JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.248.108.57

43.248.108.57 was found in our database!

This IP was reported 237 times. Confidence of Abuse is 34%: ?

34%

ISP	UNICOM yunnan Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Kunming, Yunnan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.248.108.57

Whois 43.248.108.57

IP Abuse Reports for 43.248.108.57:

This IP address has been reported a total of 237 times from 76 distinct sources. 43.248.108.57 was first reported on August 27th 2023, and the most recent report was 18 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-06 18:31:17 (18 hours ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 BIV	2026-06-06 17:37:12 (19 hours ago)	Honeypot multi-source hit. Sources: tpot:Fatt,tpot:P0f,tpot:Suricata. Ports: 443. Automated tiered ( ... show more Honeypot multi-source hit. Sources: tpot:Fatt,tpot:P0f,tpot:Suricata. Ports: 443. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-06 15:11:20 (21 hours ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇺🇸 xxkodedxx	2026-06-06 02:38:38 (1 day ago)	[Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost) Trigger: 1× edge-block in 10 ... show more [Zorvexus edge-defense] Edge-block (probe URI / bad UA / hostile vhost) Trigger: 1× edge-block in 10m window. Origin: CN / AS4837 CHINA UNICOM China169 Backbone Active: 02:37:37 UTC Volume: 1 HTTP req Probed: / Status mix: 444×1 Vhost fishing: 67.217.240.72 Auto-banned 30d. zorvexus-banner. show less	Bad Web Bot Web App Attack
🇬🇧 PeravixGroup	2026-06-05 15:07:55 (1 day ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-04 02:54:20 (3 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-03 20:12:45 (3 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇫🇮 Vaino Karppi	2026-06-03 11:12:39 (4 days ago)	Honeypot triggered: Tried to access restricted page /assets/fire_admin/images/logo.png	Hacking
🇬🇧 PeravixGroup	2026-06-02 17:16:28 (4 days ago)	Honeypot detection: WebAssembly module exploitation attempt on port 27017. Severity: MEDIUM. Aaran.c ... show more Honeypot detection: WebAssembly module exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Web App Attack
Anonymous	2026-06-02 11:50:58 (5 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 11:01:07 (5 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 05:47:29 (5 days ago)	Honeypot detection: LDAP injection / directory service abuse attempt on port 6379. Severity: MEDIUM. ... show more Honeypot detection: LDAP injection / directory service abuse attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Web App Attack
🇬🇧 PeravixGroup	2026-06-02 02:06:55 (5 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇵🇱 sefinek.net	2025-11-20 02:21:38 (6 months ago)	Honeypot hit: Unauthorized traffic (7 bytes of payload); 11300 [1] TCP	Port Scan
🇺🇸 xmission.com	2025-11-18 02:16:40 (6 months ago)	Blocked by UFW (TCP on 21) Source port: 19334 TTL: 238 Packet length: 44 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 21) Source port: 19334 TTL: 238 Packet length: 44 TOS: 0x00 This report (for 43.248.108.57) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	FTP Brute-Force Port Scan Brute-Force

Showing 1 to 15 of 237 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 2a02:4780:27:2222:0:2886:a7c7:1

🇨🇳 183.36.126.68

🇵🇱 143.20.97.128

🇷🇴 92.118.39.236

🇱🇹 81.30.98.44

🇺🇸 198.199.123.9

🇺🇸 192.210.194.2

🇧🇷 177.8.44.111

🇺🇸 172.174.190.118

🇺🇸 167.172.152.196

🇬🇧 158.94.217.10

🇺🇸 135.237.126.195

🇨🇳 117.62.22.127

🇸🇪 90.231.80.167

🇫🇷 86.217.21.47

🇮🇳 86.38.243.166

🇷🇺 80.253.31.232

🇹🇷 45.158.14.124

🇺🇸 2604:a880:400:d1:0:4:8c0d:7001

🇯🇵 207.56.229.243