JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.203.11.111

159.203.11.111 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 4%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.203.11.111

Whois 159.203.11.111

IP Abuse Reports for 159.203.11.111:

This IP address has been reported a total of 20 times from 17 distinct sources. 159.203.11.111 was first reported on February 23rd 2025, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 librebit	2026-06-23 02:11:03 (4 days ago)	Brute force	Brute-Force
🇵🇱 sefinek.net	2026-02-01 13:27:36 (4 months ago)	Honeypot hit: HTTP/1.1 request on 15000 GET / User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebK ... show more Honeypot hit: HTTP/1.1 request on 15000 GET / User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate; 15000 [2] TCP show less	Hacking Bad Web Bot
🇧🇪 cmbplf	2026-01-15 13:28:01 (5 months ago)	2.509 POST requests with url.path */wp-login.php	Brute-Force Bad Web Bot
🇩🇪 Petros Stefanakis	2026-01-15 12:21:11 (5 months ago)	(wordpress,mod_security) Login failure/trigger from 159.203.11.111 (CA/Canada/-)	SQL Injection Brute-Force
🇮🇹 VHosting	2026-01-15 12:05:04 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇬🇧 rakkor	2026-01-15 11:37:57 (5 months ago)	2026-01-15T11:37:56+00:00 NAS [Thu Jan 15 11:37:56.707376 2026] [proxy_fcgi:error] [pid 11994:tid 12 ... show more 2026-01-15T11:37:56+00:00 NAS [Thu Jan 15 11:37:56.707376 2026] [proxy_fcgi:error] [pid 11994:tid 12017] [client 159.203.11.111:40174] AH01071: Got error 'Primary script unknown' ... show less	Hacking Brute-Force
Anonymous	2026-01-15 11:35:55 (5 months ago)	wordpress-trap	Web App Attack
🇺🇸 RAP	2025-12-16 06:32:34 (6 months ago)	2025-12-16 06:32:34 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇺🇸 sumnone	2025-11-25 12:24:34 (7 months ago)	Port probing on unauthorized port 1912	Port Scan Hacking Exploited Host
🇺🇸 MPL	2025-11-25 12:09:36 (7 months ago)	tcp/13000 (3 or more attempts)	Port Scan
🇳🇱 StopAbuse	2025-10-19 18:18:35 (8 months ago)	tcp/8090	Port Scan
Anonymous	2025-09-29 12:10:05 (8 months ago)	DNS AXFR Attempt	DNS Compromise
🇺🇸 MPL	2025-06-15 12:48:35 (1 year ago)	tcp/13000	Port Scan
🇺🇸 MPL	2025-06-15 12:48:35 (1 year ago)	tcp/13000	Port Scan
🇰🇷 winter	2025-06-15 12:19:10 (1 year ago)	Connection attemp from 159.203.11.111 to port 22	Brute-Force SSH

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 189.69.17.58

🇮🇳 103.123.53.88

🇫🇷 85.217.140.35

🇨🇳 218.25.89.208

🇧🇷 205.210.31.228

🇳🇱 176.65.139.181

🇮🇳 103.110.21.203

🇦🇺 40.82.214.8

🇺🇸 3.91.9.99

🇺🇸 162.216.150.82

🇨🇳 117.57.93.175

🇩🇪 92.116.194.27

🇺🇸 57.141.20.8

🇨🇳 42.248.129.234

🇧🇸 24.51.86.250

🇺🇸 173.239.214.4

🇨🇦 85.217.149.48

🇺🇸 74.89.169.91

🇺🇸 47.251.86.173

🇺🇸 31.59.40.94