JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.141.11.113

192.141.11.113 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 32%: ?

32%

ISP	ADEATEL S.A
Usage Type	Fixed Line ISP
ASN	AS266664
Domain Name	adeatel.net
Country	🇪🇨 Ecuador
City	Milagro, Guayas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.141.11.113

Whois 192.141.11.113

IP Abuse Reports for 192.141.11.113:

This IP address has been reported a total of 24 times from 17 distinct sources. 192.141.11.113 was first reported on March 14th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-05-25 22:45:00 (1 week ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 cazae	2026-05-24 05:51:05 (1 week ago)	Unauthorized attempt on debian [23/tcp] Source port: 5793 TTL: 42 Packet length: 40 TOS: 0x08 https ... show more Unauthorized attempt on debian [23/tcp] Source port: 5793 TTL: 42 Packet length: 40 TOS: 0x08 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan IoT Targeted
🇺🇸 RAP	2026-05-24 05:50:59 (1 week ago)	2026-05-24 05:50:59 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 MPL	2026-05-24 05:08:25 (1 week ago)	tcp/23 (2 or more attempts)	Port Scan
🇺🇸 xmission.com	2026-05-24 04:49:54 (1 week ago)	Blocked by UFW (TCP on 23) Source port: 30150 TTL: 45 Packet length: 40 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 30150 TTL: 45 Packet length: 40 TOS: 0x08 This report (for 192.141.11.113) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇮🇩 hermawan	2026-04-04 06:17:42 (2 months ago)	1775283119.807073 CaZrKj3vLIQVwRCfij 192.141.11.113 47330 103.166.156.58 443 tcp ssl 40.886805 1436 ... show more 1775283119.807073 CaZrKj3vLIQVwRCfij 192.141.11.113 47330 103.166.156.58 443 tcp ssl 40.886805 1436 33132 SF F F 0 ShADadFft 31 3104 39 35507 - 6 144447_41_253694 652_64_19314 65535_2-4-8-1-3_1460_6 43440_2-4-8-1-3_1460_14 04/04/2026-13:11:59.807073 ... show less	Email Spam Hacking
Anonymous	2026-01-18 16:13:06 (4 months ago)	botnet	DDoS Attack
🇺🇸 TPI-Abuse	2025-12-10 14:52:11 (5 months ago)	"Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized ac ... show more "Participant in large-scale DDoS Attack in which data injection was attmpted to gain unauthorized access" show less	DDoS Attack SQL Injection Exploited Host
Anonymous	2025-11-25 12:00:41 (6 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-21 00:35:32 (6 months ago)	scanning http requests from known botnet	Web App Attack
Anonymous	2025-11-16 21:13:24 (6 months ago)	scanning http requests from known botnet	Web App Attack
🇺🇸 nodepile	2025-11-13 15:18:30 (6 months ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/brands.html ua='Mozilla/5.0 ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/brands.html ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/101.0.4951.26 Safari/537.36') show less	Exploited Host Web App Attack
🇺🇸 nodepile	2025-11-08 06:58:24 (6 months ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/brands.html ua='Mozilla/5.0 ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/brands.html ua='Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Brave Chrome/88.0.4324.182 Safari/537.36') show less	Exploited Host Web App Attack
🇮🇩 hermawan	2025-10-23 18:48:00 (7 months ago)	[Fri Oct 24 01:34:26.952527 2025] [security2:error] [pid 1662282:tid 140157205341888] [client 192.14 ... show more [Fri Oct 24 01:34:26.952527 2025] [security2:error] [pid 1662282:tid 140157205341888] [client 192.141.11.113:3503] ModSecurity: Access denied with code 403 (phase 1). Match of "pm matomo.staklim-malang.info " against "SERVER_NAME" required. [file "/etc/modsecurity/coreruleset-4.16.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "164"] [id "440235"] [msg "BAD REQUEST Bro"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: %3a found within SERVER_NAME: staklim-malang.info request_line = GET /index.php/profil/arsip-artikel?catid=475&id=828%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-22-28-desember-2015&start=90 HTTP/2.0 Request URI RAW = /index.php/profil/arsip-artikel?catid=475&id=828%3Aprakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-22-28-desember-2015&start=90 R..."] [hostname "staklim-malang.info"] [uri "/index.php/profil/arsip-artikel"] [unique_id "aPp1Mrgo6AsL ... show less	Hacking Web App Attack
Anonymous	2025-10-14 21:33:47 (7 months ago)	Distributed web crawl (like Mellowtel), likely illicit scraping of AI training data to bypass firewa ... show more Distributed web crawl (like Mellowtel), likely illicit scraping of AI training data to bypass firewall/robots.txt restrictions (/forums/forums/thread-post.asp?action=reply&replyto=165213%22e%3Dyes) show less	Bad Web Bot Exploited Host

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 185.136.15.12

🇭🇰 119.246.15.94

🇰🇷 221.156.126.1

🇺🇸 192.169.232.63

🇺🇾 186.55.188.83

🇮🇩 124.40.252.3

🇰🇿 45.143.88.46

🇷🇴 2.57.122.238

🇷🇺 80.69.186.68

🇺🇸 66.132.224.26

🇺🇸 45.58.52.25

🇦🇪 20.203.102.60

🇺🇸 20.64.105.148

🇷🇴 2.57.121.25

🇻🇳 183.91.186.36

🇸🇪 172.217.19.227

🇻🇳 103.186.101.237

🇮🇹 95.250.241.71

🇧🇷 45.172.162.153

🇹🇷 45.158.14.124