JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.48.38.188

42.48.38.188 was found in our database!

This IP was reported 137 times. Confidence of Abuse is 43%: ?

43%

ISP	China Unicom HuNan province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Changsha, Hunan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.48.38.188

Whois 42.48.38.188

IP Abuse Reports for 42.48.38.188:

This IP address has been reported a total of 137 times from 51 distinct sources. 42.48.38.188 was first reported on November 17th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-06-08 13:31:57 (1 week ago)	ICS Labs identified 42.48.38.188 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇬🇧 PeravixGroup	2026-05-29 10:18:15 (2 weeks ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 18:22:59 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-25 17:09:55 (3 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇵🇱 sefinek.net	2026-05-21 11:15:35 (4 weeks ago)	Honeypot hit: HTTP/1.1 request on 2967 GET / Accept: /; 2967 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 2967 GET / Accept: /; 2967 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-05-21 11:07:00 (4 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 11:01:43 (4 weeks ago)	Honeypot hit: Large payload (1457 bytes); 5052 [1] TCP	Hacking
🇬🇧 PeravixGroup	2026-05-20 01:33:56 (4 weeks ago)	Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: ME ... show more Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-19 13:37:29 (4 weeks ago)	Honeypot hit: Empty payload (likely service probe); 12248 [1] TCP	Port Scan
🇺🇸 NetGuard	2026-05-18 20:44:22 (1 month ago)	#honeypot #netguard247 #cowrie #sshtelnetprobe Captured by NetGuard 24/7 T-Pot honeypot (netguard24- ... show more #honeypot #netguard247 #cowrie #sshtelnetprobe Captured by NetGuard 24/7 T-Pot honeypot (netguard24-7.com). Timestamp: 2026-05-18T20:44:22.743+00:00 Attacker IP: 42.48.38.188 \| Port: N/A \| Country: China Honeypot: cowrie \| Attack: ssh_telnet_probe Source: NetGuard 24/7 (netguard24-7.com) \| PhantomGrid Defense show less	Brute-Force SSH
🇳🇱 BIV	2026-05-18 13:25:05 (1 month ago)	Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 8080. Automated tiered (T-Pot+DSh ... show more Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 8080. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-05-17 06:46:56 (1 month ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇺🇸 MPL	2026-05-15 14:59:56 (1 month ago)	tcp/1445	Port Scan
🇬🇧 PeravixGroup	2026-05-15 01:34:14 (1 month ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇷🇸 Scan	2026-05-13 03:04:33 (1 month ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking

Showing 1 to 15 of 137 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c13::124

🇩🇪 194.187.176.234

🇹🇭 125.27.188.168

🇺🇸 5.161.76.18

🇳🇱 193.176.31.200

🇦🇷 186.143.200.38

🇺🇸 172.236.228.202

🇮🇹 109.118.95.237

🇫🇮 94.183.234.205

🇫🇷 85.217.140.35

🇰🇪 41.89.116.15

🇺🇸 35.252.116.191

🇰🇷 14.49.157.155

🇺🇸 216.25.89.86

🇫🇮 178.20.210.152

🇮🇳 106.51.92.114

🇳🇱 91.92.42.64

🇮🇩 36.93.249.106

🇺🇸 18.223.44.34

🇺🇸 172.236.228.193