JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 175.30.48.48

175.30.48.48 was found in our database!

This IP was reported 410 times. Confidence of Abuse is 73%: ?

73%

ISP	CHANGCHUN-YIQITONGXIN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	189.cn
Country	🇨🇳 China
City	Changchun, Jilin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 175.30.48.48

Whois 175.30.48.48

IP Abuse Reports for 175.30.48.48:

This IP address has been reported a total of 410 times from 102 distinct sources. 175.30.48.48 was first reported on February 7th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-11 19:30:10 (1 day ago)	Honeypot hit: Empty payload (likely service probe); 1200 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-06-10 00:37:35 (3 days ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇬🇧 PeravixGroup	2026-06-09 07:35:27 (3 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-08 19:33:42 (4 days ago)	Honeypot detection: POP3 email brute-force authentication attempt on port 110. Severity: MEDIUM. Aar ... show more Honeypot detection: POP3 email brute-force authentication attempt on port 110. Severity: MEDIUM. Aaran.cloud show less	Brute-Force
🇯🇵 mkaraki	2026-06-08 00:47:30 (5 days ago)	1780879648 # Service_probe # SIGNATURE_SEND # source_ip:175.30.48.48 # dst_port:11210 ...	Port Scan
🇧🇷 diego	2026-06-07 02:00:19 (6 days ago)	[probe-168-134] 2026-06-07 01:44:18, Client: 175.30.48.48, Protocol: 6, Unauthorized activity to HTT ... show more [probe-168-134] 2026-06-07 01:44:18, Client: 175.30.48.48, Protocol: 6, Unauthorized activity to HTTP: GET / show less	Web App Attack
🇺🇸 MPL	2026-06-06 21:25:55 (6 days ago)	tcp/8554 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-06-06 08:54:34 (6 days ago)	Honeypot detection: POP3 email brute-force authentication attempt on port 110. Severity: MEDIUM. Aar ... show more Honeypot detection: POP3 email brute-force authentication attempt on port 110. Severity: MEDIUM. Aaran.cloud show less	Brute-Force
🇳🇱 BIV	2026-06-05 21:48:48 (1 week ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 3389. Automated tiered ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 3389. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-02 01:59:58 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 13:30:27 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 10:42:23 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-05-28 12:51:13 (2 weeks ago)	Blocked by UFW (TCP on 8080) Source port: 45557 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8080) Source port: 45557 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 175.30.48.48) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 donarev419	2026-05-28 02:13:50 (2 weeks ago)	Connection to port 8444 with data transfer. Data preview: GET / HTTP/1.1 Host: 167.253.66.144:8444 ... show more Connection to port 8444 with data transfer. Data preview: GET / HTTP/1.1 Host: 167.253.66.144:8444 Accept: / show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-05-27 11:24:25 (2 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 410 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.25.89.128

🇩🇪 213.209.159.56

🇧🇷 177.0.238.190

🇷🇺 172.68.10.16

🇻🇳 171.243.150.62

🇯🇵 116.58.170.227

🇺🇸 107.219.189.59

🇧🇷 45.164.39.253

🇳🇱 45.156.128.10

🇺🇸 44.111.175.243

🇧🇪 34.156.87.121

🇮🇷 5.53.38.34

🇺🇸 205.210.31.71

🇺🇸 172.236.127.133

🇺🇸 162.198.91.51

🇵🇭 154.18.197.35

🇳🇱 142.93.235.3

🇸🇬 103.252.203.66

🇺🇸 100.50.17.159

🇱🇹 45.227.254.170