JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 145.223.131.11

145.223.131.11 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 49%: ?

49%

ISP	BYTEPLUS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS150436
Domain Name	bytedance.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 145.223.131.11

Whois 145.223.131.11

IP Abuse Reports for 145.223.131.11:

This IP address has been reported a total of 44 times from 12 distinct sources. 145.223.131.11 was first reported on April 12th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 ipblock.com	2026-06-19 14:01:00 (2 days ago)	IPBlock protected site ID [3192-af][s=06]. Exploit request, vulnerability probe.	Hacking Bad Web Bot Web App Attack
🇨🇦 1gz	2026-06-19 04:11:29 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/10-te-vrare-kush-eshte-hulk-dedja-i-biri-i-ish-te-fortit-te-burrelit-ne-2010-tentoi-te-marre-hakun-e-te-atit-historia-e-gjakmarrjes-mes-fiseve-ne-burrel/509913/ UA: Mozilla/5.0 (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-06-19 01:50:34 (2 days ago)	Automatic report - Vulnerability scan /forum/viewtopic.php?f=4&amp%3Bt=75&amp%3Bsid=d6277b0c4b5f87ea ... show more Automatic report - Vulnerability scan /forum/viewtopic.php?f=4&amp%3Bt=75&amp%3Bsid=d6277b0c4b5f87ea878a4e72f9341b51 show less	Web App Attack
Anonymous	2026-06-19 00:16:10 (2 days ago)	Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) ... show more Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) employed by Angara Technologies Group (Explicitly identified himself as enemy a week before attack began) \| Attack Signature Blocked: /wishlist/index/add/product/3117/form_key/vvHlSq1CWX2ks3CZ/ \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 \| (Magento Site) show less	Hacking Bad Web Bot Web App Attack
Anonymous	2026-06-18 22:45:47 (2 days ago)	Automatic report - Vulnerability scan /forum/ucp2.php?mode=delete_cookies&amp%3Bsid=cc1b77e48e9da75a ... show more Automatic report - Vulnerability scan /forum/ucp2.php?mode=delete_cookies&amp%3Bsid=cc1b77e48e9da75a9aaaf3644dedc401 show less	Web App Attack
🇺🇸 nodepile	2026-06-18 09:59:09 (3 days ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/browse-by-car-model/audi/a3 ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/browse-by-car-model/audi/a3/audi-a3-06/audi-a3-06-headlight-covers.html ua='Mozilla/5.0 (iPhone; CPU iPhone OS 17_0 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.0 Mobile/15E148 Safari/260.1') show less	Web App Attack Exploited Host
🇨🇦 1gz	2026-06-18 06:53:54 (3 days ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /bota/gjermania-godet-rrjetet-sociale-per-gjuhen-e-urrejtjes/297830/ UA: Mozilla/5.0 (Linux; Android 13; Pixel 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 kosada.com	2026-06-17 11:30:02 (4 days ago)	Web bot: denial-of-service flood	DDoS Attack Bad Web Bot
🇺🇸 ipblock.com	2026-06-17 05:14:00 (4 days ago)	IPBlock protected site ID [3192-af][s=06]. Exploit request, vulnerability probe.	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-06-14 19:59:00 (6 days ago)	IPBlock protected site ID [3192-af][s=06]. Exploit request, vulnerability probe.	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-06-13 16:41:00 (1 week ago)	IPBlock protected site ID [3192-af][s=06]. Exploit request, vulnerability probe.	Hacking Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-06-11 21:36:00 (1 week ago)	IPBlock protected site ID [3192-af][s=06]. Exploit request, vulnerability probe.	Hacking Bad Web Bot Web App Attack
Anonymous	2026-06-06 19:11:42 (2 weeks ago)	Web app attack and vulnerability scan detected from IIS logs	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-16 04:34:36 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 145.223.131.11 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 145.223.131.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 16 00:34:22.308218 2026] [security2:error] [pid 11140:tid 11140] [client 145.223.131.11:50712] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.beirutbazar.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.beirutbazar.com"] [uri "/item/oat-fruits-and-seeds-cookies-200g-500g-lbp-5000-12500/[email protected]"] [unique_id "agfzzk3nGoNqippRVHHmRgAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ipblock.com	2026-05-15 10:01:00 (1 month ago)	IPBlock protected site ID [3192-af][s=06]. Exploit request, vulnerability probe.	Hacking Bad Web Bot Web App Attack

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.235

🇺🇸 173.44.180.42

🇺🇸 2604:a880:400:d1:0:4:9e97:e001

🇺🇸 2604:a880:400:d1:0:4:9e8d:1001

🇷🇺 178.177.40.170

🇩🇪 167.94.146.52

🇷🇺 147.45.48.17

🇰🇪 102.207.168.62

🇮🇹 93.42.33.238

🇮🇳 45.118.49.18

🇦🇺 211.27.6.90

🇭🇰 199.45.154.176

🇯🇵 152.32.204.21

🇬🇪 146.255.228.189

🇰🇪 102.210.148.41

🇩🇪 94.16.17.139

🇺🇸 34.16.225.84

🇳🇱 2a06:a880:5:67e0::1

🇷🇺 178.177.55.11

🇺🇸 40.124.175.233