JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 117.36.152.44

117.36.152.44 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 92%: ?

92%

ISP	CHINANET Shanxi(SN) province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	xa.sn.cn
Country	🇨🇳 China
City	Xi'an, Shaanxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 117.36.152.44

Whois 117.36.152.44

IP Abuse Reports for 117.36.152.44:

This IP address has been reported a total of 27 times from 22 distinct sources. 117.36.152.44 was first reported on April 17th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-06-08 13:13:21 (2 hours ago)	ICS Labs identified 117.36.152.44 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇩🇪 Admins@FBN	2026-06-08 11:53:09 (3 hours ago)	FW-PortScan: Traffic Blocked srcport=5193 dstport=52743	Port Scan
🇩🇪 iNetWorker	2026-06-06 03:40:56 (2 days ago)	firewall-block, port(s): 27015/udp	Port Scan
🇺🇸 micropedro	2026-06-05 13:30:09 (3 days ago)	5 incidents: port scanning. First: 2026-06-05 08:32, Last: 2026-06-05 09:30 UTC. Triggers: port-trap ... show more 5 incidents: port scanning. First: 2026-06-05 08:32, Last: 2026-06-05 09:30 UTC. Triggers: port-trap,non-public-port,firewall-udp,ufw-repeater,recidive. show less	Port Scan Brute-Force
🇫🇷 Little Iguana	2026-06-05 10:57:27 (3 days ago)	trying to access non-authorized port	Port Scan
🇫🇷 Petre 21_ip	2026-06-05 10:07:44 (3 days ago)	2026-06-05T12:07:42.983808+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c ... show more 2026-06-05T12:07:42.983808+02:00 vmi2775508 kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:5c:a7:cf:c0:69:11:b3:85:db:08:00 SRC=117.36.152.44 DST=155.133.26.57 LEN=53 TOS=0x00 PREC=0x00 TTL=48 ID=19387 PROTO=UDP SPT=19041 DPT=27015 LEN=33 ... show less	Port Scan
Anonymous	2026-06-05 03:41:54 (3 days ago)	unsolicited UDP packet to port 27015 (33 bytes)	Hacking
🇳🇵 radheykrishna.com.np	2026-06-05 03:36:11 (3 days ago)	Jun 5 09:21:10 kernel: [4120379.510998] [UFW BLOCK] IN=ens160 OUT= SRC=117.36.152.44 LEN=53 TOS=0x0 ... show more Jun 5 09:21:10 kernel: [4120379.510998] [UFW BLOCK] IN=ens160 OUT= SRC=117.36.152.44 LEN=53 TOS=0x00 PREC=0x00 TTL=49 ID=27931 PROTO=UDP SPT=20039 DPT=27015 LEN=33 ... show less	Port Scan
🇳🇱 BIV	2026-06-04 09:26:27 (4 days ago)	Honeypot multi-source hit. Sources: tpot:Suricata. Ports: 27015. Automated tiered (T-Pot+DShield).	Port Scan Hacking
🇯🇵 jay hung	2026-06-04 08:15:11 (4 days ago)	2026-06-04T08:15:10.356098+00:00 quarktech kernel: [395750.873345] [UFW BLOCK] IN=eth0 OUT= MAC=22:0 ... show more 2026-06-04T08:15:10.356098+00:00 quarktech kernel: [395750.873345] [UFW BLOCK] IN=eth0 OUT= MAC=22:00:92:2e:84:93:fe:ff:ff:ff:ff:ff:08:00 SRC=117.36.152.44 DST=172.237.20.248 LEN=53 TOS=0x00 PREC=0x00 TTL=44 ID=46022 PROTO=UDP SPT=39641 DPT=27015 LEN=33 ... show less	Port Scan
🇨🇦 DRI	2026-06-03 22:38:12 (4 days ago)	Unsolicited UDP traffic on Honeypot, srcport=22745 dstport=27015	Port Scan Hacking
🇩🇪 Admins@FBN	2026-06-03 20:59:39 (4 days ago)	FW-PortScan: Traffic Blocked srcport=19501 dstport=27015	Port Scan
🇮🇹 Fusty	2026-06-03 18:17:07 (4 days ago)	Unauthorized attempt on (UDP on port 27015). Source port: 63523 TTL: 46 Packet length: 53 33 Timesta ... show more Unauthorized attempt on (UDP on port 27015). Source port: 63523 TTL: 46 Packet length: 53 33 Timestamp: 2026-06-03 20:17:06 show less	Port Scan
🇸🇪 NordhTech	2026-06-03 17:15:12 (4 days ago)	More than 3 malicious connection attempts, trying port(s) 27015/tcp, then blocked from services ...	Port Scan Hacking
🇺🇸 Cyber Crusader	2026-06-03 13:00:38 (5 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force

Showing 1 to 15 of 27 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 95.214.53.196

🇬🇧 213.166.84.51

🇹🇼 198.235.24.75

🇺🇸 165.22.184.103

🇱🇹 77.90.185.17

🇺🇸 74.125.72.30

🇫🇮 65.109.55.42

🇺🇸 65.49.20.111

🇺🇸 64.62.156.182

🇰🇷 222.117.176.58

🇬🇧 193.32.209.243

🇺🇸 154.58.229.20

🇺🇸 107.172.39.175

🇺🇸 64.62.156.74

🇫🇷 45.154.138.138

🇧🇪 35.195.62.147

🇧🇪 34.14.122.159

🇳🇱 5.61.209.126

🇷🇴 2.57.121.112

🇷🇺 109.235.188.5