JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 175.30.48.161

175.30.48.161 was found in our database!

This IP was reported 358 times. Confidence of Abuse is 100%: ?

100%

ISP	CHANGCHUN-YIQITONGXIN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	189.cn
Country	🇨🇳 China
City	Changchun, Jilin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 175.30.48.161

Whois 175.30.48.161

IP Abuse Reports for 175.30.48.161:

This IP address has been reported a total of 358 times from 102 distinct sources. 175.30.48.161 was first reported on February 7th 2024, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 vincent_EUDIER	2026-06-29 17:00:00 (12 hours ago)	ET SCAN NMAP -sS window 1024	Port Scan
Anonymous	2026-06-29 10:45:53 (18 hours ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 Axel	2026-06-29 00:50:29 (1 day ago)	Blocked by UFW on LAXHH [49151/tcp] \| SPT: 18356 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [49151/tcp] \| SPT: 18356 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-28 20:25:38 (1 day ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host
Anonymous	2026-06-28 01:36:07 (2 days ago)	Hit honeypot r.	Port Scan Hacking Exploited Host
🇩🇪 iNetWorker	2026-06-27 06:30:52 (2 days ago)	firewall-block, port(s): 18888/tcp	Port Scan
🇩🇪 dispaisyenterprises	2026-06-26 08:15:49 (3 days ago)	Honeypot [fra-de-honeypot]: Large payload (1457 bytes); 9998 [1] TCP Reported by DisPaisy Enterprise ... show more Honeypot [fra-de-honeypot]: Large payload (1457 bytes); 9998 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 MPL	2026-06-25 13:45:18 (4 days ago)	tcp/808	Port Scan
🇩🇪 SMi-Web	2026-06-25 12:48:39 (4 days ago)	Blocked by firewall on hugin [12332/tcp] \| Rule: UFW \| SPT: 12006 \| TTL: 238 \| LEN: 44 \| TOS: 0x00 • ... show more Blocked by firewall on hugin [12332/tcp] \| Rule: UFW \| SPT: 12006 \| TTL: 238 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 VMHeaven.io	2026-06-24 18:42:50 (5 days ago)	Blocked by UFW [2083/tcp] Source port: 53267 TTL: 233 Packet length: 44	Port Scan
🇯🇵 jay hung	2026-06-24 15:47:47 (5 days ago)	2026-06-24T15:47:46.953408+00:00 quarktech kernel: [960721.535022] [UFW BLOCK] IN=eth0 OUT= MAC=22:0 ... show more 2026-06-24T15:47:46.953408+00:00 quarktech kernel: [960721.535022] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=175.30.48.161 DST=172.237.20.248 LEN=44 TOS=0x00 PREC=0x40 TTL=226 ID=52290 PROTO=TCP SPT=19760 DPT=2051 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇸🇪 NordhTech	2026-06-24 11:00:16 (5 days ago)	More than 3 malicious connection attempts, trying port(s) 9943/tcp, then blocked from services ...	Port Scan Hacking
🇧🇷 ICS Labs	2026-06-23 19:54:49 (6 days ago)	ICS Labs identified 175.30.48.161 as a malicious indicator from threat intelligence.	DDoS Attack Port Scan Hacking Brute-Force Exploited Host
🇫🇷 Duggy_Tuxy🧱	2026-06-20 14:31:25 (1 week ago)	[DS-BLKS-PROD01] Blocked by SysWarden Firewall (Port Scan / Probing)	Port Scan
🇬🇧 PeravixGroup	2026-06-19 01:46:48 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 358 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.228

🇺🇸 66.132.195.76

🇺🇸 20.169.105.105

🇩🇪 213.209.159.235

🇹🇼 198.235.24.33

🇬🇧 193.163.125.231

🇳🇱 176.65.139.234

🇺🇸 137.184.201.169

🇧🇩 103.214.201.185

🇸🇬 84.75.150.186

🇺🇸 20.169.106.62

🇮🇩 210.210.155.71

🇳🇱 204.76.203.81

🇩🇪 193.124.20.233

🇻🇳 171.244.37.97

🇵🇰 149.71.36.31

🇸🇬 145.223.131.178

🇳🇱 93.123.109.128

🇳🇱 88.210.63.69

🇸🇬 84.75.155.198