JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 240e:108:49a1:fffe:1::1

240e:108:49a1:fffe:1::1 was found in our database!

This IP was reported 54 times. Confidence of Abuse is 47%: ?

47%

Important Note: Public IPv6 addresses may implement the SLAAC privacy extension. With this, the interface identifier is randomly generated. The SLAAC privacy extension also implements a time out, which is configurable, so that the IPv6 interface addresses will be discarded and a new interface identifier is generated.

ISP	Chinatelecom IPv6 address for network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Chongqing, Chongqing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 240e:108:49a1:fffe:1::1

Whois 240e:108:49a1:fffe:1::1

IP Abuse Reports for 240e:108:49a1:fffe:1::1:

This IP address has been reported a total of 54 times from 39 distinct sources. 240e:108:49a1:fffe:1::1 was first reported on February 17th 2025, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-04 07:18:44 (18 hours ago)	Blocked by UFW (TCP on 32768) Source port: 47335 Packet length: 64 This report (for 240e:0108:49a1: ... show more Blocked by UFW (TCP on 32768) Source port: 47335 Packet length: 64 This report (for 240e:0108:49a1:fffe:0001:0000:0000:0001) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Starburst SysOp Team	2026-05-30 13:11:31 (5 days ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-stl2-14)	Hacking Bad Web Bot
🇩🇪 Admins@FBN	2026-05-30 11:30:53 (5 days ago)	FW-PortScan: Traffic Blocked srcport=41474 dstport=500	Port Scan
🇦🇺 Starburst SysOp Team	2026-05-29 12:54:07 (6 days ago)	Request Missing a Host Header. Operator EQ matched 0 at REQUEST_HEADERS. (920280-syd2-4)	Hacking
🇺🇸 abenage	2026-05-28 15:08:32 (1 week ago)	May 28 09:08:31 [redacted] postfix/submission/smtpd[865824]: lost connection after CONNECT from unkn ... show more May 28 09:08:31 [redacted] postfix/submission/smtpd[865824]: lost connection after CONNECT from unknown[240e:108:49a1:fffe:1::1] show less	Brute-Force Email Spam Exploited Host
🇺🇸 ersei.net	2026-05-24 13:11:34 (1 week ago)	Brute force multiple 403s	Brute-Force
🇯🇵 gomasy	2026-05-22 03:00:47 (1 week ago)	2026-05-22T12:00:46.713283+09:00 ssv01 postfix/smtpd[3582573]: improper command pipelining after CON ... show more 2026-05-22T12:00:46.713283+09:00 ssv01 postfix/smtpd[3582573]: improper command pipelining after CONNECT from unknown[240e:108:49a1:fffe:1::1]: HELP\r\n ... show less	Brute-Force
🇦🇺 Starburst SysOp Team	2026-05-16 13:51:38 (2 weeks ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-syd2-4)	Hacking Bad Web Bot
🇺🇸 xmission.com	2026-05-15 19:49:03 (2 weeks ago)	Blocked by UFW (TCP on 113) Source port: 63815 Packet length: 64 This report (for 240e:0108:49a1:ff ... show more Blocked by UFW (TCP on 113) Source port: 63815 Packet length: 64 This report (for 240e:0108:49a1:fffe:0001:0000:0000:0001) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 samba.org	2026-04-23 21:57:25 (1 month ago)	spam (f2b h2)	Brute-Force
🇩🇪 R.G.	2026-04-22 10:59:39 (1 month ago)	Port Scan detected from 240e:108:49a1:fffe:1::1 (Unknown). 11 hits in the last 200 seconds; Ports: ... show more Port Scan detected from 240e:108:49a1:fffe:1::1 (Unknown). 11 hits in the last 200 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Apr 22 12:59:18 kernel: Firewall: UDP6IN Blocked* IN=enp0s31f6 OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xxdd SRC=240e:0108:49a1:fffe:0001:0 show less	Port Scan
🇩🇪 iNetWorker	2026-04-22 08:34:29 (1 month ago)	trying to access non-authorized port	Port Scan
🇦🇺 Starburst SysOp Team	2026-04-21 20:01:25 (1 month ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-syd2-4)	Hacking Bad Web Bot
Anonymous	2026-04-20 13:42:17 (1 month ago)	[20/Apr/2026:16:42:07 +0300] 177669252767.320631 240e:108:49a1:fffe:1::1 50140 2a01:4f8:202:41d3::2 ... show more [20/Apr/2026:16:42:07 +0300] 177669252767.320631 240e:108:49a1:fffe:1::1 50140 2a01:4f8:202:41d3::2 80 [20/Apr/2026:16:42:16 +0300] 177669253687.303170 240e:108:49a1:fffe:1::1 48452 2a01:4f8:202:41d3::2 443 show less	Web App Attack
🇨🇭 SOC [GOLINE SA]	2026-04-10 08:44:04 (1 month ago)	IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Se ... show more IDS Alert: IDS High-Severity Alert === ATTACK === Signature: IDS High-Severity Alert \| SID: N/A \| Severity: 1-2 \| Category: Security Threat === SOURCE === IP: 240e:108:49a1:fffe:1::1 (IPv6) \| Port: N/A \| Country: China \| ISP: CT-IPV6-NETWORK-ADDRESS \| rDNS: None === TARGET === Host: lg.goline.ch \| IP: lg.goline.ch \| Port: multiple \| Protocol: TCP/UDP \| App: N/A === RESPONSE === Time: 2026-04-10 10:44:04 \| Action: Blocked show less	Port Scan Hacking Bad Web Bot

Showing 1 to 15 of 54 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 192.42.116.60

🇺🇸 184.105.139.120

🇨🇮 160.154.84.190

🇫🇷 147.79.103.194

🇨🇳 123.144.28.90

🇲🇦 105.74.73.177

🇨🇭 85.5.148.125

🇺🇸 66.132.186.173

🇺🇸 66.132.172.119

🇧🇷 45.205.1.241

🇮🇳 4.224.81.31

🇷🇴 2.57.122.238

🇨🇳 223.166.22.34

🇵🇰 223.123.72.160

🇳🇱 185.242.226.91

🇩🇪 178.105.163.37

🇺🇸 152.32.207.229

🇺🇸 147.185.132.94

🇨🇳 101.126.30.240

🇨🇦 99.243.126.66