AbuseIPDB » 42.48.38.197
42.48.38.197 was found in our database!
This IP was reported 137 times. Confidence of Abuse is 30%: ?
| ISP | China Unicom HuNan province network |
|---|---|
| Usage Type | Fixed Line ISP |
| ASN | AS4837 |
| Domain Name | chinaunicom.cn |
| Country | ๐จ๐ณ China |
| City | Changsha, Hunan |
IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.
IP Abuse Reports for 42.48.38.197:
This IP address has been reported a total of 137 times from 57 distinct sources. 42.48.38.197 was first reported on , and the most recent report was .
Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.
| Reporter | IoA Timestamp (UTC) | Comment | Categories | |
|---|---|---|---|---|
| ๐ง๐ท ICS Labs |
ICS Labs identified 42.48.38.197 as a malicious indicator from threat intelligence.
|
DDoS Attack Port Scan Hacking Brute-Force Exploited Host | ||
| ๐ฒ๐ณ Public CSIRT/CC of Mongolia |
Honeypot hit: Unauthorized traffic on 27017/mongod
|
Port Scan | ||
| ๐ฌ๐ง PeravixGroup |
|
Hacking Exploited Host | ||
| ๐บ๐ธ MPL |
tcp/9307
|
Port Scan | ||
| ๐บ๐ธ MPL |
tcp/2078
|
Port Scan | ||
| ๐ซ๐ท security.rdmc.fr |
Port Scan Attack proto:TCP src:53237 dst:21
|
Port Scan | ||
| ๐ฒ๐ณ Public CSIRT/CC of Mongolia |
Honeypot hit: HTTP/1.1 request on 3014
GET /
Accept: */*; 3014 [1] TCP
|
Web App Attack | ||
| ๐ง๐พ StatsMe |
2026-05-19T04:10:47.049972+0300
ET SCAN NMAP -sS window 1024
|
Port Scan | ||
| Anonymous |
Drop from IP address 42.48.38.197 to tcp-port 26
|
Port Scan | ||
| ๐ฆ๐บ LiftUp Hosting |
Honeypot hit: Large payload (1388 bytes); 17007 [1] TCP
|
Bad Web Bot | ||
| ๐ฌ๐ง PeravixGroup |
|
Brute-Force Hacking | ||
| ๐ฉ๐ช dispaisyenterprises |
|
Port Scan | ||
| ๐บ๐ธ RAP |
2026-05-12 10:59:27 UTC Unauthorized activity to TCP port 22. SSH
|
SSH | ||
| ๐บ๐ธ MPL |
tcp/11310
|
Port Scan | ||
| ๐บ๐ธ MPL |
tcp/7443
|
Port Scan |
Showing 1 to 15 of 137 reports
Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown ๐ฉ