JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 175.30.48.149

175.30.48.149 was found in our database!

This IP was reported 329 times. Confidence of Abuse is 62%: ?

62%

ISP	CHANGCHUN-YIQITONGXIN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	189.cn
Country	🇨🇳 China
City	Changchun, Jilin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 175.30.48.149

Whois 175.30.48.149

IP Abuse Reports for 175.30.48.149:

This IP address has been reported a total of 329 times from 106 distinct sources. 175.30.48.149 was first reported on February 7th 2024, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-06 05:44:20 (11 hours ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-06-06 01:42:59 (15 hours ago)	Blocked by UFW (TCP on 2118) Source port: 64177 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 2118) Source port: 64177 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 175.30.48.149) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-05 11:25:38 (1 day ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-04 13:45:27 (2 days ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
🇬🇧 PeravixGroup	2026-06-03 07:53:04 (3 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-02 19:23:28 (3 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 19:22:08 (4 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇷🇺 akokarev	2026-05-31 19:00:01 (5 days ago)	MikroTik autoban	Port Scan
🇩🇪 Justin F. \| AS204464	2026-05-29 02:10:31 (1 week ago)	Honeypot [nx-infrastructure]: Unauthorized traffic (16 bytes of payload); 2396 [1] TCP Reported by: ... show more Honeypot [nx-infrastructure]: Unauthorized traffic (16 bytes of payload); 2396 [1] TCP Reported by: Justin F. show less	Port Scan
🇺🇸 MPL	2026-05-29 00:03:18 (1 week ago)	tcp/15004	Port Scan
🇬🇧 PeravixGroup	2026-05-27 05:51:25 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-05-25 18:27:32 (1 week ago)	Blocked by UFW (TCP on 9092) Source port: 16680 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 9092) Source port: 16680 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 175.30.48.149) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-23 03:51:33 (2 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇺🇸 podril1ak2.ru	2026-05-23 00:40:09 (2 weeks ago)	Blocked by UFW on reporterUS [32400/tcp] \| SPT: 54576 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by ... show more Blocked by UFW on reporterUS [32400/tcp] \| SPT: 54576 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-22 14:27:57 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 7537 GET / Accept: /; 7537 [1] TCP	Web App Attack

Showing 1 to 15 of 329 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2620:18c:0:192::e0:200

🇧🇷 205.210.31.207

🇿🇼 197.221.232.44

🇺🇸 162.216.149.61

🇰🇷 121.169.226.232

🇺🇸 71.6.167.142

🇮🇳 2a02:4780:11:1122:0:6b5:c813:1

🇰🇷 222.102.21.104

🇹🇷 176.33.181.69

🇺🇸 172.203.149.63

🇨🇳 112.86.225.197

🇫🇷 90.47.67.156

🇷🇴 80.94.92.182

🇨🇳 60.22.43.26

🇩🇪 45.135.193.193

🇨🇳 222.89.169.98

🇰🇷 211.254.212.59

🇧🇷 205.210.31.238

🇺🇸 156.239.253.250

🇭🇰 114.111.54.189