JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 112.0.140.55

112.0.140.55 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 14%: ?

14%

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS56046
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Jiaxing, Zhejiang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 112.0.140.55

Whois 112.0.140.55

IP Abuse Reports for 112.0.140.55:

This IP address has been reported a total of 8 times from 3 distinct sources. 112.0.140.55 was first reported on April 13th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-12 04:43:26 (1 day ago)	(mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 00:43:22.489015 2026] [security2:error] [pid 29177:tid 29177] [client 112.0.140.55:15518] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.partyblockparties.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.partyblockparties.com"] [uri "/"] [unique_id "aiuOav3IiscUuJSrR1Ma1QAAACE"], referer: http://www.partyblockparties.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 21:56:14 (2 days ago)	(mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 17:56:08.146044 2026] [security2:error] [pid 7374:tid 7374] [client 112.0.140.55:30196] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.firstunitedreserve.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.firstunitedreserve.com"] [uri "/"] [unique_id "aindeEm1gWTR9MOKo499pAAAAAg"], referer: http://www.firstunitedreserve.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 19:43:08 (2 days ago)	(mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 15:43:00.751688 2026] [security2:error] [pid 1686:tid 1686] [client 112.0.140.55:29937] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.dollybambi.click\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.dollybambi.click"] [uri "/"] [unique_id "aim-RJRXyM07MhnjZmZgbAAAAAE"], referer: http://www.dollybambi.click/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 23:44:04 (1 week ago)	(mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 19:43:55.650845 2026] [security2:error] [pid 12739:tid 12739] [client 112.0.140.55:29865] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|misscharlottemusic.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "misscharlottemusic.com"] [uri "/"] [unique_id "aiNfO-PqIB_GSJuIrcDv2wAAAAA"], referer: https://misscharlottemusic.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-04 19:16:18 (1 week ago)	(mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 15:16:09.936235 2026] [security2:error] [pid 13898:tid 13898] [client 112.0.140.55:15533] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|emsystemsltd.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "emsystemsltd.com"] [uri "/"] [unique_id "aiHO-cbjUKlpOCoDuAZsngAAAAc"], referer: https://emsystemsltd.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-25 18:39:18 (2 weeks ago)	(mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210831) triggered by 112.0.140.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 14:39:11.024143 2026] [security2:error] [pid 21350:tid 21350] [client 112.0.140.55:15329] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.bradleybarefoot.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.bradleybarefoot.com"] [uri "/"] [unique_id "ahSXT37r3cqP43flGnDkigAAABA"], referer: https://www.bradleybarefoot.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-25 16:34:36 (2 weeks ago)	Failed login attempt detected by Fail2Ban in plesk-modsecurity jail	Exploited Host
🇳🇱 EGP Abuse Dept	2026-04-13 08:19:04 (2 months ago)	Unauthorized connection to proxy port 8080	Port Scan Hacking

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f5b4:88:109:1c00:ceff:fe00:8e3

🇺🇸 151.245.253.190

🇺🇸 147.185.132.184

🇫🇷 54.36.91.250

🇸🇬 43.163.107.154

🇸🇬 43.156.148.224

🇸🇿 41.211.46.8

🇺🇸 35.132.106.145

🇲🇰 31.11.74.146

🇧🇬 5.188.206.46

🇸🇦 5.110.29.35

🇷🇺 2a0e:8141:76b1:c8a8:c225:e9ff:fe68:fe07

🇧🇷 201.55.113.122

🇳🇱 195.178.110.26

🇳🇱 193.176.31.152

🇨🇭 185.231.33.38

🇮🇹 185.15.169.35

🇺🇸 172.217.46.85

🇺🇸 172.59.186.220

🇺🇸 65.49.1.157