JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.113.89.149

111.113.89.149 was found in our database!

This IP was reported 113 times. Confidence of Abuse is 50%: ?

50%

ISP	CHINANET ningxia province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	yc.nx.cn
Country	🇨🇳 China
City	Wuzhong, Ningxia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.113.89.149

Whois 111.113.89.149

IP Abuse Reports for 111.113.89.149:

This IP address has been reported a total of 113 times from 43 distinct sources. 111.113.89.149 was first reported on January 24th 2024, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇾 StatsMe	2026-06-11 22:16:48 (7 hours ago)	2026-06-11T03:38:51.208656+0300 ET SCAN NMAP -sS window 1024	Port Scan
Anonymous	2026-06-11 19:58:22 (10 hours ago)	Honeypot hit: Empty payload (likely service probe); 6565 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 6565 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 MPL	2026-06-11 12:34:52 (17 hours ago)	tcp/12323	Port Scan
Anonymous	2026-06-09 14:02:20 (2 days ago)	Drop from IP address 111.113.89.149 to tcp-port 1443	Port Scan
🇯🇵 Execoop	2026-06-09 02:30:47 (3 days ago)	HTTP honeypot \| Command Execution \| 3 cmds, 1 HTTP \| ext IPs: 172[.]105[.]226[.]85	Hacking SSH
🇬🇧 PeravixGroup	2026-06-08 16:53:37 (3 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-06 13:24:55 (5 days ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-06 10:17:29 (5 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-05-17 10:34:43 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-05-16 02:31:05 (3 weeks ago)	tcp/2967	Port Scan
🇺🇸 cybsecaoccol	2026-05-12 14:51:40 (4 weeks ago)	unauthorized connection or malicious port scan attempted on tcp port - corp	Port Scan Hacking
Anonymous	2026-05-12 14:14:25 (4 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-05-10 19:08:45 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-05-08 19:56:32 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 xmission.com	2025-11-10 08:14:39 (7 months ago)	Blocked by UFW (TCP on 11310) Source port: 39765 TTL: 237 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 11310) Source port: 39765 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 111.113.89.149) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 113 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 220.130.187.188

🇺🇸 162.216.150.241

🇮🇩 103.26.209.157

🇨🇦 85.217.149.40

🇩🇪 82.139.195.122

🇩🇪 82.139.195.98

🇦🇪 2001:8f8:1445:a110:fdca:4d3d:325b:9760

🇺🇸 162.216.150.84

🇺🇸 104.234.53.50

🇨🇦 103.26.141.32

🇩🇪 93.94.51.50

🇩🇪 84.233.216.250

🇺🇦 82.24.224.186

🇺🇸 45.156.129.77

🇺🇸 45.156.129.76

🇳🇱 45.148.10.215

🇳🇱 45.142.193.8

🇺🇸 23.234.113.99

🇨🇳 221.231.12.42

🇩🇪 194.187.176.96