JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.227.31.110

124.227.31.110 was found in our database!

This IP was reported 202 times. Confidence of Abuse is 76%: ?

76%

ISP	CHINANET Guangxi province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanning, Guangxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.227.31.110

Whois 124.227.31.110

IP Abuse Reports for 124.227.31.110:

This IP address has been reported a total of 202 times from 48 distinct sources. 124.227.31.110 was first reported on July 8th 2021, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 sefinek.net	2026-06-13 13:15:42 (10 hours ago)	Honeypot hit: Empty payload (likely service probe); 1107 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 1107 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 Axel	2026-06-13 02:41:46 (20 hours ago)	Blocked by UFW on LAXHH [8129/tcp] \| SPT: 27131 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [8129/tcp] \| SPT: 27131 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇵🇱 sefinek.net	2026-06-12 21:30:34 (1 day ago)	Honeypot hit: Large payload (1457 bytes); 5342 [1] TCP Reported by: https://github.com/sefinek/T-Pot ... show more Honeypot hit: Large payload (1457 bytes); 5342 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 Axel	2026-06-12 03:01:21 (1 day ago)	Blocked by UFW on LAXHH [2128/tcp] \| SPT: 44370 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [2128/tcp] \| SPT: 44370 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 donarev419	2026-06-11 02:06:40 (2 days ago)	Connection to port 443 with data transfer. Data preview: GET / HTTP/1.1 Host: 87.229.95.155:443 Ac ... show more Connection to port 443 with data transfer. Data preview: GET / HTTP/1.1 Host: 87.229.95.155:443 Accept: / show less	Port Scan Hacking
🇷🇸 Scan	2026-06-11 00:33:25 (2 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 MPL	2026-06-05 20:46:48 (1 week ago)	tcp/10026	Port Scan
🇺🇸 MPL	2026-06-03 06:42:40 (1 week ago)	tcp/9864 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-05-31 16:40:40 (1 week ago)	tcp/16000 (2 or more attempts)	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-28 23:12:41 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 2022 [1] TCP	Port Scan
🇩🇪 ValtonTahiri	2026-05-28 13:44:20 (2 weeks ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=124.227.31.110; proto=TCP; source_port=39427; target_port=7776; flags=SYN show less	Port Scan
🇮🇳 evicky2002	2026-05-28 07:33:20 (2 weeks ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=3)	Hacking Brute-Force SSH
🇳🇱 ByeByte API	2026-05-27 05:14:42 (2 weeks ago)	Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 9092. Single burst at 202 ... show more Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 9092. Single burst at 2026-05-27 05:14 UTC. show less	Port Scan
🇯🇵 VXG-NET	2026-05-26 06:46:12 (2 weeks ago)	port=443, indicator_type=info-leak	Hacking
🇳🇴 tmiland	2026-05-26 02:50:26 (2 weeks ago)	Suricata Detected 655 attacks from 124.227.31.110.; ET SCAN Suspicious inbound to mySQL port 3306; I ... show more Suricata Detected 655 attacks from 124.227.31.110.; ET SCAN Suspicious inbound to mySQL port 3306; IP: 124.227.31.110; Ports: 39134; Direction: to_server; Trigger: SCAN; Category: Potentially Bad Traffic; Severity: 2 show less	Port Scan

Showing 1 to 15 of 202 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 208.98.40.18

🇧🇷 190.89.137.31

🇸🇬 43.156.111.141

🇧🇷 177.44.96.148

🇸🇬 118.194.234.8

🇳🇱 91.92.40.5

🇧🇷 45.140.193.156

🇳🇱 45.92.1.214

🇳🇱 20.123.146.93

🇨🇳 8.138.92.126

🇷🇴 2.57.121.25

🇬🇧 195.96.139.221

🇮🇳 122.187.230.187

🇳🇱 93.123.109.167

🇺🇸 64.236.177.122

🇬🇧 35.203.210.182

🇬🇧 193.32.209.247

🇰🇷 175.119.225.68

🇸🇬 161.118.237.181

🇮🇳 122.186.242.42