JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.227.31.75

124.227.31.75 was found in our database!

This IP was reported 216 times. Confidence of Abuse is 60%: ?

60%

ISP	CHINANET Guangxi province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanning, Guangxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.227.31.75

Whois 124.227.31.75

IP Abuse Reports for 124.227.31.75:

This IP address has been reported a total of 216 times from 51 distinct sources. 124.227.31.75 was first reported on December 22nd 2020, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-07 01:26:09 (21 hours ago)	Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. A ... show more Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. Aaran.cloud show less	DDoS Attack Hacking
🇺🇸 xmission.com	2026-06-06 20:45:45 (1 day ago)	Blocked by UFW (TCP on 4064) Source port: 50511 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 4064) Source port: 50511 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 124.227.31.75) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-04 06:07:08 (3 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 01:39:56 (6 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 19:07:09 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-29 12:34:21 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 04:04:44 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇳🇱 DonAtari	2026-05-25 20:50:38 (1 week ago)	DShield firewall scan - TCP to port 1455	Brute-Force SSH
🇬🇧 PeravixGroup	2026-05-25 04:09:18 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-23 12:59:02 (2 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-23 07:26:21 (2 weeks ago)	Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: ... show more Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: MEDIUM. Aaran.cloud show less	Port Scan Brute-Force
🇬🇧 gbzret4d	2026-05-22 06:28:37 (2 weeks ago)	Honeypot [uk-production01]: Unauthorized traffic (16 bytes of payload); 11210 [1] TCP	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 06:17:32 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 28658 [1] TCP	Port Scan
🇩🇪 cheatmaster.store	2026-05-20 00:54:04 (2 weeks ago)	Automatic firewall detection. Attacker IP: 124.227.31.75 Country: CN City: Nanning ORG: AS4134 CHIN ... show more Automatic firewall detection. Attacker IP: 124.227.31.75 Country: CN City: Nanning ORG: AS4134 CHINANET BACKBONE UFW LOGS: May 20 00:53:28 srv-23213 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=4a:63:06:71:79:3f:20:ed:47:e9:a1:42:08:00 SRC=124.227.31.75 DST=SERVER_IP_HIDDEN LEN=84 TOS=0x08 PREC=0x20 TTL=235 ID=26855 PROTO=UDP SPT=37679 DPT=6881 LEN=64 Server IP hidden for privacy. Detected repeated unauthorized connection attempts and firewall blocks. show less	Port Scan Hacking Brute-Force SSH
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-19 15:49:50 (2 weeks ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 12469 [1] TCP	Port Scan

Showing 1 to 15 of 216 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 84.241.219.54

🇩🇪 43.228.157.183

🇺🇸 3.149.236.160

🇫🇷 185.177.72.17

🇫🇷 167.86.119.92

🇺🇸 54.175.74.27

🇧🇷 179.51.153.37

🇺🇸 173.244.60.241

🇺🇸 147.185.132.120

127.0.0.1

🇨🇳 120.48.175.122

🇧🇩 103.171.68.99

🇧🇷 74.244.184.78

🇮🇩 36.95.194.52

🇺🇸 20.65.195.46

🇨🇳 221.228.203.3

🇨🇦 165.22.234.126

🇨🇳 113.141.171.139

🇩🇪 102.220.160.154

🇫🇷 81.51.244.248