JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 175.30.48.116

175.30.48.116 was found in our database!

This IP was reported 366 times. Confidence of Abuse is 87%: ?

87%

ISP	CHANGCHUN-YIQITONGXIN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	189.cn
Country	🇨🇳 China
City	Changchun, Jilin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 175.30.48.116

Whois 175.30.48.116

IP Abuse Reports for 175.30.48.116:

This IP address has been reported a total of 366 times from 94 distinct sources. 175.30.48.116 was first reported on February 8th 2024, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 sandra361	2026-06-20 07:28:03 (14 hours ago)	Port scan detected: 8 attempts across 1 ports (2910). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=175 ... show more Port scan detected: 8 attempts across 1 ports (2910). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=175.30.48.116 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=56394 DF PROTO=TCP SPT=42106 DPT=2910 WINDOW=29200 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 sumnone	2026-06-19 02:31:08 (1 day ago)	Port probing on unauthorized port 27017	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-06-16 09:51:36 (4 days ago)	tcp/3260	Port Scan
🇺🇸 Axel	2026-06-15 07:34:03 (5 days ago)	Blocked by UFW on LAXHH [5443/tcp] \| SPT: 52341 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [5443/tcp] \| SPT: 52341 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 sandra361	2026-06-15 01:06:44 (5 days ago)	Port scan detected: 6 attempts across 1 ports (9042). \| Evidence: REAPER_TARPIT: IN=enp1s0 SRC=175.3 ... show more Port scan detected: 6 attempts across 1 ports (9042). \| Evidence: REAPER_TARPIT: IN=enp1s0 SRC=175.30.48.116 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=40857 DF PROTO=TCP SPT=39289 DPT=9042 WINDOW=29200 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 xmission.com	2026-06-14 07:32:29 (6 days ago)	Blocked by UFW (TCP on 20000) Source port: 64251 TTL: 239 Packet length: 44 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 20000) Source port: 64251 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 175.30.48.116) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-13 08:15:49 (1 week ago)	Blocked by UFW on LAXHH [9012/tcp] \| SPT: 61777 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [9012/tcp] \| SPT: 61777 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇵🇱 sefinek.net	2026-06-12 12:51:31 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (G ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action: MANAGED_CHALLENGE \| Protocol: HTTP/1.1 (GET) \| Endpoint: / \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0 • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇯🇵 mkaraki	2026-06-10 20:03:33 (1 week ago)	1781121811 # Service_probe # SIGNATURE_SEND # source_ip:175.30.48.116 # dst_port:9042 ...	Port Scan
🇺🇸 Cyber Crusader	2026-06-10 18:08:38 (1 week ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇬🇧 PeravixGroup	2026-06-10 13:06:47 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 dispaisyenterprises	2026-06-07 06:15:56 (1 week ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 12000 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 12000 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇦🇺 LiftUp Hosting	2026-06-07 02:28:00 (1 week ago)	Honeypot hit: HTTP/1.1 request on 49154 GET / Accept: /; 49154 [1] TCP	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-06 22:28:59 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-05 08:10:49 (2 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking

Showing 1 to 15 of 366 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇿 85.29.149.211

🇹🇼 198.235.24.40

🇩🇪 194.88.98.89

🇧🇷 189.113.47.155

🇸🇪 185.246.130.20

🇫🇷 185.177.72.68

🇺🇸 165.154.162.202

🇹🇼 118.232.63.155

🇮🇩 103.176.94.18

🇷🇴 80.94.92.186

🇺🇸 66.132.186.244

🇭🇰 47.239.195.232

🇲🇳 203.23.199.89

🇧🇪 198.235.24.194

🇷🇺 188.19.33.72

🇧🇷 168.227.213.105

🇭🇰 152.32.172.177

🇬🇧 35.203.210.239

🇺🇸 34.162.238.157

🇮🇳 27.123.94.66