JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 175.30.48.88

175.30.48.88 was found in our database!

This IP was reported 304 times. Confidence of Abuse is 70%: ?

70%

ISP	CHANGCHUN-YIQITONGXIN
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	189.cn
Country	🇨🇳 China
City	Changchun, Jilin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 175.30.48.88

Whois 175.30.48.88

IP Abuse Reports for 175.30.48.88:

This IP address has been reported a total of 304 times from 89 distinct sources. 175.30.48.88 was first reported on February 8th 2024, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-17 10:54:03 (6 hours ago)	Blocked by UFW (TCP on 14100) Source port: 51576 TTL: 237 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 14100) Source port: 51576 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 175.30.48.88) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 dispaisyenterprises	2026-06-17 06:27:54 (11 hours ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 12360 [1] TCP Reported by Di ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 12360 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇫🇮 6kilowatti	2026-06-15 22:25:30 (1 day ago)	2026-06-16T01:25:29.434835+03:00 mummo kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:d6:a5:bc:00: ... show more 2026-06-16T01:25:29.434835+03:00 mummo kernel: [UFW BLOCK] IN=enp0s25 OUT= MAC=6c:62:6d:d6:a5:bc:00:00:5e:00:01:58:08:00 SRC=175.30.48.88 DST=83.148.240.21 LEN=44 TOS=0x00 PREC=0x00 TTL=236 ID=62011 PROTO=TCP SPT=43669 DPT=10380 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 Axel	2026-06-14 13:23:41 (3 days ago)	Blocked by UFW on MVI [7073/tcp] \| SPT: 61594 \| TTL: 233 \| LEN: 44 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on MVI [7073/tcp] \| SPT: 61594 \| TTL: 233 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 drewf.ink	2026-06-14 09:33:04 (3 days ago)	[09:33] Port scanning. Port(s) scanned: TCP/9092	Port Scan
🇬🇧 gbzret4d	2026-06-14 05:39:48 (3 days ago)	Honeypot [uk-production01]: Large payload (1457 bytes); 12443 [1] TCP	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-12 02:24:59 (5 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 Axel	2026-06-11 21:09:35 (5 days ago)	Blocked by UFW on LAXHH [12392/tcp] \| SPT: 56241 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [12392/tcp] \| SPT: 56241 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-06-11 10:46:45 (6 days ago)	Blocked by UFW (TCP on 11211) Source port: 30418 TTL: 237 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 11211) Source port: 30418 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 175.30.48.88) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇯🇵 mkaraki	2026-06-11 05:07:50 (6 days ago)	1781154468 # Service_probe # SIGNATURE_SEND # source_ip:175.30.48.88 # dst_port:8087 ...	Port Scan
🇬🇧 PeravixGroup	2026-06-06 11:32:08 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 dispaisyenterprises	2026-06-05 11:09:49 (1 week ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 6668 [1] TCP Reported by Dis ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 6668 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-04 14:15:00 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-29 11:15:29 (2 weeks ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 Admins@FBN	2026-05-27 01:31:24 (3 weeks ago)	FW-PortScan: Traffic Blocked srcport=14946 dstport=22	Port Scan Hacking SSH

Showing 1 to 15 of 304 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 125.19.188.98

🇳🇱 195.178.110.30

🇫🇷 176.191.43.176

🇮🇳 122.160.15.31

🇮🇳 106.205.90.31

🇳🇱 81.19.216.113

🇩🇪 213.209.159.56

🇺🇸 208.84.101.72

🇸🇪 193.180.125.157

🇨🇳 182.43.76.81

🇻🇳 160.191.242.222

🇫🇷 85.217.140.16

🇺🇸 172.253.85.88

🇧🇷 168.227.18.0

🇮🇳 144.16.144.93

🇨🇳 111.228.48.124

🇷🇴 80.94.92.168

🇨🇳 14.103.117.105

🇨🇦 4.204.204.10

🇧🇷 200.222.71.218