JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 175.30.48.214

175.30.48.214 was found in our database!

This IP was reported 338 times. Confidence of Abuse is 70%: ?

70%

ISP	CHANGCHUN-YIQITONGXIN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	189.cn
Country	🇨🇳 China
City	Changchun, Jilin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 175.30.48.214

Whois 175.30.48.214

IP Abuse Reports for 175.30.48.214:

This IP address has been reported a total of 338 times from 95 distinct sources. 175.30.48.214 was first reported on February 7th 2024, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 Threat.live	2026-06-04 13:55:02 (5 hours ago)	Threat.live: Web Scan	Web App Attack
🇲🇽 FenixHunter🐦‍🔥	2026-06-04 13:11:19 (5 hours ago)	Blocked TLS Cipher Downgrade Attemp. Action Performed: DROP	Port Scan Hacking Bad Web Bot Web App Attack
🇸🇪 NordhTech	2026-06-04 05:15:21 (13 hours ago)	More than 3 malicious connection attempts, trying port(s) 3790/tcp, then blocked from services ...	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-03 13:01:07 (1 day ago)	Honeypot detection: Server-Side Template Injection (SSTI) attempt on port 2375. Severity: HIGH. Aara ... show more Honeypot detection: Server-Side Template Injection (SSTI) attempt on port 2375. Severity: HIGH. Aaran.cloud show less	Hacking Web App Attack
🇬🇧 PeravixGroup	2026-06-02 13:48:13 (2 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 21:59:55 (3 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-31 03:24:11 (4 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 16:26:47 (5 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 09:57:29 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 Telemetry2U.com	2026-05-26 08:48:14 (1 week ago)	Unauthorized connection attempt to port 8080	Hacking
🇬🇧 PeravixGroup	2026-05-25 01:18:55 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 BIV	2026-05-22 11:41:19 (1 week ago)	Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 7094. Automated tiered (T-Pot+DSh ... show more Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 7094. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-19 15:41:35 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 12426 [1] TCP	Port Scan
🇺🇸 MPL	2026-05-17 18:43:03 (2 weeks ago)	tcp/2053 (2 or more attempts)	Port Scan
🇺🇸 MPL	2026-05-17 04:26:54 (2 weeks ago)	tcp/2579	Port Scan

Showing 1 to 15 of 338 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇳🇱 193.176.31.229

🇺🇸 216.73.217.139

🇩🇪 185.242.3.231

🇮🇩 157.15.67.253

🇫🇮 144.31.152.46

🇩🇪 141.11.187.248

🇰🇷 101.36.114.209

🇻🇳 27.79.41.195

🇸🇬 172.253.236.210

🇺🇿 95.46.211.142

🇰🇷 52.103.74.86

🇩🇪 43.157.54.144

🇫🇷 38.242.232.20

🇺🇸 185.191.171.9

🇭🇰 154.12.22.39

🇦🇫 149.54.62.2

🇯🇵 103.125.146.96

🇮🇩 103.98.176.164

🇷🇺 94.198.1.94