JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 38.248.160.176

38.248.160.176 was found in our database!

This IP was reported 47 times. Confidence of Abuse is 39%: ?

39%

ISP	Cogent Communications, LLC
Usage Type	Fixed Line ISP
ASN	AS272809
Domain Name	cogentco.com
Country	🇻🇪 Venezuela (Bolivarian Republic of)
City	Barinas, Barinas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 38.248.160.176

Whois 38.248.160.176

IP Abuse Reports for 38.248.160.176:

This IP address has been reported a total of 47 times from 28 distinct sources. 38.248.160.176 was first reported on April 7th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 sthoyer.de	2026-06-16 13:46:46 (1 week ago)	Jun 16 15:46:44 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 16 15:46:44 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=38.248.160.176 DST=173.212.223.67 LEN=52 TOS=0x08 PREC=0x20 TTL=115 ID=7241 DF PROTO=TCP SPT=32752 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 lechat	2026-06-10 22:30:38 (2 weeks ago)	2026-06-10T22:30:38.411497+0000 inbound port scan detected by Suricata. src=38.248.160.176:30744 dst ... show more 2026-06-10T22:30:38.411497+0000 inbound port scan detected by Suricata. src=38.248.160.176:30744 dst=51.68.231.122:1433 proto=TCP. signature="ET SCAN Suspicious inbound to MSSQL port 1433" category="Potentially Bad Traffic" sid=2010935 reason=scan_signature. show less	Port Scan
🇩🇪 Honeypot-EU-Fru	2026-06-01 20:52:39 (3 weeks ago)	1780347158 - 06/01/2026 22:52:38 Host: 38.248.160.176/38.248.160.176 Port: 1433 TCP Blocked ...	Port Scan
🇩🇪 Justin F. \| AS204464	2026-06-01 00:08:27 (3 weeks ago)	Honeypot [nx-infrastructure]: MSSQL traffic (on 1433) with username sa and empty password Reported b ... show more Honeypot [nx-infrastructure]: MSSQL traffic (on 1433) with username sa and empty password Reported by: Justin F. show less	Brute-Force
🇩🇪 celestialcity	2026-06-01 00:08:14 (3 weeks ago)	Blocked by UFW on celestialcityeu [1433/tcp] \| SPT: 32133 \| TTL: 113 \| LEN: 52 \| TOS: 0x08 • Reporte ... show more Blocked by UFW on celestialcityeu [1433/tcp] \| SPT: 32133 \| TTL: 113 \| LEN: 52 \| TOS: 0x08 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 AS213449.net	2026-06-01 00:04:54 (3 weeks ago)	06/01/2026-02:04:54.227002 src=38.248.160.176 dst=5.175.170.11:1433 proto=6 msg=ET SCAN Suspicious i ... show more 06/01/2026-02:04:54.227002 src=38.248.160.176 dst=5.175.170.11:1433 proto=6 msg=ET SCAN Suspicious inbound to MSSQL port 1433 show less	SQL Injection
🇺🇸 sumnone	2026-05-31 23:18:52 (3 weeks ago)	Port probing on unauthorized port 1433	Port Scan Hacking Exploited Host
🇸🇬 drewf.ink	2026-05-27 12:39:57 (4 weeks ago)	[12:39] Port scanning. Port(s) scanned: TCP/1433	Port Scan
🇫🇷 zulzeen	2026-05-26 18:06:31 (4 weeks ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (Database/Cache Attack)	Hacking Brute-Force
🇩🇪 cheatmaster.store	2026-05-20 12:56:05 (1 month ago)	Automatic firewall detection. Attacker IP: 38.248.160.176 Country: VE City: Barinas ORG: AS272809 T ... show more Automatic firewall detection. Attacker IP: 38.248.160.176 Country: VE City: Barinas ORG: AS272809 THUNDERNET, C.A. UFW LOGS: May 20 12:55:03 srv-23213 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=4a:63:06:71:79:3f:20:ed:47:e9:a1:42:08:00 SRC=38.248.160.176 DST=SERVER_IP_HIDDEN LEN=52 TOS=0x00 PREC=0x00 TTL=105 ID=18326 DF PROTO=TCP SPT=33646 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Server IP hidden for privacy. Detected repeated unauthorized connection attempts and firewall blocks. show less	Port Scan Hacking Brute-Force SSH
🇫🇷 zulzeen	2026-05-03 20:21:24 (1 month ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (Database/Cache Attack)	Hacking Brute-Force
🇨🇳 ThreatBook.io	2026-04-28 23:37:01 (1 month ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/38.248.160.176	Brute-Force
🇺🇸 ISPLtd	2026-04-25 18:13:49 (2 months ago)	Apr 25 15:13:46 38.248.160.176 TCP SPT=30881 DPT=1433 SYN Apr 25 15:13:47 38.248.160.176 TCP SPT=308 ... show more Apr 25 15:13:46 38.248.160.176 TCP SPT=30881 DPT=1433 SYN Apr 25 15:13:47 38.248.160.176 TCP SPT=30881 DPT=1433 SYN Apr 25 15:13:49 38.248.160.176 TCP SPT=30881 DPT ... show less	Port Scan
🇩🇪 cloudmax	2026-04-25 17:40:57 (2 months ago)	Cloudmax IPS Block - Suspicious activity. Possible port scanning, service reconnaissance, or vulnera ... show more Cloudmax IPS Block - Suspicious activity. Possible port scanning, service reconnaissance, or vulnerability probing show less	Port Scan
🇳🇱 AS213449.net	2026-04-25 15:58:44 (2 months ago)	04/25/2026-17:58:44.195603 38.248.160.176 ET SCAN Suspicious inbound to MSSQL port 1433	SQL Injection

Showing 1 to 15 of 47 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 176.59.144.205

🇭🇰 172.253.6.26

🇹🇼 165.154.227.158

🇭🇰 118.193.34.5

🇨🇳 117.50.226.213

🇸🇬 103.189.234.244

🇵🇰 101.53.238.100

🇫🇮 95.217.142.75

🇬🇧 2a06:4880:8000::ac

🇲🇽 2806:2f0:33c0:1e8:30c2:acc1:2315:51c4

🇰🇷 220.124.253.58

🇫🇷 185.177.72.205

🇩🇪 167.94.146.68

🇻🇳 165.154.137.186

🇳🇱 134.209.202.49

🇧🇬 79.124.40.110

🇺🇸 66.132.172.112

🇺🇸 50.46.141.125

🇺🇸 50.19.102.70

🇺🇸 50.2.50.10