JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.227.31.46

124.227.31.46 was found in our database!

This IP was reported 250 times. Confidence of Abuse is 57%: ?

57%

ISP	CHINANET Guangxi province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanning, Guangxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.227.31.46

Whois 124.227.31.46

IP Abuse Reports for 124.227.31.46:

This IP address has been reported a total of 250 times from 53 distinct sources. 124.227.31.46 was first reported on February 4th 2021, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-06 01:22:08 (3 days ago)	Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. A ... show more Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. Aaran.cloud show less	DDoS Attack Hacking
🇩🇪 dispaisyenterprises	2026-06-06 01:21:47 (3 days ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 2269 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 2269 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇦🇺 LiftUp Hosting	2026-06-02 04:15:59 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 2090 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-06-02 01:26:25 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-01 18:55:26 (1 week ago)	tcp/8085	Port Scan
🇺🇸 xmission.com	2026-05-30 19:07:21 (1 week ago)	Blocked by UFW (TCP on 14888) Source port: 40854 TTL: 237 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 14888) Source port: 40854 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 124.227.31.46) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-30 17:05:28 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 AS213449.net	2026-05-28 12:09:41 (1 week ago)	05/28/2026-14:09:40.911388 src=124.227.31.46 dst=89.144.63.210:3306 proto=6 msg=ET SCAN Suspicious i ... show more 05/28/2026-14:09:40.911388 src=124.227.31.46 dst=89.144.63.210:3306 proto=6 msg=ET SCAN Suspicious inbound to mySQL port 3306 show less	SQL Injection
🇩🇪 AS213449.net	2026-05-28 10:40:55 (1 week ago)	05/28/2026-12:40:55.129421 src=124.227.31.46 dst=89.144.63.196:1433 proto=6 msg=ET SCAN Suspicious i ... show more 05/28/2026-12:40:55.129421 src=124.227.31.46 dst=89.144.63.196:1433 proto=6 msg=ET SCAN Suspicious inbound to MSSQL port 1433 show less	SQL Injection
🇩🇪 ValtonTahiri	2026-05-27 12:54:59 (1 week ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=124.227.31.46; proto=TCP; source_port=57045; target_port=50000; flags=SYN show less	Port Scan
🇬🇧 PeravixGroup	2026-05-26 08:45:09 (2 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-25 01:52:59 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-24 09:55:12 (2 weeks ago)	tcp/2856	Port Scan
🇺🇸 donarev419	2026-05-18 04:06:17 (3 weeks ago)	Port scan detected on port 1443 (connection without data transfer)	Port Scan
🇺🇸 MPL	2026-05-16 15:25:43 (3 weeks ago)	tcp/2604 (2 or more attempts)	Port Scan

Showing 1 to 15 of 250 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 193.123.102.61

🇨🇳 110.87.174.19

🇨🇳 101.96.192.88

🇮🇷 94.183.31.168

🇺🇸 66.132.172.144

🇭🇰 35.220.218.153

🇯🇵 20.78.145.252

🇯🇵 20.78.145.167

🇦🇺 20.70.191.87

🇺🇸 20.65.118.88

🇷🇺 213.180.203.158

🇩🇪 167.94.145.23

🇩🇪 139.19.117.131

🇸🇬 129.226.206.177

🇩🇪 104.140.188.2

🇸🇬 101.32.240.31

🇵🇹 94.132.206.244

🇺🇸 91.230.168.213

🇹🇭 83.118.106.194

🇷🇴 80.94.92.182