JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.36.109.144

101.36.109.144 was found in our database!

This IP was reported 844 times. Confidence of Abuse is 100%: ?

100%

ISP	UCLOUD INFORMATION TECHNOLOGY (HK) LIMITED
Usage Type	Data Center/Web Hosting/Transit
ASN	AS135377
Domain Name	ucloud.cn
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.36.109.144

Whois 101.36.109.144

IP Abuse Reports for 101.36.109.144:

This IP address has been reported a total of 844 times from 220 distinct sources. 101.36.109.144 was first reported on January 7th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇼 taiwanfrp.me	2026-06-15 11:52:21 (2 hours ago)	taiwanfrp NewUserConn auto-ban: reason=ip_over_target_scan_limit_60s1, conn10s=1, targets10m=1, targ ... show more taiwanfrp NewUserConn auto-ban: reason=ip_over_target_scan_limit_60s1, conn10s=1, targets10m=1, target=proxy:kiwicanary.MinecraftJavaj7z\|port:- show less	Port Scan Hacking
🇬🇧 gbzret4d	2026-06-15 06:33:48 (7 hours ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 2222 [8] TCP	Port Scan
🇺🇸 sandra361	2026-06-15 03:09:44 (11 hours ago)	Port scan detected: 7 attempts across 1 ports (5601). \| Evidence: REAPER_TARPIT: IN=enp1s0 SRC=101.3 ... show more Port scan detected: 7 attempts across 1 ports (5601). \| Evidence: REAPER_TARPIT: IN=enp1s0 SRC=101.36.109.144 LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=1006 DF PROTO=TCP SPT=12818 DPT=5601 WINDOW=1412 RES=0x00 SYN URGP=0 show less	Port Scan
🇲🇹 neilcaruana	2026-06-14 22:30:29 (16 hours ago)	Sentinel detected an attack on port [4567]	Hacking
🇵🇦 rmckay	2026-06-14 15:16:05 (23 hours ago)	Automated API/Winbox Brute-Force Drop	FTP Brute-Force Brute-Force
🇫🇷 Fasetech	2026-06-14 08:46:27 (1 day ago)	SecLedge detected suspicious activity. Score: 173.04. Sensor: T-Pot.	Brute-Force Web App Attack
🇦🇺 LiftUp Hosting	2026-06-14 07:16:02 (1 day ago)	Honeypot hit: HTTP/1.1 request on 7443 GET / Accept: /; 7443 [5] TCP	Hacking Bad Web Bot
🇺🇸 NeverBehave	2026-06-13 22:12:58 (1 day ago)	[fail2ban] service ocserv jail	Brute-Force Web App Attack
🇺🇸 RogueAutomata	2026-06-13 19:19:43 (1 day ago)	Detected malicious request: GET / Detections triggered: Access via IP addr (v4)	Web App Attack
🇺🇸 zapteryx	2026-06-13 14:59:29 (1 day ago)	101.36.109.144 - - [13/Jun/2026:10:59:26 -0400] "GET / HTTP/1.1" 400 166 "-" "NTRIP GNSSInternetRadi ... show more 101.36.109.144 - - [13/Jun/2026:10:59:26 -0400] "GET / HTTP/1.1" 400 166 "-" "NTRIP GNSSInternetRadio" 101.36.109.144 - - [13/Jun/2026:10:59:26 -0400] "GET /version HTTP/1.1" 400 264 "-" "-" 101.36.109.144 - - [13/Jun/2026:10:59:27 -0400] "GET / HTTP/1.1" 400 264 "-" "-" 101.36.109.144 - - [13/Jun/2026:10:59:27 -0400] "GET / HTTP/1.1" 400 264 "-" "-" 101.36.109.144 - - [13/Jun/2026:10:59:28 -0400] "GET /v1 HTTP/1.1" 400 264 "-" "-" ... show less	Brute-Force Web App Attack
🇿🇦 voolik.com	2026-06-13 07:50:50 (2 days ago)	2026-06-13T09:50:32.233572+02:00 bla016-truserv-jhb1-001 sshd[1481313]: refused connect from 101.36. ... show more 2026-06-13T09:50:32.233572+02:00 bla016-truserv-jhb1-001 sshd[1481313]: refused connect from 101.36.109.144 (101.36.109.144) 2026-06-13T09:50:37.933555+02:00 bla016-truserv-jhb1-001 sshd[1481581]: refused connect from 101.36.109.144 (101.36.109.144) 2026-06-13T09:50:43.625513+02:00 bla016-truserv-jhb1-001 sshd[1481878]: refused connect from 101.36.109.144 (101.36.109.144) 2026-06-13T09:50:49.326100+02:00 bla016-truserv-jhb1-001 sshd[1482152]: refused connect from 101.36.109.144 (101.36.109.144) ... show less	Brute-Force SSH
🇩🇪 Justin F. \| AS204464	2026-06-13 06:10:41 (2 days ago)	Honeypot [nx-infrastructure]: Unauthorized traffic (247 bytes of payload); 8525 [5] TCP Reported by: ... show more Honeypot [nx-infrastructure]: Unauthorized traffic (247 bytes of payload); 8525 [5] TCP Reported by: Justin F. show less	Port Scan
Anonymous	2026-06-13 06:04:20 (2 days ago)	$f2bV_matches	Brute-Force SSH
🇭🇰 sandra361	2026-06-12 18:54:22 (2 days ago)	Port scan detected: 6 attempts across 1 ports (8089). \| Evidence: GHOST_SCAN: IN=eth0 SRC=101.36.109 ... show more Port scan detected: 6 attempts across 1 ports (8089). \| Evidence: GHOST_SCAN: IN=eth0 SRC=101.36.109.144 LEN=60 TOS=0x14 PREC=0x00 TTL=49 ID=42307 DF PROTO=TCP SPT=42964 DPT=8089 WINDOW=1412 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 drewf.ink	2026-06-12 17:56:17 (2 days ago)	[17:56] Port scanning. Port(s) scanned: TCP/25	Port Scan

Showing 1 to 15 of 844 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 2a14:7c1:498a::1

🇵🇰 139.135.40.213

🇨🇳 118.196.38.83

🇱🇹 81.30.98.144

🇮🇳 4.224.59.75

🇨🇳 218.95.73.31

🇮🇹 185.77.50.147

🇺🇸 172.234.218.34

🇭🇰 101.36.124.127

🇪🇸 91.146.99.41

🇧🇷 45.229.91.34

🇨🇳 14.103.103.211

🇰🇷 211.37.174.180

🇨🇳 114.217.10.60

🇨🇳 111.61.177.189

🇳🇱 85.11.167.7

🇷🇺 81.23.173.32

🇫🇷 51.159.95.39

🇹🇼 36.230.104.173

🇩🇪 212.132.120.41