JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.113.88.149

111.113.88.149 was found in our database!

This IP was reported 137 times. Confidence of Abuse is 42%: ?

42%

ISP	CHINANET ningxia province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	yc.nx.cn
Country	🇨🇳 China
City	Wuzhong, Ningxia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.113.88.149

Whois 111.113.88.149

IP Abuse Reports for 111.113.88.149:

This IP address has been reported a total of 137 times from 51 distinct sources. 111.113.88.149 was first reported on February 6th 2024, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 BIV	2026-06-07 17:33:56 (4 days ago)	Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 6510. Automated ti ... show more Honeypot multi-source hit. Sources: tpot:Honeytrap,tpot:P0f,tpot:Suricata. Ports: 6510. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-07 15:45:06 (4 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 22:19:54 (4 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 MPL	2026-06-06 20:54:29 (5 days ago)	tcp/3003	Port Scan
🇸🇪 NordhTech	2026-06-04 15:45:11 (1 week ago)	More than 3 malicious connection attempts, trying port(s) 5672/tcp, then blocked from services ...	Port Scan Hacking
Anonymous	2026-06-04 08:15:47 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-03 21:45:29 (1 week ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇧🇾 StatsMe	2026-05-16 22:35:36 (3 weeks ago)	2026-05-16T21:18:58.635550+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇩🇪 femboy.cat	2026-05-16 06:51:02 (3 weeks ago)	Port scan to tcp/2480 from 111.113.88.149	Brute-Force
Anonymous	2026-05-15 20:24:13 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-11-09 00:50:35 (7 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-11-06 03:13:17 (7 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 Admins@FBN	2025-11-05 16:01:46 (7 months ago)	FW-PortScan: Traffic Blocked srcport=63694 dstport=20	Port Scan
Anonymous	2025-11-04 11:31:27 (7 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2025-10-15 07:59:16 (7 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 137 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇩 103.163.117.83

🇵🇱 82.22.41.218

🇳🇱 45.148.10.157

🇶🇦 34.18.164.5

🇬🇧 31.171.130.16

🇺🇸 2601:500:8280:92b0:cdf5:9192:4016:ed31

🇺🇸 162.217.165.17

🇷🇴 80.94.92.166

🇱🇹 62.60.130.251

🇭🇰 47.76.71.87

🇭🇰 45.78.18.182

🇺🇸 35.252.207.4

🇸🇬 35.240.174.82

🇺🇸 34.173.159.189

🇵🇱 20.215.69.195

🇰🇷 14.33.93.214

🇮🇳 2405:201:3017:c80a:1805:3b70:9961:987b

🇭🇰 199.45.154.142

🇺🇸 198.46.134.148

🇮🇶 185.166.25.150