AbuseIPDB » 113.211.131.146
113.211.131.146 was found in our database!
This IP was reported 6 times. Confidence of
Abuse
is 4% : ?
ISP
Maxis Broadband Sdn Bhd
Usage Type
Mobile ISP
ASN
AS9534
Domain Name
maxis.com.my
Country
π²πΎ
Malaysia
City
Melor, Kelantan
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 113.211.131.146 :
This IP address has been reported a total of
6
times from
5 distinct
sources.
113.211.131.146 was first reported on
March 12th 2026 , and the most recent report was
12 hours ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
Anonymous
2026-07-18 05:11:36
(12 hours ago)
Web app attack and vulnerability scan detected from IIS logs
Brute-Force
Bad Web Bot
Web App Attack
π©πͺ
bescared
2026-03-12 19:45:00
(4 months ago)
Request of forbidden path.
Bad Web Bot
Web App Attack
Anonymous
2026-03-12 19:28:59
(4 months ago)
[redacted] 113.211.131.146 - - [12/Mar/2026:20:27:45 +0100] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" ...
show more
[redacted] 113.211.131.146 - - [12/Mar/2026:20:27:45 +0100] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Mozilla/5.0 (Linux; Android 10; arm64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/97.0.0.0 Safari/537.36"
[redacted] 113.211.131.146 - - [12/Mar/2026:20:27:50 +0100] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/72.0.0.0 Safari/537.36"
[redacted] 113.211.131.146 - - [12/Mar/2026:20:28:04 +0100] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Mozilla/5.0 (Windows NT 6.3; x64) AppleWebKit/537.36 (KHTML, like Gecko) Firefox/94.0.0.0 Safari/537.36"
[redacted] 113.211.131.146 - - [12/Mar/2026:20:28:23 +0100] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Mozilla/5.0 (Windows NT 6.2; x86) AppleWebKit/537.36 (KHTML, like Gecko) Opera/69.0.0.0 Safari/537.36"
[redacted] 113.211.131.146 - - [12/Mar/2026:20:28:24 +0100] "POST /xmlrpc.php HTTP/1.1" 200 418 "-" "Mozilla/5.0 (Windows NT 6.3; x64) AppleWebKit/537.36 (KHTML, like Gecko) Ed
...
show less
Hacking
Web App Attack
π¦πΊ
screwlooseit.com.au
2026-03-12 18:21:59
(4 months ago)
Blocked by CSF 13 firewall - Rule: XMLRPC
MY/Malaysia/-
Web App Attack
πΊπΈ
TPI-Abuse
2026-03-12 04:09:42
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 113.211.131.146 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 113.211.131.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Mar 12 00:09:35.408377 2026] [security2:error] [pid 30167:tid 30167] [client 113.211.131.146:30365] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||verdeprofundo.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "verdeprofundo.net"] [uri "/wp-json/wp/v2/users"] [unique_id "abI8fyU3klopYyujNgSnzwAAABY"]
show less
Brute-Force
Bad Web Bot
Web App Attack
πΊπΈ
TPI-Abuse
2026-03-12 03:36:32
(4 months ago)
(mod_security) mod_security (id:225170) triggered by 113.211.131.146 (-): 1 in the last 300 secs; Po ...
show more
(mod_security) mod_security (id:225170) triggered by 113.211.131.146 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 11 23:36:27.884004 2026] [security2:error] [pid 25930:tid 25930] [client 113.211.131.146:53277] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||takeapawsboston.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "takeapawsboston.com"] [uri "/wp-json/wp/v2/users"] [unique_id "abI0u7VM49r2EXJ4TcGm3wAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
Showing 1 to
6
of 6 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown π©
Recently Reported IPs: