JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.113.89.163

111.113.89.163 was found in our database!

This IP was reported 120 times. Confidence of Abuse is 83%: ?

83%

ISP	CHINANET ningxia province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	yc.nx.cn
Country	🇨🇳 China
City	Wuzhong, Ningxia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.113.89.163

Whois 111.113.89.163

IP Abuse Reports for 111.113.89.163:

This IP address has been reported a total of 120 times from 55 distinct sources. 111.113.89.163 was first reported on January 20th 2024, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 TheHoneyPotter	2026-06-17 08:06:02 (2 hours ago)	Honeypot [fc-honeypot]: Unauthorized traffic (16 bytes of payload); 12211 [1] TCP Reported by: https ... show more Honeypot [fc-honeypot]: Unauthorized traffic (16 bytes of payload); 12211 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 Axel	2026-06-16 22:59:58 (11 hours ago)	Blocked by UFW on LAXHH [2223/tcp] \| SPT: 15292 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [2223/tcp] \| SPT: 15292 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 zupan	2026-06-16 15:02:51 (19 hours ago)	Blocked by UFW on vps [119/tcp] \| SPT: 58154 \| TTL: 236 \| LEN: 44 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on vps [119/tcp] \| SPT: 58154 \| TTL: 236 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 gbzret4d	2026-06-16 04:33:51 (1 day ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 1763 [1] TCP	Port Scan
🇺🇸 Axel	2026-06-15 21:16:08 (1 day ago)	Blocked by UFW on LAXHH [1443/tcp] \| SPT: 10722 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [1443/tcp] \| SPT: 10722 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 Yachiyo Runami	2026-06-15 19:43:40 (1 day ago)	Port Scan on Honeypot \| Ports: 22/SSH \| Proto: TCP(1) \| Flags: all SYN \| TTL: 225 \| Len: 44B \| Win: ... show more Port Scan on Honeypot \| Ports: 22/SSH \| Proto: TCP(1) \| Flags: all SYN \| TTL: 225 \| Len: 44B \| Win: 1024(1) \| F2B/ufw-honeypot@2026-06-15T19:43:39Z show less	Port Scan Hacking
🇳🇱 BIV	2026-06-15 03:51:42 (2 days ago)	Honeypot multi-source hit. Sources: tpot:Dionaea,tpot:P0f,tpot:Suricata. Ports: 21. Automated tiered ... show more Honeypot multi-source hit. Sources: tpot:Dionaea,tpot:P0f,tpot:Suricata. Ports: 21. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-15 01:41:36 (2 days ago)	Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: M ... show more Honeypot detection: Android Debug Bridge (ADB) unauthorized access attempt on port 5555. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇺🇸 Axel	2026-06-14 10:49:14 (2 days ago)	Blocked by UFW on LAXHH [8545/tcp] \| SPT: 57933 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [8545/tcp] \| SPT: 57933 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-14 09:35:15 (3 days ago)	tcp/5577	Port Scan
Anonymous	2026-06-13 17:51:29 (3 days ago)	Honeypot hit: HTTP/1.1 request on 11274 GET / Accept: /; 11274 [1] TCP Reported by: https://githu ... show more Honeypot hit: HTTP/1.1 request on 11274 GET / Accept: /; 11274 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇷🇸 Scan	2026-06-13 03:06:35 (4 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 Axel	2026-06-12 15:14:42 (4 days ago)	Blocked by UFW on LAXHH [3306/tcp] \| SPT: 17617 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [3306/tcp] \| SPT: 17617 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-03 12:15:37 (1 week ago)	111.113.89.163 - - [03/Jun/2026:14:15:37 +0200] "GET /Alvin9999/https/fanfan1.net/daohang/ HTTP/1.1" ... show more 111.113.89.163 - - [03/Jun/2026:14:15:37 +0200] "GET /Alvin9999/https/fanfan1.net/daohang/ HTTP/1.1" 404 528 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/120.0.0.0" ... show less	Web App Attack
🇺🇸 NetGuard	2026-05-28 14:19:42 (2 weeks ago)	#honeypot #netguard247 #dionaea #networkexploit Captured by NetGuard 24/7 T-Pot honeypot (netguard24 ... show more #honeypot #netguard247 #dionaea #networkexploit Captured by NetGuard 24/7 T-Pot honeypot (netguard24-7.com). Timestamp: 2026-05-28T14:19:42.859+00:00 Attacker IP: 111.113.89.163 \| Port: 27017 \| Country: China Honeypot: dionaea \| Attack: network_exploit Source: NetGuard 24/7 (netguard24-7.com) \| PhantomGrid Defense show less	Hacking SQL Injection Web App Attack

Showing 1 to 15 of 120 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.150

🇩🇪 161.35.19.218

🇺🇸 135.237.123.227

🇧🇩 118.179.184.125

🇩🇪 69.5.169.157

🇷🇺 185.70.129.186

🇺🇬 154.0.131.67

🇮🇩 147.139.182.140

🇧🇩 118.179.89.140

🇧🇩 118.179.39.39

🇧🇷 108.165.63.136

🇺🇸 104.223.21.20

🇮🇹 82.51.158.253

🇭🇷 82.23.221.19

🇩🇪 69.5.169.138

🇭🇰 47.83.174.230

🇬🇧 2a06:4884:5000::61

🇮🇳 223.190.81.161

🇱🇧 185.134.178.19

🇷🇺 185.70.131.215