JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 36.106.166.134

36.106.166.134 was found in our database!

This IP was reported 293 times. Confidence of Abuse is 31%: ?

31%

ISP	CHINANET TIANJIN PROVINCE NETWORK
Usage Type	Commercial
ASN	AS17638
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Tianjin, Tianjin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 36.106.166.134

Whois 36.106.166.134

IP Abuse Reports for 36.106.166.134:

This IP address has been reported a total of 293 times from 58 distinct sources. 36.106.166.134 was first reported on March 21st 2021, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-15 01:40:23 (12 hours ago)	Blocked by UFW on LAXHH [8040/tcp] \| SPT: 48341 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [8040/tcp] \| SPT: 48341 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-12 02:49:19 (3 days ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 Axel	2026-06-11 22:02:16 (3 days ago)	Blocked by UFW on LAXHH [5000/tcp] \| SPT: 59768 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [5000/tcp] \| SPT: 59768 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇦 QSC-Sentinel	2026-06-11 20:37:39 (3 days ago)	Banned by fail2ban jail sshd-proto on jump	Port Scan SSH
🇬🇧 PeravixGroup	2026-05-25 20:28:41 (2 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-25 10:44:39 (3 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 directorioeducativo.com	2026-05-04 01:27:13 (1 month ago)	GET URL: "/wp-content/uploads/2023/02/1677572030-814390417fe413b.png"Agent: "Mozilla/5.0 (Windows NT ... show more GET URL: "/wp-content/uploads/2023/02/1677572030-814390417fe413b.png"Agent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" show less	Web App Attack
🇨🇦 celestialcity	2026-05-03 08:22:55 (1 month ago)	Blocked by UFW on celestialcityna [9870/tcp] \| SPT: 38134 \| TTL: 229 \| LEN: 44 \| TOS: 0x00 • Reporte ... show more Blocked by UFW on celestialcityna [9870/tcp] \| SPT: 38134 \| TTL: 229 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-05-02 20:53:02 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇦🇺 LiftUp Hosting	2026-04-11 05:46:00 (2 months ago)	Honeypot hit: HTTP/1.1 request on 50060 GET / Accept: /; 50060 [1] TCP	Hacking Bad Web Bot
🇺🇸 MPL	2026-03-31 06:10:53 (2 months ago)	tcp/5552 (3 or more attempts)	Port Scan
🇺🇸 MPL	2026-03-18 19:07:01 (2 months ago)	tcp/10013 (2 or more attempts)	Port Scan
🇨🇳 ThreatBook.io	2026-03-17 23:53:53 (2 months ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/36.106.166.134	SSH
🇺🇸 MPL	2026-03-15 17:43:30 (2 months ago)	tcp/9042 (2 or more attempts)	Port Scan
🇷🇸 Scan	2026-03-15 04:31:39 (3 months ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking

Showing 1 to 15 of 293 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a880:400:d1:0:4:9632:9001

🇮🇳 203.100.66.90

🇺🇸 185.191.171.18

🇹🇭 182.52.90.106

🇩🇪 139.162.173.74

🇳🇱 45.148.10.157

🇨🇦 15.235.123.247

🇧🇷 205.210.31.139

🇪🇨 181.39.158.27

🇺🇸 162.33.178.231

🇮🇳 139.59.30.229

🇫🇷 91.196.152.121

🇺🇸 50.6.248.168

🇺🇸 20.169.78.113

🇨🇳 14.103.127.82

🇧🇷 177.61.137.26

🇺🇸 135.237.127.221

🇹🇼 106.107.217.10

🇱🇾 102.38.3.107

🇨🇳 49.72.111.25