JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.227.31.74

124.227.31.74 was found in our database!

This IP was reported 288 times. Confidence of Abuse is 79%: ?

79%

ISP	CHINANET Guangxi province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanning, Guangxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.227.31.74

Whois 124.227.31.74

IP Abuse Reports for 124.227.31.74:

This IP address has been reported a total of 288 times from 53 distinct sources. 124.227.31.74 was first reported on February 2nd 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-04 12:01:27 (1 day ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
🇬🇧 PeravixGroup	2026-06-04 03:04:23 (1 day ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-06-03 09:07:32 (2 days ago)	tcp/2103 (2 or more attempts)	Port Scan
🇧🇾 StatsMe	2026-06-02 23:11:19 (3 days ago)	2026-06-02T19:52:15.251563+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇬🇧 PeravixGroup	2026-06-01 09:16:26 (4 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-27 09:42:07 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 Justin F. \| AS204464	2026-05-27 01:40:38 (1 week ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 22222 GET / Accept: /; 22222 [1] TCP Reported b ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 22222 GET / Accept: /; 22222 [1] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
🇩🇪 femboy.cat	2026-05-26 20:29:00 (1 week ago)	Port scan to tcp/2601 from 124.227.31.74	Brute-Force
🇺🇸 Cyber Crusader	2026-05-26 17:22:09 (1 week ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 08:25:03 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 3085 [1] TCP	Port Scan
🇷🇸 Scan	2026-05-20 00:19:37 (2 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇫🇷 chengkev	2026-05-18 06:44:21 (2 weeks ago)	Esta IP fue detectada por CrowdSec, activando crowdsecurity/http-open-proxy	Web App Attack
🇩🇪 iNetWorker	2026-05-17 18:20:48 (2 weeks ago)	firewall-block, port(s): 1400/tcp	Port Scan
🇳🇵 radheykrishna.com.np	2026-05-14 16:12:13 (3 weeks ago)	May 14 21:57:12 kernel: [2264888.834065] [UFW BLOCK] IN=ens160 OUT= SRC=124.227.31.74 LEN=44 TOS=0x0 ... show more May 14 21:57:12 kernel: [2264888.834065] [UFW BLOCK] IN=ens160 OUT= SRC=124.227.31.74 LEN=44 TOS=0x00 PREC=0x00 TTL=234 ID=55598 PROTO=TCP SPT=22683 DPT=7014 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇬🇧 gbzret4d	2026-05-14 11:16:39 (3 weeks ago)	Honeypot [uk-production01]: HTTP/1.1 request on 5858 GET / Accept: /; 5858 [1] TCP	Hacking Bad Web Bot

Showing 1 to 15 of 288 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 170.80.65.181

🇸🇬 152.42.219.80

🇸🇬 148.66.142.9

🇧🇩 27.123.254.198

🇺🇸 20.163.60.228

🇫🇷 2001:41d0:303:8593::1

🇨🇳 182.119.130.195

🇺🇸 136.117.178.69

🇺🇸 107.167.34.125

🇳🇱 31.59.93.173

🇷🇴 2.57.121.25

🇨🇳 180.106.80.16

🇨🇳 101.126.71.100

🇬🇧 87.236.176.92

🇮🇳 49.43.241.11

🇺🇸 20.65.193.130

🇺🇸 213.219.252.78

🇩🇪 193.151.189.169

🇩🇪 158.94.208.19

🇺🇸 136.0.143.24