JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 175.30.48.228

175.30.48.228 was found in our database!

This IP was reported 327 times. Confidence of Abuse is 65%: ?

65%

ISP	CHANGCHUN-YIQITONGXIN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	189.cn
Country	🇨🇳 China
City	Changchun, Jilin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 175.30.48.228

Whois 175.30.48.228

IP Abuse Reports for 175.30.48.228:

This IP address has been reported a total of 327 times from 98 distinct sources. 175.30.48.228 was first reported on February 7th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-03 19:03:29 (1 day ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-03 15:34:58 (1 day ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-03 13:56:08 (1 day ago)	Honeypot hit: HTTP/1.0 request on 18081 POST /json_rpc Accept: / POST Data: {"jsonrpc":"2.0","id" ... show more Honeypot hit: HTTP/1.0 request on 18081 POST /json_rpc Accept: / POST Data: {"jsonrpc":"2.0","id":"0","method":"get_info"}; 18081 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-05-31 03:22:15 (5 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 05:18:42 (6 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-29 23:51:06 (6 days ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇵🇱 sefinek.net	2026-05-29 18:52:48 (6 days ago)	Blocked by UFW on PL02 [10000/tcp] \| SPT: 21099 \| TTL: 228 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on PL02 [10000/tcp] \| SPT: 21099 \| TTL: 228 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-29 03:36:53 (1 week ago)	Honeypot detection: Privilege escalation / elevation attempt on port 5984. Severity: CRITICAL. Aaran ... show more Honeypot detection: Privilege escalation / elevation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking
🇬🇧 PeravixGroup	2026-05-27 06:08:28 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-23 23:53:07 (1 week ago)	tcp/5236	Port Scan
🇬🇧 PeravixGroup	2026-05-22 22:13:07 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 16:28:52 (2 weeks ago)	Honeypot hit: Large payload (1457 bytes); 61222 [1] TCP	Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-19 21:02:56 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 18068 GET / Accept: /; 18068 [1] TCP	Web App Attack
🇺🇸 xmission.com	2026-05-19 10:35:26 (2 weeks ago)	Blocked by UFW (TCP on 55555) Source port: 11321 TTL: 237 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 55555) Source port: 11321 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 175.30.48.228) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 centurion	2026-05-17 01:26:29 (2 weeks ago)	Blocked by UFW on ns02 [2376/tcp] Source port: 36159 TTL: 237 Packet length: 44 TOS: 0x00 This repo ... show more Blocked by UFW on ns02 [2376/tcp] Source port: 36159 TTL: 237 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 327 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 71.18.71.198

🇲🇽 201.149.53.243

🇷🇺 188.190.211.5

🇫🇮 147.185.133.148

🇳🇱 45.148.10.152

🇨🇳 14.103.118.189

🇺🇸 2607:f8b0:4001:c76::12a

🇯🇵 207.56.225.202

🇲🇽 189.194.140.170

🇺🇿 185.203.236.212

🇮🇩 103.122.67.223

🇧🇩 103.114.97.82

🇮🇹 101.56.168.131

🇺🇸 75.89.156.112

🇰🇷 59.21.37.60

🇮🇩 38.253.239.21

🇺🇸 207.241.173.57

🇭🇷 185.203.18.146

🇦🇷 179.60.228.74

🇸🇮 176.65.134.20