JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 180.95.238.132

180.95.238.132 was found in our database!

This IP was reported 204 times. Confidence of Abuse is 39%: ?

39%

ISP	China Unicom Gansu province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Lanzhou, Gansu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 180.95.238.132

Whois 180.95.238.132

IP Abuse Reports for 180.95.238.132:

This IP address has been reported a total of 204 times from 53 distinct sources. 180.95.238.132 was first reported on March 30th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 femboy.cat	2026-06-23 10:57:51 (1 day ago)	Port scan to tcp/12150 from 180.95.238.132	Brute-Force
🇬🇧 PeravixGroup	2026-06-18 03:42:19 (6 days ago)	Honeypot detection: RTSP streaming server scanning / unauthorized access attempt on port 554. Severi ... show more Honeypot detection: RTSP streaming server scanning / unauthorized access attempt on port 554. Severity: LOW. Aaran.cloud show less	Port Scan
🇦🇹 centurion	2026-06-18 01:09:26 (1 week ago)	Unauthorized attempt on siem [4433/tcp] Source port: 26764 TTL: 236 Packet length: 44 TOS: 0x00 http ... show more Unauthorized attempt on siem [4433/tcp] Source port: 26764 TTL: 236 Packet length: 44 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇹 centurion	2026-06-15 02:48:11 (1 week ago)	Unauthorized attempt on git [10351/tcp] Source port: 26114 TTL: 235 Packet length: 44 TOS: 0x00 http ... show more Unauthorized attempt on git [10351/tcp] Source port: 26114 TTL: 235 Packet length: 44 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 femboy.cat	2026-06-14 01:33:43 (1 week ago)	Port scan to tcp/7007 from 180.95.238.132	Brute-Force
🇬🇧 PeravixGroup	2026-06-10 22:22:00 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇸🇪 NordhTech	2026-06-06 10:45:27 (2 weeks ago)	More than 3 malicious connection attempts, trying port(s) 53/tcp, then blocked from services ...	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-05 09:31:29 (2 weeks ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 brantknudson.org	2026-06-05 08:25:33 (2 weeks ago)	Client sent invalid (non-HTTP) message to honeypot web server: 180.95.238.132 - - [05/Jun/2026:03:25 ... show more Client sent invalid (non-HTTP) message to honeypot web server: 180.95.238.132 - - [05/Jun/2026:03:25:32 -0500] "GET / HTTP/1.1" 400 264 "-" "-" "-" "" show less	Web App Attack Port Scan
🇬🇧 PeravixGroup	2026-06-02 00:03:40 (3 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-30 22:33:31 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-29 04:11:06 (3 weeks ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇵🇱 sefinek.net	2026-05-27 14:42:37 (4 weeks ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 9007 [1] TCP Reported by: https://github.c ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 9007 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-05-27 12:26:11 (4 weeks ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-25 11:10:14 (4 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 204 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇬 91.191.209.98

🇩🇪 213.209.159.226

🇬🇧 213.166.84.38

🇨🇴 200.118.18.13

🇹🇼 198.235.24.90

🇺🇸 172.202.92.73

🇩🇪 167.94.146.57

🇺🇸 167.71.248.102

🇩🇪 154.14.23.208

🇫🇮 147.185.133.26

🇺🇸 147.185.132.222

🇧🇷 138.0.101.109

🇨🇳 123.145.0.59

🇮🇩 103.111.139.12

🇫🇷 85.217.140.38

🇮🇷 85.198.19.251

🇵🇰 72.255.3.39

🇩🇪 69.5.169.92

🇺🇸 64.62.197.31

🇺🇸 52.173.130.64