JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 171.36.6.252

171.36.6.252 was found in our database!

This IP was reported 92 times. Confidence of Abuse is 27%: ?

27%

ISP	China Unicom GuangXi province network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Nanning, Guangxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 171.36.6.252

Whois 171.36.6.252

IP Abuse Reports for 171.36.6.252:

This IP address has been reported a total of 92 times from 35 distinct sources. 171.36.6.252 was first reported on January 5th 2021, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-05 06:57:39 (2 days ago)	tcp/9002	Port Scan
🇩🇪 iNetWorker	2026-05-19 13:50:52 (2 weeks ago)	firewall-block, port(s): 6000/tcp	Port Scan
🇬🇧 PeravixGroup	2026-05-14 10:10:57 (3 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-05-10 05:08:12 (4 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇨🇳 ThreatBook.io	2026-04-28 00:21:25 (1 month ago)	ThreatBook Intelligence: Spam,Gateway more details on https://threatbook.io/ip/171.36.6.252	SSH
🇬🇧 PeravixGroup	2026-04-26 16:56:09 (1 month ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 vtchost.com	2026-04-10 11:51:17 (1 month ago)	Apr 10 13:51:17 vtchost kernel: [16406.600624] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11 ... show more Apr 10 13:51:17 vtchost kernel: [16406.600624] PORTSCAN: IN=eth0 OUT= MAC=00:50:56:41:75:31:c0:69:11:cd:2a:b3:08:00 SRC=171.36.6.252 DST=161.97.181.152 LEN=44 TOS=0x00 PREC=0x00 TTL=239 ID=30622 PROTO=TCP SPT=44015 DPT=505 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇷🇸 Scan	2026-04-09 01:48:31 (1 month ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇨🇳 ThreatBook.io	2026-03-20 23:55:42 (2 months ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/171.36.6.252	SSH
Anonymous	2026-03-16 17:04:17 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-02-23 04:47:48 (3 months ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 9211 [1] TCP	Port Scan
🇭🇰 Mehmet_The_Script_Kiddie	2026-02-22 22:46:50 (3 months ago)	AUTOMATED REPORT: Vulnerability scan: /sites/favicon.png	Bad Web Bot Web App Attack
🇩🇪 KPS	2026-02-19 18:54:50 (3 months ago)	PortscanM	Port Scan
🇫🇮 as211431.net	2026-02-06 18:56:39 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1. ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: MANAGED_CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-02-02 03:20:10 (4 months ago)	Drop from IP address 171.36.6.252 to tcp-port 8085	Port Scan

Showing 1 to 15 of 92 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 193.176.31.151

🇭🇰 152.32.171.213

🇳🇱 91.92.42.10

🇸🇪 81.170.248.221

🇱🇹 81.30.98.44

🇺🇸 74.235.126.65

🇺🇸 71.6.233.181

🇸🇬 172.253.211.16

🇳🇱 131.153.158.213

🇺🇬 129.205.24.199

🇨🇳 112.46.214.53

🇱🇹 81.30.98.142

🇳🇱 45.153.34.114

🇧🇷 45.65.167.113

🇯🇵 8.216.8.179

🇮🇹 2.57.170.76

🇰🇷 211.223.107.86

🇬🇧 193.163.125.109

🇮🇳 161.248.163.85

🇲🇽 158.23.60.168