JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.228.48.181

111.228.48.181 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 100%: ?

100%

ISP	eleven street,No. 18 Institute of Jingdong headquarters
Usage Type	Fixed Line ISP
ASN	AS141679
Domain Name	jd.com
Country	🇨🇳 China
City	Tianjin, Tianjin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.228.48.181

Whois 111.228.48.181

IP Abuse Reports for 111.228.48.181:

This IP address has been reported a total of 48 times from 21 distinct sources. 111.228.48.181 was first reported on June 8th 2026, and the most recent report was 49 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 xserverx.ru	2026-06-22 06:58:43 (49 minutes ago)	[UFW SCAN!!!!] SRC=111.228.48.181 LEN=40 TOS=0x00 PREC=0x00 TTL=234 PROTO=TCP SPT=57355 DPT=1433 WIN ... show more [UFW SCAN!!!!] SRC=111.228.48.181 LEN=40 TOS=0x00 PREC=0x00 TTL=234 PROTO=TCP SPT=57355 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇷🇸 Smel	2026-06-22 03:23:07 (4 hours ago)	SQL/MH Probe, Scan, Hack -	Port Scan Hacking SQL Injection
🇩🇪 femboy.cat	2026-06-22 00:42:56 (7 hours ago)	Port scan to tcp/1433 from 111.228.48.181	Brute-Force
🇬🇧 gbzret4d	2026-06-21 22:28:48 (9 hours ago)	Honeypot [uk-production01]: MSSQL traffic (on 1433) with username sa and empty password	Brute-Force
🇫🇷 Soncraft	2026-06-21 14:55:14 (16 hours ago)	Blocked by UFW on Jellyfin [1433/tcp] Source port: 57355 TTL: 237 Packet length: 44 TOS: 0x08 This ... show more Blocked by UFW on Jellyfin [1433/tcp] Source port: 57355 TTL: 237 Packet length: 44 TOS: 0x08 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 BIV	2026-06-20 20:35:03 (1 day ago)	Honeypot multi-source hit. Sources: tpot:Dionaea,tpot:P0f,tpot:Suricata. Ports: 1433. Automated tier ... show more Honeypot multi-source hit. Sources: tpot:Dionaea,tpot:P0f,tpot:Suricata. Ports: 1433. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
Anonymous	2026-06-19 11:17:02 (2 days ago)	ET SCAN Suspicious inbound to MSSQL port 1433	Port Scan
🇩🇪 zupan	2026-06-19 02:26:37 (3 days ago)	Blocked by UFW on vps [1433/tcp] \| SPT: 55839 \| TTL: 238 \| LEN: 40 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on vps [1433/tcp] \| SPT: 55839 \| TTL: 238 \| LEN: 40 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇹🇷 Domainhizmetleri.com	2026-06-18 04:58:06 (4 days ago)	[honeypot] - MS-SQL	Port Scan SQL Injection Brute-Force
🇷🇸 Scan	2026-06-18 02:27:54 (4 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇩🇪 Mailguard-FRD	2026-06-17 03:11:51 (5 days ago)	1781665911 - 06/17/2026 05:11:51 Host: 111.228.48.181/111.228.48.181 Port: 1433 TCP Blocked ...	Port Scan
🇬🇧 gbzret4d	2026-06-17 02:57:43 (5 days ago)	Honeypot [uk-production01]: MSSQL traffic (on 1433) with username sa and empty password	Brute-Force
🇺🇸 xmission.com	2026-06-16 17:50:45 (5 days ago)	Blocked by UFW (TCP on 1433) Source port: 55820 TTL: 241 Packet length: 40 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1433) Source port: 55820 TTL: 241 Packet length: 40 TOS: 0x00 This report (for 111.228.48.181) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇷 chronos	2026-06-16 15:56:40 (5 days ago)	Possible malicious scan or exploit attempt on database services. \| Port: 1433 \| Proto: TCP \| Locatio ... show more Possible malicious scan or exploit attempt on database services. \| Port: 1433 \| Proto: TCP \| Location: China, N/A show less	Hacking SQL Injection Port Scan Exploited Host
🇷🇸 Smel	2026-06-16 12:08:03 (5 days ago)	SQL/MH Probe, Scan, Hack -	Port Scan Hacking SQL Injection

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 172.253.239.155

🇩🇪 157.90.172.93

🇵🇰 110.93.224.226

🇺🇸 104.243.35.45

🇮🇩 103.190.46.189

🇫🇷 91.231.89.148

🇹🇷 5.11.192.95

🇻🇳 210.245.20.230

🇧🇷 187.120.19.253

🇺🇸 173.255.212.137

🇧🇷 152.32.200.213

🇷🇴 141.98.83.240

🇧🇩 117.58.241.4

🇨🇦 104.207.49.184

🇲🇦 81.192.46.32

🇺🇸 5.78.193.0

🇬🇧 2a06:4880:4000::53

🇺🇸 198.46.168.51

🇧🇷 187.108.214.185

🇷🇺 178.177.235.246