JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.48.38.147

42.48.38.147 was found in our database!

This IP was reported 126 times. Confidence of Abuse is 48%: ?

48%

ISP	China Unicom HuNan province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.48.38.147

Whois 42.48.38.147

IP Abuse Reports for 42.48.38.147:

This IP address has been reported a total of 126 times from 44 distinct sources. 42.48.38.147 was first reported on November 18th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-06-09 19:34:26 (1 week ago)	ICS Labs identified 42.48.38.147 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇩🇪 Justin F. \| AS204464	2026-05-29 20:47:14 (2 weeks ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 10016 GET / Accept: /; 10016 [1] TCP Reported b ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 10016 GET / Accept: /; 10016 [1] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-05-29 18:17:01 (2 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-29 10:33:06 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 13:15:46 (3 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-27 05:37:59 (3 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇨🇦 DRI	2026-05-26 21:53:08 (3 weeks ago)	Unsolicited TCP traffic on Honeypot, srcport=44683 dstport=6080	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-26 21:36:12 (3 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇷🇸 Smel	2026-05-26 08:48:03 (3 weeks ago)	Unauthorized Probe/Connection, Hack -	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-25 07:09:52 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 femboy.cat	2026-05-21 15:08:35 (4 weeks ago)	Port scan to tcp/7676 from 42.48.38.147	Brute-Force
🇬🇧 PeravixGroup	2026-05-21 05:16:40 (4 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-21 00:39:49 (4 weeks ago)	Honeypot hit: Large payload (1388 bytes); 8108 [1] TCP	Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 03:12:25 (4 weeks ago)	Honeypot hit: Empty payload (likely service probe); 25221 [1] TCP	Port Scan
🇺🇸 xmission.com	2026-05-19 12:37:51 (4 weeks ago)	Blocked by UFW (TCP on 8097) Source port: 21690 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8097) Source port: 21690 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 42.48.38.147) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 126 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 157.245.1.7

🇳🇱 134.122.48.81

🇺🇸 71.204.202.207

🇮🇳 203.192.219.29

🇸🇬 185.200.116.35

🇭🇰 118.193.32.119

🇩🇪 91.107.144.141

🇰🇷 59.21.37.60

🇬🇧 5.226.140.94

🇸🇪 216.40.75.222

🇬🇧 193.176.29.16

🇵🇭 126.209.107.70

🇨🇳 123.160.174.164

🇨🇳 111.26.62.42

🇳🇱 87.199.196.181

🇧🇬 78.128.114.58

🇺🇸 66.132.186.178

🇺🇸 64.62.156.66

🇧🇷 45.205.1.247

🇻🇳 36.50.54.243