JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.113.88.187

111.113.88.187 was found in our database!

This IP was reported 177 times. Confidence of Abuse is 84%: ?

84%

ISP	CHINANET ningxia province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	yc.nx.cn
Country	🇨🇳 China
City	Wuzhong, Ningxia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.113.88.187

Whois 111.113.88.187

IP Abuse Reports for 111.113.88.187:

This IP address has been reported a total of 177 times from 55 distinct sources. 111.113.88.187 was first reported on January 19th 2024, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-18 16:49:46 (1 day ago)	Blocked by UFW (TCP on 5570) Source port: 42028 TTL: 236 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 5570) Source port: 42028 TTL: 236 Packet length: 44 TOS: 0x08 This report (for 111.113.88.187) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 sandra361	2026-06-17 08:03:04 (2 days ago)	Port scan detected: 5 attempts across 1 ports (60443). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=11 ... show more Port scan detected: 5 attempts across 1 ports (60443). \| Evidence: REAPER_TARPIT: IN=enp1s0f0 SRC=111.113.88.187 LEN=60 TOS=0x00 PREC=0x00 TTL=40 ID=10518 DF PROTO=TCP SPT=19354 DPT=60443 WINDOW=29200 RES=0x00 SYN URGP=0 show less	Port Scan
🇺🇸 Axel	2026-06-16 15:34:15 (3 days ago)	Blocked by UFW on LAXHH [49666/tcp] \| SPT: 31916 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [49666/tcp] \| SPT: 31916 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-15 17:37:27 (4 days ago)	Blocked by UFW on LAXHH [4433/tcp] \| SPT: 59437 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [4433/tcp] \| SPT: 59437 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 BIV	2026-06-14 20:25:20 (5 days ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 3306. Automated tiered ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 3306. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇺🇸 thororen	2026-06-14 08:30:37 (5 days ago)	Blocked by UFW [1971/tcp] Source port: 13820 TTL: 237 Packet length: 44 TOS: 0x00 This report was g ... show more Blocked by UFW [1971/tcp] Source port: 13820 TTL: 237 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-06-12 18:32:29 (1 week ago)	Blocked by UFW (TCP on 4000) Source port: 58774 TTL: 236 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 4000) Source port: 58774 TTL: 236 Packet length: 44 TOS: 0x08 This report (for 111.113.88.187) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-11 19:02:18 (1 week ago)	Honeypot hit: HTTP/1.1 request on 4911 GET / Accept: /; 4911 [1] TCP	Web App Attack
🇸🇪 donarev419	2026-06-11 05:18:50 (1 week ago)	Connection to port 4911 with data transfer. Data preview: �	Port Scan Hacking
🇦🇺 LiftUp Hosting	2026-06-10 22:09:57 (1 week ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 21242 [1] TCP	Port Scan
🇩🇪 dispaisyenterprises	2026-06-10 19:21:55 (1 week ago)	Honeypot [fra-de-honeypot]: Large payload (1457 bytes); 8848 [1] TCP Reported by DisPaisy Enterprise ... show more Honeypot [fra-de-honeypot]: Large payload (1457 bytes); 8848 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇬🇧 PeravixGroup	2026-06-08 18:32:18 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-08 11:43:41 (1 week ago)	Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDI ... show more Honeypot detection: Redis unauthorized access / data extraction attempt on port 6379. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-07 14:54:12 (1 week ago)	Honeypot hit: HTTP/1.1 request on 2103 GET / Accept: /; 2103 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 2103 GET / Accept: /; 2103 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-06 21:06:44 (1 week ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking

Showing 1 to 15 of 177 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 125.91.33.72

🇮🇳 121.200.54.19

🇺🇸 45.61.187.220

🇺🇸 20.163.13.196

🇨🇳 223.88.47.64

🇰🇷 211.37.174.62

🇸🇪 195.178.191.5

🇩🇪 185.242.3.226

🇹🇭 124.156.246.92

🇺🇸 2607:f8b0:4004:c27::129

🇺🇸 205.210.31.49

🇭🇰 199.45.155.103

🇩🇪 167.233.22.224

🇭🇰 154.83.15.221

🇨🇳 101.36.228.201

🇷🇺 93.77.187.140

🇺🇸 67.215.255.113

🇺🇸 20.29.23.166

🇻🇪 190.97.245.56

🇨🇳 180.123.214.115