JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 27.18.78.180

27.18.78.180 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 52%: ?

52%

ISP	CHINANET Hubei province network
Usage Type	Fixed Line ISP
ASN	AS137266
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Wuhan, Hubei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 27.18.78.180

Whois 27.18.78.180

IP Abuse Reports for 27.18.78.180:

This IP address has been reported a total of 17 times from 10 distinct sources. 27.18.78.180 was first reported on May 19th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-24 15:57:25 (3 days ago)	tcp/7000	Port Scan
🇫🇷 Soncraft	2026-06-24 11:41:27 (3 days ago)	Blocked by UFW on Jellyfin [9042/tcp] Source port: 14320 TTL: 234 Packet length: 44 TOS: 0x08 This ... show more Blocked by UFW on Jellyfin [9042/tcp] Source port: 14320 TTL: 234 Packet length: 44 TOS: 0x08 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-13 07:44:55 (2 weeks ago)	Blocked by UFW on LAXHH [3268/tcp] \| SPT: 49475 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [3268/tcp] \| SPT: 49475 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 ByeByte API	2026-06-13 07:28:54 (2 weeks ago)	Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 40005. Single burst at 20 ... show more Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 40005. Single burst at 2026-06-13 07:28 UTC. show less	Port Scan
🇳🇱 BIV	2026-06-13 02:40:51 (2 weeks ago)	Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 2162. Automated ti ... show more Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 2162. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-12 20:49:23 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 19080 [1] TCP	Port Scan
🇺🇸 Axel	2026-06-12 01:05:20 (2 weeks ago)	Blocked by UFW on LAXHH [10020/tcp] \| SPT: 37055 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [10020/tcp] \| SPT: 37055 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 gbzret4d	2026-06-11 12:17:24 (2 weeks ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 10014 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-06-11 10:16:40 (2 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-10 22:22:38 (2 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 14:00:33 (2 weeks ago)	Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severit ... show more Honeypot detection: Kubernetes API unauthorized access / cluster abuse attempt on port 6443. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 06:45:52 (2 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇩🇪 dispaisyenterprises	2026-06-08 06:34:53 (2 weeks ago)	Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 50000 [1] TCP Reported by DisPaisy ... show more Honeypot [fra-de-honeypot]: Empty payload (likely service probe); 50000 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-07 20:38:48 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-02 12:29:14 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.178.112.156

🇺🇸 172.110.223.203

🇭🇳 45.181.86.72

🇺🇸 172.215.145.207

🇨🇳 106.63.26.14

🇳🇱 89.248.167.131

🇪🇸 82.223.15.252

🇱🇹 62.60.130.219

🇺🇸 44.72.10.62

🇰🇷 218.149.228.161

🇧🇷 144.22.238.238

🇺🇸 96.78.175.36

🇺🇸 50.6.248.168

🇪🇸 44.30.162.52

🇳🇱 5.61.209.92

🇺🇸 2607:f8b0:400e:c05::129

🇬🇧 195.206.182.198

🇺🇸 44.170.77.149

🇬🇧 35.203.211.56

🇬🇧 185.127.69.236