JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 180.95.231.96

180.95.231.96 was found in our database!

This IP was reported 212 times. Confidence of Abuse is 43%: ?

43%

ISP	China Unicom Gansu province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Lanzhou, Gansu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 180.95.231.96

Whois 180.95.231.96

IP Abuse Reports for 180.95.231.96:

This IP address has been reported a total of 212 times from 63 distinct sources. 180.95.231.96 was first reported on April 15th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 bellovacorp	2026-06-17 04:17:05 (1 day ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇫🇷 bellovacorp	2026-06-16 00:03:06 (2 days ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇩🇪 Justin F. \| AS204464	2026-06-14 13:23:03 (4 days ago)	Honeypot [nx-infrastructure]: Large payload (1457 bytes); 9006 [1] TCP Reported by: Justin F.	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-10 09:29:42 (1 week ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-07 01:26:01 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 07:18:02 (1 week ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇬🇧 PeravixGroup	2026-06-04 18:39:30 (2 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇵🇱 sefinek.net	2026-05-31 01:33:34 (2 weeks ago)	Honeypot hit: Unauthorized traffic (9 bytes of payload); 9042 [1] TCP Reported by: https://github.co ... show more Honeypot hit: Unauthorized traffic (9 bytes of payload); 9042 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-05-29 11:55:02 (2 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇮🇩 David Koswari	2026-05-29 05:14:00 (2 weeks ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇳🇵 radheykrishna.com.np	2026-05-25 18:16:43 (3 weeks ago)	May 26 00:01:42 kernel: [3222786.256808] [UFW BLOCK] IN=ens160 OUT= SRC=180.95.231.96 LEN=44 TOS=0x0 ... show more May 26 00:01:42 kernel: [3222786.256808] [UFW BLOCK] IN=ens160 OUT= SRC=180.95.231.96 LEN=44 TOS=0x00 PREC=0x00 TTL=234 ID=50408 PROTO=TCP SPT=50992 DPT=3000 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇩🇪 _ArminS_	2026-05-22 13:22:47 (3 weeks ago)	SP-Scan 26396:14238 detected 2026.05.22 15:22:47 blocked until 2026.07.11 08:25:34	Port Scan
🇺🇸 MPL	2026-05-18 23:10:47 (4 weeks ago)	tcp/3002 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-13 03:46:18 (1 month ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇩🇪 centurion	2026-05-10 17:22:01 (1 month ago)	Blocked by UFW on ns02 [50805/tcp] Source port: 37144 TTL: 237 Packet length: 44 TOS: 0x00 This rep ... show more Blocked by UFW on ns02 [50805/tcp] Source port: 37144 TTL: 237 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 212 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.233

🇪🇹 196.189.126.185

🇵🇪 190.81.117.162

🇦🇷 181.94.155.17

🇨🇳 121.229.107.184

🇨🇳 117.184.44.55

🇺🇸 100.54.100.90

🇨🇳 58.215.207.238

🇳🇱 45.153.34.235

🇺🇸 35.196.126.251

🇧🇪 207.175.88.117

🇬🇧 198.244.168.150

🇫🇷 172.71.127.21

🇵🇪 149.34.48.186

🇫🇷 91.196.152.189

🇫🇷 87.230.27.200

🇷🇴 80.94.92.165

🇩🇪 47.254.144.24

🇸🇬 34.87.126.114

🇹🇷 2.58.42.42