JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 175.30.48.167

175.30.48.167 was found in our database!

This IP was reported 326 times. Confidence of Abuse is 74%: ?

74%

ISP	CHANGCHUN-YIQITONGXIN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	189.cn
Country	🇨🇳 China
City	Changchun, Jilin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 175.30.48.167

Whois 175.30.48.167

IP Abuse Reports for 175.30.48.167:

This IP address has been reported a total of 326 times from 83 distinct sources. 175.30.48.167 was first reported on February 8th 2024, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-04-10 04:58:10 (2 months ago)	Tried our host z.	Port Scan Hacking Exploited Host
🇵🇱 sefinek.net	2026-04-07 12:43:37 (2 months ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 8500 [1] TCP Reported by: https://github.c ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 8500 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇫🇮 6kilowatti	2026-04-06 19:46:48 (2 months ago)	2026-04-06T22:46:48.363956+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-04-06T22:46:48.363956+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=175.30.48.167 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=237 ID=41726 PROTO=TCP SPT=36621 DPT=2142 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 MPL	2026-04-04 01:35:28 (2 months ago)	tcp/16030 (2 or more attempts)	Port Scan
🇺🇸 shabi	2026-04-04 01:20:30 (2 months ago)	UFW Blocked [888/TCP] Source: 175.30.48.167:13870 TTL: 237 Lenth: 44 TOS: 0x00	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-02 09:34:40 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 3136 [1] TCP	Port Scan
🇺🇸 donarev419	2026-04-02 02:45:34 (2 months ago)	Connection to port 8222 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:8222 ... show more Connection to port 8222 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:8222 Accept: / show less	Port Scan Hacking
🇺🇸 myagent.site	2026-04-01 12:34:50 (2 months ago)	Blocking for trying to access an exploit file: /themes/custom/ahaspeed/favicon.ico	Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-03-29 11:15:40 (2 months ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 12364 [1] TCP	Port Scan
🇷🇸 Scan	2026-03-29 02:39:17 (2 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-03-28 01:24:35 (2 months ago)	Honeypot hit: Empty payload (likely service probe); 10386 [1] TCP	Port Scan
🇺🇸 MPL	2026-03-26 17:42:57 (2 months ago)	tcp/25565 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-03-26 17:42:57 (2 months ago)	tcp/25565	Port Scan
Anonymous	2026-03-25 22:34:52 (3 months ago)	Brute force. Port: 646	Brute-Force
🇺🇸 RAP	2026-03-25 10:03:22 (3 months ago)	2026-03-25 10:03:22 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan

Showing 61 to 75 of 326 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇱 2800:300:69f2:e1a0:78dc:9ec3:fc93:8664

🇨🇳 223.166.206.170

🇨🇱 186.189.85.35

🇪🇸 158.158.49.166

🇨🇳 122.194.9.219

🇸🇬 114.119.134.3

🇺🇸 92.118.57.209

🇺🇸 20.150.196.142

🇮🇩 2.27.165.115

🇧🇷 186.251.165.90

🇦🇷 181.104.43.225

🇫🇷 178.238.231.106

🇮🇩 165.101.231.20

🇧🇷 138.59.216.53

🇨🇳 110.249.202.167

🇧🇩 103.28.122.157

🇳🇱 82.39.86.153

🇭🇰 45.142.154.99

🇸🇬 43.134.230.165

🇬🇧 35.203.211.62