JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 180.95.231.52

180.95.231.52 was found in our database!

This IP was reported 217 times. Confidence of Abuse is 43%: ?

43%

ISP	China Unicom Gansu province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Lanzhou, Gansu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 180.95.231.52

Whois 180.95.231.52

IP Abuse Reports for 180.95.231.52:

This IP address has been reported a total of 217 times from 59 distinct sources. 180.95.231.52 was first reported on December 23rd 2020, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-04 18:44:09 (5 days ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 04:14:31 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-19 10:48:18 (3 weeks ago)	Honeypot hit: Empty payload (likely service probe); 11000 [1] TCP	Port Scan
🇦🇺 trentwiles.com	2026-05-19 08:35:16 (3 weeks ago)	Unauthorized connection attempt detected from IP address 180.95.231.52 to port 10113 [SYD]	Port Scan
🇩🇪 femboy.cat	2026-05-19 01:14:16 (3 weeks ago)	Port scan to tcp/4063 from 180.95.231.52	Brute-Force
🇺🇸 RAP	2026-05-18 19:31:44 (3 weeks ago)	2026-05-18 19:31:44 UTC Unauthorized activity to TCP port 3306.	Port Scan
🇺🇸 sumnone	2026-05-18 19:19:38 (3 weeks ago)	Port probing on unauthorized port 10010	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-05 09:58:54 (1 month ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HI ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 2375. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 _ArminS_	2026-05-01 20:36:06 (1 month ago)	SP-Scan 60042:3524 detected 2026.05.01 22:36:06 blocked until 2026.06.20 15:38:53	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-29 14:22:37 (1 month ago)	Honeypot hit: Empty payload (likely service probe); 9849 [1] TCP	Port Scan
🇸🇪 donarev419	2026-04-27 02:27:35 (1 month ago)	Port scan detected on port 12150 (connection without data transfer)	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-26 18:27:05 (1 month ago)	Honeypot hit: Empty payload (likely service probe); 7902 [1] TCP	Port Scan
🇳🇵 radheykrishna.com.np	2026-04-24 23:59:37 (1 month ago)	Apr 25 05:44:36 kernel: [564886.199293] [UFW BLOCK] IN=ens160 OUT= SRC=180.95.231.52 LEN=44 TOS=0x00 ... show more Apr 25 05:44:36 kernel: [564886.199293] [UFW BLOCK] IN=ens160 OUT= SRC=180.95.231.52 LEN=44 TOS=0x00 PREC=0x00 TTL=234 ID=24505 PROTO=TCP SPT=30767 DPT=5190 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 LSPCCU	2026-04-21 14:38:38 (1 month ago)	TSEC Honeypot Network report. Threat score: 60/100. Categories: Port Scan, Hacking, Web App Attack. ... show more TSEC Honeypot Network report. Threat score: 60/100. Categories: Port Scan, Hacking, Web App Attack. Honeypot: cowrie, ssh-telnet. Context: 180. show less	Port Scan Hacking Web App Attack
🇦🇺 LiftUp Hosting	2026-04-20 01:15:58 (1 month ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 32080 [1] TCP	Port Scan

Showing 1 to 15 of 217 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇺 46.39.254.221

🇸🇪 195.178.191.5

🇬🇧 193.163.125.161

🇺🇸 160.153.186.46

🇨🇳 122.96.28.113

🇨🇳 113.137.40.250

🇰🇷 211.106.137.135

🇨🇴 190.90.9.122

🇭🇰 185.227.153.56

🇩🇪 165.227.153.175

🇺🇸 162.217.167.22

🇰🇷 118.194.249.186

🇰🇷 106.248.238.187

🇮🇳 68.183.89.16

🇳🇱 45.148.10.151

🇺🇸 17.241.219.124

🇬🇧 135.136.20.17

🇳🇱 45.148.10.157

🇨🇳 223.109.141.9

🇧🇪 198.235.24.211