JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.44.137.196

111.44.137.196 was found in our database!

This IP was reported 447 times. Confidence of Abuse is 73%: ?

73%

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS9808
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Lanzhou, Gansu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.44.137.196

Whois 111.44.137.196

IP Abuse Reports for 111.44.137.196:

This IP address has been reported a total of 447 times from 124 distinct sources. 111.44.137.196 was first reported on July 20th 2021, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇲🇽 FenixHunter🐦‍🔥	2026-06-04 15:39:12 (1 hour ago)	Blocked TLS Cipher Downgrade Attemp. Action Performed: DROP	Port Scan Hacking Bad Web Bot Web App Attack
🇬🇧 PeravixGroup	2026-06-04 04:12:55 (13 hours ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇹🇭 Sawasdee	2026-06-04 03:33:07 (14 hours ago)	Port Scan ...	Port Scan
🇬🇧 PeravixGroup	2026-05-29 12:39:05 (6 days ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-29 05:36:42 (6 days ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇩🇪 AS213449.net	2026-05-28 12:06:19 (1 week ago)	05/28/2026-14:06:19.848234 src=111.44.137.196 dst=89.144.63.163:3306 proto=6 msg=ET SCAN Suspicious ... show more 05/28/2026-14:06:19.848234 src=111.44.137.196 dst=89.144.63.163:3306 proto=6 msg=ET SCAN Suspicious inbound to mySQL port 3306 show less	SQL Injection
🇬🇧 PeravixGroup	2026-05-27 21:20:08 (1 week ago)	Honeypot detection: POP3 email brute-force authentication attempt on port 110. Severity: MEDIUM. Aar ... show more Honeypot detection: POP3 email brute-force authentication attempt on port 110. Severity: MEDIUM. Aaran.cloud show less	Brute-Force
Anonymous	2026-05-27 19:21:27 (1 week ago)	SSH tarpit (endlessh) connection from 111.44.137.196	Brute-Force SSH
🇺🇸 donarev419	2026-05-25 08:22:43 (1 week ago)	Port scan detected on port 5984 (connection without data transfer)	Port Scan
🇺🇸 MPL	2026-05-24 00:48:43 (1 week ago)	tcp/9000	Port Scan
🇦🇺 trentwiles.com	2026-05-19 10:42:30 (2 weeks ago)	Unauthorized connection attempt detected from IP address 111.44.137.196 to port 1090 [SYD]	Port Scan
🇺🇸 MPL	2026-05-18 15:18:36 (2 weeks ago)	tcp/9093	Port Scan
🇩🇪 centurion	2026-05-17 14:28:53 (2 weeks ago)	Blocked by UFW on ns02 [9200/tcp] Source port: 42509 TTL: 231 Packet length: 44 TOS: 0x00 This repo ... show more Blocked by UFW on ns02 [9200/tcp] Source port: 42509 TTL: 231 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-05-13 04:15:03 (3 weeks ago)	Unauthorized SSH login attempts	Brute-Force SSH
🇨🇳 ThreatBook.io	2026-05-12 00:02:57 (3 weeks ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/111.44.137.196	SSH

Showing 1 to 15 of 447 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.154.189

🇩🇪 194.88.98.94

🇨🇳 183.251.103.233

🇭🇰 165.154.23.36

🇵🇰 119.73.113.137

🇮🇩 114.10.47.236

🇷🇴 80.94.92.164

🇷🇺 31.173.2.182

🇺🇸 216.180.246.143

🇪🇹 196.189.182.190

🇬🇧 193.32.209.238

🇮🇳 182.95.123.202

🇮🇳 182.76.168.232

🇩🇪 181.41.194.250

🇺🇸 147.185.132.94

🇺🇸 147.185.132.27

🇮🇳 103.38.219.22

🇮🇳 49.37.24.21

🇧🇷 45.175.123.254

🇨🇳 182.43.235.75