JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.248.108.238

43.248.108.238 was found in our database!

This IP was reported 224 times. Confidence of Abuse is 63%: ?

63%

ISP	UNICOM yunnan Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Kunming, Yunnan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.248.108.238

Whois 43.248.108.238

IP Abuse Reports for 43.248.108.238:

This IP address has been reported a total of 224 times from 72 distinct sources. 43.248.108.238 was first reported on August 18th 2023, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-21 04:46:35 (2 hours ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 YF	2026-06-19 09:15:18 (1 day ago)	404 errors Vulnerability scan	Web App Attack
🇩🇪 _ArminS_	2026-06-18 19:05:18 (2 days ago)	SP-Scan 47796:2290 detected 2026.06.18 21:05:18 blocked until 2026.08.07 14:08:05	Port Scan
🇺🇸 xmission.com	2026-06-18 03:30:09 (3 days ago)	Blocked by UFW (TCP on 9668) Source port: 54919 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9668) Source port: 54919 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 43.248.108.238) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-18 02:56:26 (3 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇦🇺 LiftUp Hosting	2026-06-17 03:39:56 (4 days ago)	Honeypot hit: Unauthorized traffic (25 bytes of payload); 18001 [1] TCP	Port Scan
🇫🇮 6kilowatti	2026-06-15 11:21:12 (5 days ago)	2026-06-15T14:21:12.084964+03:00 koti kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:bd:29:2d:18:f ... show more 2026-06-15T14:21:12.084964+03:00 koti kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:bd:29:2d:18:fd:74:70:71:9e:08:00 SRC=43.248.108.238 DST=10.0.0.30 LEN=44 TOS=0x00 PREC=0x00 TTL=226 ID=36958 PROTO=TCP SPT=34337 DPT=10013 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
Anonymous	2026-06-11 16:58:24 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 10000 [1] TCP Reported by: https://github.com/se ... show more Honeypot hit: Empty payload (likely service probe); 10000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇸🇬 drewf.ink	2026-06-10 04:41:10 (1 week ago)	[04:41] Port scanning. Port(s) scanned: TCP/3306	Port Scan
🇬🇧 PeravixGroup	2026-06-08 12:35:12 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇧🇾 StatsMe	2026-06-07 22:27:14 (1 week ago)	2026-06-07T21:15:59.366147+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇬🇧 PeravixGroup	2026-06-07 20:11:00 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-07 15:32:58 (1 week ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-06 16:20:28 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 12:12:32 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 224 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.38.147.106

🇧🇷 45.177.137.0

🇬🇧 35.203.210.205

🇧🇷 181.189.10.90

🇧🇷 168.195.2.98

🇷🇺 95.79.57.221

🇫🇷 85.217.140.26

🇧🇷 45.177.137.177

🇨🇱 34.0.61.43

🇲🇽 187.189.237.35

🇧🇷 177.152.98.136

🇺🇸 143.198.134.9

🇷🇴 92.118.39.228

🇺🇸 91.230.168.34

🇺🇸 66.132.186.129

🇳🇱 46.151.178.13

🇧🇷 45.177.138.90

🇺🇸 40.124.175.251

🇳🇱 185.242.226.33

🇺🇸 184.168.147.110