JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 1.192.59.214

1.192.59.214 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 5%: ?

ISP	CHINANET henan province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	hntele.com
Country	🇨🇳 China
City	Zhengzhou, Henan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 1.192.59.214

Whois 1.192.59.214

IP Abuse Reports for 1.192.59.214:

This IP address has been reported a total of 5 times from 1 distinct source. 1.192.59.214 was first reported on June 19th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-27 23:54:21 (1 day ago)	(mod_security) mod_security (id:210831) triggered by 1.192.59.214 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 1.192.59.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 27 19:54:14.664560 2026] [security2:error] [pid 30636:tid 30636] [client 1.192.59.214:9342] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.andrejblatnik.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.andrejblatnik.com"] [uri "/"] [unique_id "akBipiZYrfXhX3VNCqs_RgAAAAw"], referer: http://www.andrejblatnik.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-25 03:02:46 (3 days ago)	(mod_security) mod_security (id:210831) triggered by 1.192.59.214 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 1.192.59.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 24 23:02:41.904960 2026] [security2:error] [pid 4179:tid 4179] [client 1.192.59.214:3682] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|musicfreakcentral.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "musicfreakcentral.com"] [uri "/"] [unique_id "ajyaUQRGK-PahKSSFYGGigAAABE"], referer: http://musicfreakcentral.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 22:53:03 (1 week ago)	(mod_security) mod_security (id:210831) triggered by 1.192.59.214 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 1.192.59.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 21 18:52:57.956074 2026] [security2:error] [pid 16352:tid 16352] [client 1.192.59.214:3246] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|styxfreeworld.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "styxfreeworld.com"] [uri "/"] [unique_id "ajhrSSORQdMq4T1WmZ5rawAAAAQ"], referer: http://styxfreeworld.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-21 02:39:53 (1 week ago)	(mod_security) mod_security (id:210831) triggered by 1.192.59.214 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 1.192.59.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 22:39:47.630097 2026] [security2:error] [pid 15574:tid 15574] [client 1.192.59.214:3211] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.worthhistory.org\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.worthhistory.org"] [uri "/index.htm"] [unique_id "ajdO84phEYnlX32stjShTwAAAAQ"], referer: http://www.worthhistory.org/index.htm show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 20:51:38 (1 week ago)	(mod_security) mod_security (id:210831) triggered by 1.192.59.214 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 1.192.59.214 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 16:51:33.816643 2026] [security2:error] [pid 32328:tid 32328] [client 1.192.59.214:4841] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.enespiral.net\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.enespiral.net"] [uri "/"] [unique_id "ajWr1WZZiVBL02DRLtjERgAAAAM"], referer: http://www.enespiral.net/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 183.82.109.202

🇹🇭 182.52.236.235

🇵🇰 103.74.21.64

🇺🇸 66.132.224.86

🇨🇳 47.102.100.45

🇬🇧 193.163.125.206

🇧🇷 190.171.84.254

🇧🇷 177.30.64.65

🇧🇷 170.84.58.175

🇸🇬 143.198.202.28

🇫🇷 92.222.108.100

🇦🇪 86.96.42.179

🇵🇰 72.255.18.58

🇲🇾 47.254.248.130

🇺🇸 34.227.110.152

🇺🇸 18.97.9.103

🇬🇧 5.226.140.19

🇰🇷 211.230.140.85

🇺🇸 204.236.201.190

🇺🇸 192.159.99.144