JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.227.31.81

124.227.31.81 was found in our database!

This IP was reported 296 times. Confidence of Abuse is 73%: ?

73%

ISP	CHINANET Guangxi province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanning, Guangxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.227.31.81

Whois 124.227.31.81

IP Abuse Reports for 124.227.31.81:

This IP address has been reported a total of 296 times from 57 distinct sources. 124.227.31.81 was first reported on December 24th 2020, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-16 09:10:48 (5 days ago)	Blocked by UFW on LAXHH [9653/tcp] \| SPT: 55742 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [9653/tcp] \| SPT: 55742 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-16 03:55:30 (5 days ago)	Honeypot hit: Large payload (1457 bytes); 1991 [1] TCP Reported by: https://github.com/sefinek/T-Pot ... show more Honeypot hit: Large payload (1457 bytes); 1991 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 Axel	2026-06-14 14:31:25 (1 week ago)	Blocked by UFW on LAXHH [8094/tcp] \| SPT: 18599 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [8094/tcp] \| SPT: 18599 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 BIV	2026-06-13 06:11:29 (1 week ago)	Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 2480. Automated ti ... show more Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 2480. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Bad Web Bot
🇺🇸 Axel	2026-06-13 05:24:31 (1 week ago)	Blocked by UFW on LAXHH [5601/tcp] \| SPT: 48334 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [5601/tcp] \| SPT: 48334 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 dispaisyenterprises	2026-06-12 21:22:52 (1 week ago)	Honeypot [fra-de-honeypot]: Large payload (1457 bytes); 8093 [1] TCP Reported by DisPaisy Enterprise ... show more Honeypot [fra-de-honeypot]: Large payload (1457 bytes); 8093 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇯🇵 mkaraki	2026-06-11 20:17:03 (1 week ago)	1781209020 # Service_probe # SIGNATURE_SEND # source_ip:124.227.31.81 # dst_port:3020 ...	Port Scan
🇬🇧 PeravixGroup	2026-06-10 08:06:37 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇯🇵 mkaraki	2026-06-10 04:59:18 (1 week ago)	1781067556 # Service_probe # SIGNATURE_SEND # source_ip:124.227.31.81 # dst_port:8069 ...	Port Scan
🇬🇧 PeravixGroup	2026-06-08 20:20:24 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-08 13:17:37 (1 week ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 09:33:38 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-08 08:02:41 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 05:14:29 (1 week ago)	Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. A ... show more Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. Aaran.cloud show less	DDoS Attack Hacking
🇺🇸 xmission.com	2026-06-08 05:03:35 (1 week ago)	Blocked by UFW (TCP on 1870) Source port: 26487 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1870) Source port: 26487 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 124.227.31.81) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 296 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 67.207.93.64

🇱🇹 45.227.254.170

🇺🇸 205.210.31.88

🇧🇷 191.36.154.175

🇳🇮 186.77.204.109

🇺🇸 172.236.126.175

🇨🇳 118.145.242.91

🇿🇦 105.184.30.197

🇺🇸 66.132.172.245

🇺🇸 64.62.197.227

🇩🇪 34.185.139.47

🇺🇸 2607:f8b0:4023:1004::120

🇨🇳 220.181.108.156

🇨🇦 184.161.151.41

🇺🇸 184.105.139.114

🇮🇩 182.253.151.209

🇺🇸 172.234.218.245

🇻🇳 157.66.26.151

🇺🇸 136.36.189.65

🇰🇿 95.58.255.251