JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.113.89.214

111.113.89.214 was found in our database!

This IP was reported 131 times. Confidence of Abuse is 58%: ?

58%

ISP	CHINANET ningxia province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	yc.nx.cn
Country	🇨🇳 China
City	Wuzhong, Ningxia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.113.89.214

Whois 111.113.89.214

IP Abuse Reports for 111.113.89.214:

This IP address has been reported a total of 131 times from 48 distinct sources. 111.113.89.214 was first reported on January 31st 2024, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-29 19:53:37 (10 hours ago)	tcp/32400	Port Scan
🇩🇪 ValtonTahiri	2026-06-29 05:15:25 (1 day ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=111.113.89.214; proto=TCP; source_port=38832; target_port=8080; flags=SYN show less	Port Scan
🇺🇸 MPL	2026-06-27 06:34:04 (3 days ago)	tcp/8081	Port Scan
🇹🇭 Sawasdee	2026-06-26 01:51:07 (4 days ago)	Port Scan ...	Port Scan
🇺🇸 donarev419	2026-06-24 00:29:04 (6 days ago)	Connection to port 9093 with data transfer. Data preview: GET / HTTP/1.1 Host: 167.253.66.144:9093 ... show more Connection to port 9093 with data transfer. Data preview: GET / HTTP/1.1 Host: 167.253.66.144:9093 Accept: / show less	Port Scan Hacking
🇩🇪 pltcldvlpr	2026-06-22 22:52:37 (1 week ago)	Bogus Useragent: 111.113.89.214 - - [23/Jun/2026:00:52:36 +0200] "GET / HTTP/1.1" 301 178 "-" "Mozil ... show more Bogus Useragent: 111.113.89.214 - - [23/Jun/2026:00:52:36 +0200] "GET / HTTP/1.1" 301 178 "-" "Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" asn=4134 org="Chinanet" country=CN ... show less	Bad Web Bot
🇺🇸 Axel	2026-06-21 06:47:42 (1 week ago)	Blocked by UFW on LAXHH [43/tcp] \| SPT: 10241 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on LAXHH [43/tcp] \| SPT: 10241 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-17 01:38:01 (1 week ago)	Blocked by UFW on LAXHH [8848/tcp] \| SPT: 53925 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [8848/tcp] \| SPT: 53925 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇦 DRI	2026-06-15 08:36:52 (2 weeks ago)	Unsolicited TCP traffic on Honeypot, srcport=26830 dstport=1521	Port Scan Hacking
🇺🇸 donarev419	2026-06-15 02:42:35 (2 weeks ago)	Connection to port 2996 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:2996 ... show more Connection to port 2996 with data transfer. Data preview: GET / HTTP/1.1 Host: 198.23.188.201:2996 Accept: / show less	Port Scan Hacking
🇺🇸 Axel	2026-06-14 12:10:53 (2 weeks ago)	Blocked by UFW on LAXHH [3567/tcp] \| SPT: 22746 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [3567/tcp] \| SPT: 22746 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 Axel	2026-06-13 06:57:06 (2 weeks ago)	Blocked by UFW on LAXHH [3025/tcp] \| SPT: 47489 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: gith ... show more Blocked by UFW on LAXHH [3025/tcp] \| SPT: 47489 \| TTL: 234 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-07 23:18:21 (3 weeks ago)	Honeypot detection: IMAP email brute-force authentication attempt on port 143. Severity: MEDIUM. Aar ... show more Honeypot detection: IMAP email brute-force authentication attempt on port 143. Severity: MEDIUM. Aaran.cloud show less	Brute-Force
🇺🇸 MPL	2026-06-04 16:14:25 (3 weeks ago)	tcp/2850 (2 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-05-30 23:35:18 (4 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 131 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 171.249.179.78

🇸🇬 152.42.235.126

🇮🇳 139.59.4.137

🇻🇳 125.212.244.35

🇺🇸 76.183.36.73

🇺🇸 44.210.38.39

🇨🇴 152.231.31.20

🇸🇬 139.59.102.237

🇮🇩 114.10.43.191

🇨🇦 85.217.149.21

🇺🇸 64.23.185.197

🇺🇸 43.110.36.69

🇭🇰 199.45.154.133

🇪🇬 156.198.200.242

🇺🇸 74.114.29.216

🇺🇸 66.132.172.228

🇮🇪 54.247.0.236

🇺🇸 44.69.2.113

🇺🇸 44.15.52.55

🇺🇸 34.106.205.84