JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 114.217.219.93

114.217.219.93 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 12%: ?

12%

ISP	Chinanet Jiangsu Province Network
Usage Type	Commercial
ASN	AS140292
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 114.217.219.93

Whois 114.217.219.93

IP Abuse Reports for 114.217.219.93:

This IP address has been reported a total of 6 times from 2 distinct sources. 114.217.219.93 was first reported on April 24th 2026, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-18 00:20:59 (17 hours ago)	(mod_security) mod_security (id:210831) triggered by 114.217.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 114.217.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 20:20:54.058889 2026] [security2:error] [pid 7301:tid 7301] [client 114.217.219.93:55438] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.jcrluthier.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.jcrluthier.com"] [uri "/"] [unique_id "ajM55nSrjuO9IXzAxdb9IgAAAAA"], referer: http://www.jcrluthier.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 23:15:33 (18 hours ago)	(mod_security) mod_security (id:210831) triggered by 114.217.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 114.217.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 19:15:25.585827 2026] [security2:error] [pid 31145:tid 31145] [client 114.217.219.93:19098] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.jdeloa.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.jdeloa.com"] [uri "/"] [unique_id "ajMqjXPb1DVL4ggoSgC6RAAAAAE"], referer: https://www.jdeloa.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-27 19:59:50 (3 weeks ago)	(mod_security) mod_security (id:210831) triggered by 114.217.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 114.217.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 27 15:59:45.141808 2026] [security2:error] [pid 8351:tid 8351] [client 114.217.219.93:58665] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.areaware-archive.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.areaware-archive.com"] [uri "/"] [unique_id "ahdNMXLZ-uQLnXmOShxpnwAAAAE"], referer: http://www.areaware-archive.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-29 21:01:26 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 114.217.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 114.217.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 29 17:01:21.440144 2026] [security2:error] [pid 10555:tid 10593] [client 114.217.219.93:31819] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|sailcleaner.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "sailcleaner.com"] [uri "/"] [unique_id "afJxoWuFwuBQsdRYjs_lGgAAAIQ"], referer: http://sailcleaner.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-26 19:42:27 (1 month ago)	(mod_security) mod_security (id:210831) triggered by 114.217.219.93 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 114.217.219.93 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 26 15:42:23.034322 2026] [security2:error] [pid 23250:tid 23250] [client 114.217.219.93:63946] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|ran101.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "ran101.com"] [uri "/"] [unique_id "ae5qn_EcLuI2yTlXbHqxZAAAABA"], referer: http://ran101.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-04-24 19:03:40 (1 month ago)	[FriApr2421:03:34.4348432026][security2:error][pid3972066:tid3972081][client114.217.219.93:0]ModSecu ... show more [FriApr2421:03:34.4348432026][security2:error][pid3972066:tid3972081][client114.217.219.93:0]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof\"rx$http://bsalsa\\\\\\\\.com\\|\^site24x7$\"against\"REQUEST_HEADERS:user-agent\"required.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"282\"][id\"330094\"][rev\"5\"][msg\"Atomicorp.comWAFRules:CompromisedUser-AgentAgentAttackblocked\"][severity\"CRITICAL\"][hostname\"www.asw-sa.com\"][uri\"/\"][unique_id\"aeu-hnkUuAPVqdHKytwm_AAAAQw\"]\,referer:https://www.asw-sa.com/ show less	Port Scan Brute-Force Web App Attack

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇺 170.64.167.72

🇺🇸 162.216.149.242

🇪🇸 135.129.233.7

🇨🇳 101.89.148.7

🇲🇾 49.124.149.202

🇨🇳 39.100.83.160

🇺🇸 207.46.13.6

🇺🇸 152.32.234.39

🇫🇷 143.244.57.82

🇬🇧 87.236.176.176

🇷🇺 87.226.190.225

🇳🇱 45.9.2.48

🇨🇳 39.100.69.74

🇷🇺 37.204.22.234

🇺🇸 20.12.202.181

🇭🇰 14.0.226.48

🇩🇪 213.209.159.242

🇷🇴 193.46.255.86

🇺🇸 172.253.214.20

🇺🇸 143.244.167.233