JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 141.11.36.41

141.11.36.41 was found in our database!

This IP was reported 78 times. Confidence of Abuse is 55%: ?

55%

ISP	Vantiva SA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vantiva.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 141.11.36.41

Whois 141.11.36.41

IP Abuse Reports for 141.11.36.41:

This IP address has been reported a total of 78 times from 47 distinct sources. 141.11.36.41 was first reported on March 26th 2024, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 raph	2026-06-05 22:52:37 (1 hour ago)	[Wordpress] crawler /wp-admin/, /wp-content/, etc.	Bad Web Bot Web App Attack
🇯🇵 demonsword	2026-06-03 12:18:24 (2 days ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: api.cyberghostvpn.com:443 show less	Open Proxy Port Scan
🇬🇧 openstrike.co.uk	2026-05-30 05:13:36 (6 days ago)	101 attacks on PHP URLs: GET /admin.php HTTP/1.1	Web App Attack
🇳🇱 wlt-blocker	2026-05-30 04:02:44 (6 days ago)	Unauthorized access to webpage admin	Web App Attack
🇬🇧 consul.to	2026-05-29 16:49:09 (1 week ago)	Web attack/malicious scanning detected	Web App Attack
🇿🇦 Tokolosh Hunters	2026-05-26 15:47:12 (1 week ago)	AutoBlockWindow-Known bad useragent query-2026-05-26 15:47:11	Bad Web Bot
🇪🇸 masterguru	2026-05-26 02:50:54 (1 week ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-122) show less	Bad Web Bot
🇫🇷 dynamix	2026-05-04 16:50:52 (1 month ago)	WordPress XMLRPC Brute Force Attack	Brute-Force Web App Attack
🇫🇷 masterguru	2026-05-04 12:50:41 (1 month ago)	SQL Injection Attack Detected via libinjection. detected SQLi using libinjection with fingerprint 'n ... show more SQL Injection Attack Detected via libinjection. detected SQLi using libinjection with fingerprint 'n&1' (942100-195) show less	SQL Injection
🇩🇪 Hazzard	2026-05-04 10:27:19 (1 month ago)	(wordpress) Failed wordpress login from 141.11.36.41 (IT/Italy/Campania/Naples/-/[redacted]): (CF_E ... show more (wordpress) Failed wordpress login from 141.11.36.41 (IT/Italy/Campania/Naples/-/[redacted]): (CF_ENABLE) show less	Brute-Force
🇺🇦 URAN Publishing Service	2026-04-24 05:58:58 (1 month ago)	141.11.36.41 - - [24/Apr/2026:08:58:55 +0300] "GET /wp-content/themes/bltm/wp-login.php HTTP/1.1" 40 ... show more 141.11.36.41 - - [24/Apr/2026:08:58:55 +0300] "GET /wp-content/themes/bltm/wp-login.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1" 141.11.36.41 - - [24/Apr/2026:08:58:57 +0300] "GET /wp-content/themes/twentytwentyfour/patterns/template-singl-portfolio.php HTTP/1.1" 404 706 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇩🇪 findlab	2026-04-24 03:00:32 (1 month ago)	Backdrop CMS module - forbidden user agent	Bad Web Bot Web App Attack
Anonymous	2026-04-23 17:08:49 (1 month ago)	Multiple, malicious web requests detected	Port Scan Hacking
🇺🇸 TPI-Abuse	2026-04-21 17:21:32 (1 month ago)	(mod_security) mod_security (id:234930) triggered by 141.11.36.41 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:234930) triggered by 141.11.36.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 21 13:21:27.566271 2026] [security2:error] [pid 2020274:tid 2020274] [client 141.11.36.41:56429] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)\|\|phoboschildren.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "phoboschildren.com"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "aeeyF90FKCbk4lwAHOvO4AAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 masterguru	2026-04-18 04:48:04 (1 month ago)	BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (110 ... show more BAD BOT - Detected and Blocked.. Matched phrase "go-http-client" at REQUEST_HEADERS:User-Agent. (1100000-197) show less	Bad Web Bot

Showing 1 to 15 of 78 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇪 181.191.226.200

🇺🇸 165.154.163.10

🇺🇸 162.216.150.107

🇳🇱 185.136.15.12

🇳🇱 176.65.139.173

🇺🇸 162.216.150.160

🇺🇸 162.216.150.143

🇺🇸 162.216.150.127

🇨🇳 113.221.25.195

🇭🇰 103.210.237.224

🇬🇧 101.36.97.74

🇬🇧 81.132.19.87

🇩🇪 78.46.173.96

🇺🇸 66.132.172.43

🇺🇸 47.254.22.110

🇱🇹 45.227.254.170

🇺🇸 2607:f8b0:4001:c01::127

🇧🇪 198.235.24.186

🇳🇱 195.178.110.30

🇳🇱 193.176.31.243