JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.113.88.191

111.113.88.191 was found in our database!

This IP was reported 105 times. Confidence of Abuse is 38%: ?

38%

ISP	CHINANET ningxia province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	yc.nx.cn
Country	🇨🇳 China
City	Wuzhong, Ningxia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.113.88.191

Whois 111.113.88.191

IP Abuse Reports for 111.113.88.191:

This IP address has been reported a total of 105 times from 38 distinct sources. 111.113.88.191 was first reported on January 20th 2024, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-27 23:54:26 (6 hours ago)	Blocked by UFW (TCP on 20202) Source port: 30957 TTL: 238 Packet length: 44 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 20202) Source port: 30957 TTL: 238 Packet length: 44 TOS: 0x00 This report (for 111.113.88.191) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-27 18:36:05 (12 hours ago)	tcp/2111	Port Scan
🇺🇸 cazae	2026-06-27 01:46:42 (1 day ago)	Unauthorized attempt on debian [7003/tcp] Source port: 36058 TTL: 235 Packet length: 44 TOS: 0x08 h ... show more Unauthorized attempt on debian [7003/tcp] Source port: 36058 TTL: 235 Packet length: 44 TOS: 0x08 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-25 02:30:49 (3 days ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-06-02 06:29:16 (3 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-02 00:26:14 (3 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 15:01:53 (3 weeks ago)	Honeypot detection: OS command injection in HTTP parameters on port 11211. Severity: MEDIUM. Aaran.c ... show more Honeypot detection: OS command injection in HTTP parameters on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Web App Attack
🇬🇧 PeravixGroup	2026-05-29 00:26:22 (4 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-28 07:22:35 (4 weeks ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-05-27 14:41:33 (1 month ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 01:19:36 (1 month ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇬🇧 PeravixGroup	2026-05-26 02:14:35 (1 month ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇩🇪 zupan	2026-05-25 04:58:04 (1 month ago)	Blocked by UFW on vps [8086/tcp] \| SPT: 59282 \| TTL: 236 \| LEN: 44 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on vps [8086/tcp] \| SPT: 59282 \| TTL: 236 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-23 20:22:44 (1 month ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-23 13:09:12 (1 month ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5985. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking

Showing 1 to 15 of 105 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 131.196.28.85

🇬🇧 198.244.233.232

🇳🇱 192.253.248.169

🇺🇦 176.103.3.44

🇺🇸 162.216.149.26

🇳🇱 159.65.201.168

🇺🇸 104.152.52.134

🇷🇺 95.108.213.125

🇳🇱 89.248.168.122

🇺🇸 65.49.1.212

🇺🇸 64.62.156.106

🇨🇳 59.50.190.229

🇨🇳 27.21.29.13

🇨🇳 1.94.195.230

🇧🇷 205.210.31.197

🇧🇩 203.34.82.141

🇧🇪 198.235.24.221

🇸🇮 176.65.134.34

🇯🇵 149.22.87.30

🇧🇷 131.196.31.192