JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 180.95.238.220

180.95.238.220 was found in our database!

This IP was reported 197 times. Confidence of Abuse is 50%: ?

50%

ISP	China Unicom Gansu province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Lanzhou, Gansu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 180.95.238.220

Whois 180.95.238.220

IP Abuse Reports for 180.95.238.220:

This IP address has been reported a total of 197 times from 43 distinct sources. 180.95.238.220 was first reported on April 19th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 centurion	2026-06-18 07:03:38 (1 day ago)	Blocked by UFW on ns03 [2339/tcp] Source port: 37640 TTL: 230 Packet length: 44 TOS: 0x00 This repo ... show more Blocked by UFW on ns03 [2339/tcp] Source port: 37640 TTL: 230 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-13 18:35:50 (5 days ago)	tcp/8159	Port Scan
🇵🇱 sefinek.net	2026-06-11 13:39:36 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 8886 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 8886 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-10 16:12:18 (1 week ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
Anonymous	2026-06-10 10:30:22 (1 week ago)	Honeypot hit: Unauthorized traffic (15 bytes of payload); 10000 [1] TCP Reported by: https://github. ... show more Honeypot hit: Unauthorized traffic (15 bytes of payload); 10000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 Admins@FBN	2026-06-10 06:39:58 (1 week ago)	FW-PortScan: Traffic Blocked srcport=60514 dstport=9000	Port Scan
🇺🇸 MPL	2026-05-24 11:42:13 (3 weeks ago)	tcp/18016 (2 or more attempts)	Port Scan
🇸🇪 NordhTech	2026-05-18 10:15:21 (1 month ago)	More than 3 malicious connection attempts, trying port(s) 9000/tcp, then blocked from services ...	Port Scan Hacking
🇫🇮 percocet	2026-05-14 12:06:35 (1 month ago)	Cloudflare blocked 1 requests (HTTP 403) in 1h. Country: CN	DDoS Attack Web App Attack
🇬🇧 PeravixGroup	2026-05-11 08:12:21 (1 month ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇧🇾 StatsMe	2026-05-06 22:47:55 (1 month ago)	2026-05-06T18:11:16.025755+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇬🇧 PeravixGroup	2026-05-06 06:51:23 (1 month ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 security.rdmc.fr	2026-05-06 06:48:41 (1 month ago)	Port Scan Attack proto:UDP src:52135 dst:69	Port Scan
🇺🇸 trentwiles.com	2026-05-05 20:44:53 (1 month ago)	Unauthorized connection attempt detected from IP address 180.95.238.220 to port 9010 [SFO]	Port Scan
🇬🇧 PeravixGroup	2026-04-24 11:45:15 (1 month ago)	HoneyPot hit - Aaran.cloud \| Adb Android Exploit \| iot exploitation \| CNXN2host::	IoT Targeted Hacking

Showing 1 to 15 of 197 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.203.234.251

🇺🇸 170.106.103.20

🇺🇸 159.89.226.231

🇫🇮 147.185.133.193

🇧🇩 103.183.62.3

🇫🇷 91.196.152.38

🇯🇵 43.165.180.54

🇧🇪 35.233.68.30

🇬🇧 35.203.211.41

🇰🇷 211.180.105.241

🇲🇽 187.254.54.11

🇷🇴 141.98.83.240

🇬🇧 89.37.172.134

🇳🇱 88.210.63.69

🇫🇷 85.217.140.26

🇮🇪 65.52.75.227

🇱🇹 62.60.130.129

🇨🇦 20.151.116.187

🇧🇬 193.24.211.107

🇳🇱 185.189.182.234