JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 182.138.158.38

182.138.158.38 was found in our database!

This IP was reported 435 times. Confidence of Abuse is 84%: ?

84%

ISP	CHINANET Sichuan province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	sctel.com.cn
Country	🇨🇳 China
City	Chengdu, Sichuan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 182.138.158.38

Whois 182.138.158.38

IP Abuse Reports for 182.138.158.38:

This IP address has been reported a total of 435 times from 91 distinct sources. 182.138.158.38 was first reported on May 1st 2022, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-06 09:22:50 (18 hours ago)	Blocked by UFW (TCP on 8444) Source port: 59456 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8444) Source port: 59456 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 182.138.158.38) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇺 LiftUp Hosting	2026-06-06 07:52:00 (19 hours ago)	Honeypot hit: Large payload (1457 bytes); 12283 [1] TCP	Bad Web Bot
🇺🇸 MPL	2026-06-06 03:05:22 (1 day ago)	tcp/58000	Port Scan
🇬🇧 PeravixGroup	2026-06-05 23:33:48 (1 day ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-04 22:03:19 (2 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-04 14:14:36 (2 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-03 06:27:51 (3 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-02 21:36:06 (4 days ago)	2026-06-02T22:36:05.210121+01:00 vps kernel: [42176332.914309] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-02T22:36:05.210121+01:00 vps kernel: [42176332.914309] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=182.138.158.38 DST=54.37.14.118 LEN=44 TOS=0x00 PREC=0x00 TTL=232 ID=31186 PROTO=TCP SPT=20040 DPT=60000 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇩🇪 Justin F. \| AS204464	2026-06-02 19:40:49 (4 days ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 16000 [1] TCP Reported by: Justi ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 16000 [1] TCP Reported by: Justin F. show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-01 21:41:58 (5 days ago)	Honeypot hit: Empty payload (likely service probe); 7007 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-05-31 18:02:22 (6 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 StopAbuse	2026-05-28 11:24:55 (1 week ago)	tcp/1863	Port Scan
🇬🇧 PeravixGroup	2026-05-28 08:20:25 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-28 01:36:02 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 10:11:53 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 435 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 20.65.194.102

🇮🇳 202.141.101.227

🇧🇷 200.53.23.87

🇮🇳 182.79.13.2

🇲🇽 177.245.71.20

🇭🇰 152.32.239.15

🇸🇦 143.92.231.81

🇭🇰 123.58.213.117

🇭🇰 103.43.191.43

🇷🇺 95.108.213.100

🇬🇷 94.65.88.125

🇳🇱 86.54.31.32

🇷🇺 62.182.132.94

🇯🇵 61.192.184.16

🇩🇪 47.254.154.155

🇳🇱 45.148.10.183

🇰🇷 211.254.212.59

🇺🇸 162.216.150.154

🇸🇬 148.66.142.9

🇺🇸 142.111.152.119