JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 175.30.48.59

175.30.48.59 was found in our database!

This IP was reported 323 times. Confidence of Abuse is 54%: ?

54%

ISP	CHANGCHUN-YIQITONGXIN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	189.cn
Country	🇨🇳 China
City	Changchun, Jilin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 175.30.48.59

Whois 175.30.48.59

IP Abuse Reports for 175.30.48.59:

This IP address has been reported a total of 323 times from 86 distinct sources. 175.30.48.59 was first reported on February 7th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-04 20:21:42 (1 day ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 00:28:58 (4 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 21:57:20 (5 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-30 16:34:36 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-28 00:10:02 (1 week ago)	tcp/10022 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-26 22:57:30 (1 week ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇦🇺 LiftUp Hosting	2026-05-20 16:04:01 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 5912 GET / Accept: /; 5912 [1] TCP	Hacking Bad Web Bot
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-20 03:58:27 (2 weeks ago)	Honeypot hit: HTTP/1.0 request on 25000 GET / Accept: /; 25000 [1] TCP	Web App Attack
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-19 15:02:55 (2 weeks ago)	Honeypot hit: Large payload (1457 bytes); 12408 [1] TCP	Hacking
🇺🇸 MPL	2026-05-17 09:32:29 (2 weeks ago)	tcp/8129	Port Scan
🇨🇳 ThreatBook.io	2026-05-17 00:45:54 (2 weeks ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/175.30.48.59 2026-05-1 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/175.30.48.59 2026-05-16 13:04:19 / show less	Web App Attack
🇫🇷 ELYAZ	2026-05-14 07:30:35 (3 weeks ago)	(y3) Failed access -byebye- from 175.30.48.59 (CN/China/-): (CF_ENABLE)	Hacking
🇵🇱 pshost.pl	2026-05-09 18:06:13 (3 weeks ago)	2026-05-09T18:06:12.964Z, an unauthorized access attempt was detected on port 22 (SSH) from source I ... show more 2026-05-09T18:06:12.964Z, an unauthorized access attempt was detected on port 22 (SSH) from source IP address 175.30.48.59. show less	Port Scan Brute-Force SSH
🇺🇸 xmission.com	2026-05-09 15:52:14 (4 weeks ago)	Blocked by UFW (TCP on 443) Source port: 51639 TTL: 239 Packet length: 44 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 443) Source port: 51639 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 175.30.48.59) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 xmission.com	2026-05-07 05:14:52 (4 weeks ago)	Blocked by UFW (TCP on 49153) Source port: 62143 TTL: 239 Packet length: 44 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 49153) Source port: 62143 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 175.30.48.59) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 323 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2620:18c:0:192::e0:200

🇧🇷 205.210.31.207

🇿🇼 197.221.232.44

🇺🇸 162.216.149.61

🇰🇷 121.169.226.232

🇺🇸 71.6.167.142

🇮🇳 2a02:4780:11:1122:0:6b5:c813:1

🇰🇷 222.102.21.104

🇹🇷 176.33.181.69

🇺🇸 172.203.149.63

🇨🇳 112.86.225.197

🇫🇷 90.47.67.156

🇷🇴 80.94.92.182

🇨🇳 60.22.43.26

🇩🇪 45.135.193.193

🇨🇳 222.89.169.98

🇰🇷 211.254.212.59

🇧🇷 205.210.31.238

🇺🇸 156.239.253.250

🇭🇰 114.111.54.189