JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 141.11.36.65

141.11.36.65 was found in our database!

This IP was reported 83 times. Confidence of Abuse is 58%: ?

58%

ISP	Vantiva SA
Usage Type	Data Center/Web Hosting/Transit
ASN	AS137409
Domain Name	vantiva.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 141.11.36.65

Whois 141.11.36.65

IP Abuse Reports for 141.11.36.65:

This IP address has been reported a total of 83 times from 44 distinct sources. 141.11.36.65 was first reported on April 7th 2024, and the most recent report was 19 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 consul.to	2026-06-09 00:42:06 (19 minutes ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 Nevermind	2026-06-07 20:07:44 (1 day ago)	141.11.36.65 - - [07/Jun/2026:22:07:43 +0200] "GET /wp-includes/assets/config.php HTTP/2.0" 404 146 ... show more 141.11.36.65 - - [07/Jun/2026:22:07:43 +0200] "GET /wp-includes/assets/config.php HTTP/2.0" 404 146 "http://superdau.it/wp-includes/assets/config.php" "Go-http-client/2.0" 141.11.36.65 - - [07/Jun/2026:22:07:43 +0200] "GET /wp-includes/SimplePie/config.php HTTP/2.0" 404 146 "http://superdau.it/wp-includes/SimplePie/config.php" "Go-http-client/2.0" 141.11.36.65 - - [07/Jun/2026:22:07:43 +0200] "GET /wp-admin/users.php HTTP/2.0" 404 146 "http://superdau.it/wp-admin/users.php" "Go-http-client/2.0" 141.11.36.65 - - [07/Jun/2026:22:07:44 +0200] "GET /wp-content/cache/tmp/dofault.php HTTP/2.0" 404 146 "http://superdau.it/wp-content/cache/tmp/dofault.php" "Go-http-client/2.0" ... show less	Web App Attack
🇬🇧 consul.to	2026-06-03 00:10:18 (6 days ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 BlueWire Hosting	2026-06-02 19:58:07 (6 days ago)	Probing websites for vulnerabilities	Web App Attack
🇺🇸 TPI-Abuse	2026-05-23 20:33:17 (2 weeks ago)	(mod_security) mod_security (id:234930) triggered by 141.11.36.65 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:234930) triggered by 141.11.36.65 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 16:33:09.226581 2026] [security2:error] [pid 20091:tid 20091] [client 141.11.36.65:64985] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\/lib\\\\/php\\\\/connector\\\\.minimal\\\\.php$" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/27_Apps_WPPlugin.conf"] [line "6778"] [id "234930"] [rev "2"] [msg "COMODO WAF: File upload vulnerability in the file manager plugin before 6.9 for WordPress (CVE-2020-25213)\|\|bigpanda.expert\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WPPlugin"] [hostname "bigpanda.expert"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "ahIPBRjP--Bx5wmf8sffbgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇦 URAN Publishing Service	2026-05-19 16:20:58 (2 weeks ago)	141.11.36.65 - - [19/May/2026:19:20:56 +0300] "GET /wp-content/plugins/contact-form-7/includes/js/jq ... show more 141.11.36.65 - - [19/May/2026:19:20:56 +0300] "GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/system.php HTTP/1.1" 404 709 "-" "Go-http-client/1.1" 141.11.36.65 - - [19/May/2026:19:20:57 +0300] "GET /wp-content/plugins/all-in-one-wp-security-and-firewall/templates/wp-admin/security.php HTTP/1.1" 404 709 "-" "Go-http-client/1.1" ... show less	Web App Attack
🇨🇴 adalbertoreyes.org	2026-05-18 13:08:54 (3 weeks ago)	CategoryPortScan	Port Scan
🇩🇪 Nightreaver	2026-05-17 02:40:02 (3 weeks ago)	141.11.36.65 - - [17/May/2026:04:40:01 0200] "GET //modules/medultimatejs/blue.php HTTP/1.1" 404 50 ... show more 141.11.36.65 - - [17/May/2026:04:40:01 0200] "GET //modules/medultimatejs/blue.php HTTP/1.1" 404 509 "-" "Go-http-client/1.1" 141.11.36.65 - - [17/May/2026:04:40:01 0200] "GET //modules/onlinechat2028/az.php HTTP/1.1" 404 509 "-" "Go-http-client/1.1" 141.11.36.65 - - [17/May/2026:04:40:01 0200] "GET //modules/sendinblue/numberv2.php HTTP/1.1" 404 509 "-" "Go-http-client/1.1" 141.11.36.65 - - [17/May/2026:04:40:01 0200] "GET //themes/freshfood/index.php HTTP/1.1" 404 509 "-" "Go-http-client/1.1" 141.11.36.65 - - [17/May/2026:04:40:02 0200] "GET //themes/probusiness/index.php HTTP/1.1" 404 509 "-" "Go-http-client/1.1"[...] show less	Bad Web Bot Web App Attack
🇩🇪 ghostwarriors	2026-05-16 17:50:38 (3 weeks ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nyt	2026-05-14 23:09:35 (3 weeks ago)	404 flood (16/60s)	Bad Web Bot Web App Attack
🇺🇸 nyt	2026-05-14 22:33:17 (3 weeks ago)	Non-standard WP File, 404 flood (16/60s)	Bad Web Bot Web App Attack
🇩🇪 ghostwarriors	2026-05-14 11:20:23 (3 weeks ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-11 07:31:23 (4 weeks ago)	(PERMBLOCK) 141.11.36.65 (IT/Italy/-) has had more than 4 temp blocks	Hacking
🇺🇸 TPI-Abuse	2026-05-11 07:18:05 (4 weeks ago)	(mod_security) mod_security (id:225170) triggered by 141.11.36.65 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:225170) triggered by 141.11.36.65 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 11 03:18:00.459156 2026] [security2:error] [pid 9483:tid 9483] [client 141.11.36.65:49741] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|www.stinsonbeachsurfandkayak.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.stinsonbeachsurfandkayak.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "agGCqOY-vvPEOEfZ1Ov5jgAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-11 07:05:30 (4 weeks ago)	(wordpress) Failed wordpress login from 141.11.36.65 (IT/Italy/-)	Brute-Force

Showing 1 to 15 of 83 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇾 143.255.140.220

🇭🇰 118.26.153.102

🇷🇴 102.129.186.87

🇸🇾 91.144.21.210

🇫🇷 45.94.209.196

🇺🇸 35.234.181.132

🇺🇸 34.228.104.231

🇨🇭 34.65.160.175

🇺🇸 20.127.185.37

🇮🇳 218.248.4.101

🇳🇱 217.60.195.24

🇳🇱 213.152.161.54

🇨🇭 209.99.189.138

🇧🇷 205.210.31.163

🇰🇪 197.232.118.112

🇦🇷 190.151.159.66

🇲🇽 186.96.145.241

🇨🇳 180.76.237.47

🇨🇳 180.76.225.175

🇳🇱 178.128.248.249