AbuseIPDB » 43.248.108.138

43.248.108.138 was found in our database!

This IP was reported 159 times. Confidence of Abuse is 80%: ?

80%

ISP	UNICOM yunnan Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	China
City	Kunming, Yunnan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 43.248.108.138

Whois 43.248.108.138

IP Abuse Reports for 43.248.108.138:

This IP address has been reported a total of 159 times from 59 distinct sources. 43.248.108.138 was first reported on August 23rd 2023, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
yangfan	2025-07-09 00:45:33 (21 hours ago)	UFW Blocked [8086/TCP] Source: 43.248.108.138:49528 TTL: 234 Lenth: 44 TOS: ... show moreUFW Blocked [8086/TCP] Source: 43.248.108.138:49528 TTL: 234 Lenth: 44 TOS: 0x00 show less	Port Scan
MPL	2025-07-08 14:42:52 (1 day ago)	tcp/8058 (2 or more attempts)	Port Scan
security.rdmc.fr	2025-07-06 01:33:54 (3 days ago)	Port Scan Attack proto:TCP src:33668 dst:21	Port Scan
StopAbuse	2025-07-05 10:46:30 (4 days ago)	tcp/1443	Port Scan
ThreatBook.io	2025-07-04 01:41:11 (5 days ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/43.248.108.138	SSH
Scan	2025-06-30 03:00:45 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
Anonymous	2025-06-27 03:52:13 (1 week ago)	Reported from Nginx log analysis 16. Log: 43.248.108.138 - - [27/Jun/2025:xx:xx:xx 0200] "GET / HTT ... show moreReported from Nginx log analysis 16. Log: 43.248.108.138 - - [27/Jun/2025:xx:xx:xx 0200] "GET / HTTP/1.1" xxx xxx "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.112 Safari/537.36" "-" "CN China -" "AS4837" "CHINA UNICOM China169 Backbone" show less	Port Scan Brute-Force SSH
Study Bitcoin 🤗	2025-06-25 15:14:15 (2 weeks ago)	Port probe to tcp/8 (unassigned) [srv127]	Port Scan
Anonymous	2025-06-24 16:10:10 (2 weeks ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Brute-Force Bad Web Bot Web App Attack
Scan	2025-06-20 02:31:42 (2 weeks ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
Study Bitcoin 🤗	2025-06-19 16:44:05 (2 weeks ago)	Port probe to tcp/6565 [srv62]	Port Scan
ipblock.com	2025-06-19 05:23:00 (2 weeks ago)	IPBlock protected site ID [4055-d][s=06]. Exploit request, vulnerability scanner.	Hacking Bad Web Bot Web App Attack
drewf.ink	2025-06-16 02:39:07 (3 weeks ago)	[02:39] Port scanning. Port(s) scanned: TCP/111	Port Scan
MPL	2025-06-15 12:39:03 (3 weeks ago)	tcp/50001 (2 or more attempts)	Port Scan
sumnone	2025-06-14 22:40:09 (3 weeks ago)	Port probing on unauthorized port 20002	Port Scan Hacking Exploited Host

Showing 1 to 15 of 159 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

45.135.193.67

2a06:4880:4000::4c

167.94.146.47

221.213.129.46

113.45.237.132

154.221.20.67

45.156.129.100

47.128.42.99

154.221.20.67

183.108.79.132

154.83.15.32

114.217.32.132

187.51.118.166

52.138.143.111

116.120.58.228

103.27.36.4

61.95.157.164

89.152.55.51

66.240.236.109

152.136.139.92