JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 180.95.231.114

180.95.231.114 was found in our database!

This IP was reported 213 times. Confidence of Abuse is 40%: ?

40%

ISP	China Unicom Gansu province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Lanzhou, Gansu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 180.95.231.114

Whois 180.95.231.114

IP Abuse Reports for 180.95.231.114:

This IP address has been reported a total of 213 times from 45 distinct sources. 180.95.231.114 was first reported on December 20th 2020, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-12 00:43:46 (2 days ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 22:39:28 (1 week ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇩🇪 _ArminS_	2026-06-06 13:21:22 (1 week ago)	SP-Scan 49030:8089 detected 2026.06.06 15:21:22 blocked until 2026.07.26 08:24:09	Port Scan
🇺🇸 xmission.com	2026-06-06 12:39:30 (1 week ago)	Blocked by UFW (TCP on 4300) Source port: 58070 TTL: 237 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 4300) Source port: 58070 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 180.95.231.114) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-05-31 08:38:42 (2 weeks ago)	tcp/2050	Port Scan
🇬🇧 PeravixGroup	2026-05-31 01:03:42 (2 weeks ago)	Honeypot detection: Server-Side Template Injection (SSTI) attempt on port 143. Severity: HIGH. Aaran ... show more Honeypot detection: Server-Side Template Injection (SSTI) attempt on port 143. Severity: HIGH. Aaran.cloud show less	Hacking Web App Attack
🇯🇵 mkaraki	2026-05-30 20:56:38 (2 weeks ago)	1780174597 # Service_probe # SIGNATURE_SEND # source_ip:180.95.231.114 # dst_port:12309 ...	Port Scan
🇬🇧 PeravixGroup	2026-05-30 00:11:25 (2 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-28 03:52:18 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 BIV	2026-05-22 10:41:03 (3 weeks ago)	Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 12369. Automated tiered (T-Pot+DS ... show more Honeypot multi-source hit. Sources: tpot:P0f,tpot:Suricata. Ports: 12369. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking Brute-Force SSH
🇬🇧 PeravixGroup	2026-05-12 00:07:08 (1 month ago)	Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: ME ... show more Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-04-28 22:36:56 (1 month ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
🇬🇧 PeravixGroup	2026-04-24 10:01:00 (1 month ago)	HoneyPot hit - Aaran.cloud \| Jenkins Jnlp Exploit \| web exploitation	Hacking
🇺🇸 RogueAutomata	2026-04-19 07:30:14 (1 month ago)	Detected malicious request: GET / Detections triggered: Access via IP addr (v4)	Web App Attack
🇩🇪 dispaisyenterprises	2026-04-18 08:39:42 (1 month ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 9128 [1] TCP Reported by Dis ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (16 bytes of payload); 9128 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan

Showing 1 to 15 of 213 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 135.237.127.87

🇮🇳 117.252.241.117

🇨🇳 111.160.133.62

🇬🇧 45.92.47.121

🇬🇧 35.203.211.51

🇺🇸 34.169.226.38

🇬🇧 193.8.186.31

🇲🇽 187.189.172.188

🇨🇳 183.149.161.179

🇺🇸 162.216.150.201

🇺🇸 147.185.132.122

🇻🇳 113.160.181.165

🇨🇳 112.102.223.50

🇳🇱 45.198.224.136

🇦🇺 34.151.74.116

🇺🇸 34.41.17.254

🇷🇴 2.57.122.238

🇷🇴 2.57.121.25

🇳🇱 193.176.31.200

🇨🇱 191.119.28.134