 port 35872 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇺🇸 ras07	2026-06-17 08:00:13 (1 day ago)	Brute force SSH login attempts.	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-17 07:18:27 (1 day ago)	(sshd) Failed SSH login from 124.152.1.70 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction ... show more (sshd) Failed SSH login from 124.152.1.70 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 17 02:16:36 10231 sshd[25552]: Did not receive identification string from 124.152.1.70 port 54199 Jun 17 02:17:45 10231 sshd[25553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.152.1.70 user=root Jun 17 02:17:47 10231 sshd[25553]: Failed password for root from 124.152.1.70 port 54232 ssh2 Jun 17 02:18:06 10231 sshd[26173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.152.1.70 user=root Jun 17 02:18:08 10231 sshd[26173]: Failed password for root from 124.152.1.70 port 49414 ssh2 show less	Brute-Force SSH
🇧🇷 aweher	2026-06-16 11:05:43 (2 days ago)	2026-06-16T11:05:36.830136+00:00 r1.sp1.as64172.enrut.ar sshd[4139252]: Failed password for root fro ... show more 2026-06-16T11:05:36.830136+00:00 r1.sp1.as64172.enrut.ar sshd[4139252]: Failed password for root from 124.152.1.70 port 11104 ssh2 2026-06-16T11:05:39.624433+00:00 r1.sp1.as64172.enrut.ar sshd[4139254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.152.1.70 user=root 2026-06-16T11:05:42.301988+00:00 r1.sp1.as64172.enrut.ar sshd[4139254]: Failed password for root from 124.152.1.70 port 11686 ssh2 ... show less	Brute-Force SSH
🇧🇬 MazenHost	2026-06-16 07:37:53 (2 days ago)	2026-06-16T10:37:51.344623+03:00 betelgeuse.mazen.host sshd[1906323]: pam_unix(sshd:auth): authentic ... show more 2026-06-16T10:37:51.344623+03:00 betelgeuse.mazen.host sshd[1906323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.152.1.70 user=root 2026-06-16T10:37:52.713798+03:00 betelgeuse.mazen.host sshd[1906323]: Failed password for root from 124.152.1.70 port 28208 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-06-16 03:50:40 (2 days ago)	SSH brute force attempt. User: root, Pass: [REDACTED]	Brute-Force SSH
🇰🇷 winter	2026-06-15 08:15:11 (3 days ago)	Connection attemp from 124.152.1.70 to port 22	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-15 00:23:05 (3 days ago)	124.152.1.70 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports ... show more 124.152.1.70 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 15 00:22:48 22577 sshd[17481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.152.1.119 user=root Jun 15 00:22:50 22577 sshd[17481]: Failed password for root from 124.152.1.119 port 10704 ssh2 Jun 15 00:22:52 22577 sshd[17483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.152.1.70 user=root Jun 15 00:22:54 22577 sshd[17483]: Failed password for root from 124.152.1.70 port 11623 ssh2 Jun 15 00:22:56 22577 sshd[17535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.152.1.70 user=root IP Addresses Blocked: 124.152.1.119 (CN/China/-) show less	Brute-Force SSH
🇩🇪 LoNET	2026-06-14 15:39:53 (4 days ago)	Report 2463908 with IP 3511475 for SSH brute-force attack by source 3506133 via ssh-honeypot/0.2.0+h ... show more Report 2463908 with IP 3511475 for SSH brute-force attack by source 3506133 via ssh-honeypot/0.2.0+http show less	Brute-Force SSH
🇨🇭 flaus	2026-06-14 08:45:37 (4 days ago)	$f2bV_matches	Brute-Force SSH
Anonymous	2026-06-14 03:40:30 (4 days ago)	CrowdSec ban: crowdsecurity/ssh-refused-conn	Hacking
🇺🇸 drewf.ink	2026-06-14 02:03:33 (4 days ago)	[02:03] Port scanning. Port(s) scanned: TCP/2002	Port Scan
Anonymous	2026-06-13 06:21:59 (5 days ago)	Jun 13 08:21:55 C1D543E sshd[3122280]: User root from 124.152.1.70 not allowed because not listed in ... show more Jun 13 08:21:55 C1D543E sshd[3122280]: User root from 124.152.1.70 not allowed because not listed in AllowUsers Jun 13 08:21:56 C1D543E sshd[3122280]: Failed password for invalid user root from 124.152.1.70 port 4265 ssh2 Jun 13 08:21:57 C1D543E sshd[3122282]: User root from 124.152.1.70 not allowed because not listed in AllowUsers Jun 13 08:21:57 C1D543E sshd[3122282]: Failed password for invalid user root from 124.152.1.70 port 59653 ssh2 Jun 13 08:21:59 C1D543E sshd[3122284]: User root from 124.152.1.70 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.246.160.21

🇺🇸 165.154.173.143

🇺🇸 152.163.153.74

🇨🇳 115.190.181.18

🇮🇩 110.137.210.137

🇰🇷 59.6.41.4

🇨🇴 206.62.136.109

🇩🇪 167.94.146.34

🇺🇸 162.216.149.192

🇫🇮 147.185.133.16

🇺🇸 100.14.175.135

🇫🇷 83.171.226.124

🇱🇹 81.30.98.144

🇩🇪 172.70.240.147

🇨🇦 106.49.50.197

🇸🇬 104.233.47.65

🇳🇱 45.148.10.157

🇰🇷 43.155.214.159

🇺🇸 34.123.134.194

🇺🇸 203.88.119.100