JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 119.165.203.55

119.165.203.55 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 12%: ?

12%

ISP	China Unicom Shandong Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Qingdao, Shandong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 119.165.203.55

Whois 119.165.203.55

IP Abuse Reports for 119.165.203.55:

This IP address has been reported a total of 10 times from 2 distinct sources. 119.165.203.55 was first reported on May 6th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-16 22:26:22 (2 days ago)	(mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 18:26:18.863011 2026] [security2:error] [pid 2244:tid 2247] [client 119.165.203.55:45925] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|ecothermtech.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "ecothermtech.com"] [uri "/"] [unique_id "ajHNigBGmYi_0-jouyR2bgAAAME"], referer: http://ecothermtech.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 20:54:54 (3 days ago)	(mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 16:54:48.641352 2026] [security2:error] [pid 19872:tid 19909] [client 119.165.203.55:35917] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|giorgiogranozio.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "giorgiogranozio.com"] [uri "/index.html"] [unique_id "ajBmmBchNapxKrJdo0ECwwAAAYY"], referer: https://giorgiogranozio.com/index.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 21:40:19 (1 week ago)	(mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 17:40:13.749994 2026] [security2:error] [pid 9811:tid 9811] [client 119.165.203.55:58595] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|radiointernational.net\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "radiointernational.net"] [uri "/"] [unique_id "aiNCPcgmNVUsMrGB9COUbAAAAAk"], referer: http://radiointernational.net/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 21:13:06 (2 weeks ago)	(mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 17:13:00.504796 2026] [security2:error] [pid 6826:tid 6826] [client 119.165.203.55:16102] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.catzpaw.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.catzpaw.com"] [uri "/"] [unique_id "aiCY3FOzq8Z6rSOjF_ppmgAAAAY"], referer: https://www.catzpaw.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-25 20:11:39 (3 weeks ago)	(mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 25 16:11:32.345717 2026] [security2:error] [pid 31945:tid 31945] [client 119.165.203.55:8880] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.pyxelstudios.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.pyxelstudios.com"] [uri "/"] [unique_id "ahSs9Dlup7JgoxVvQwyUPQAAAAE"], referer: http://www.pyxelstudios.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-20 00:18:03 (4 weeks ago)	(mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 119.165.203.55 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 19 20:17:58.819953 2026] [security2:error] [pid 13941:tid 13971] [client 119.165.203.55:44670] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.cibernetic.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.cibernetic.com"] [uri "/"] [unique_id "agz9tp-ZWOSzAn-4vqtPIQAAApY"], referer: http://www.cibernetic.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2026-05-15 00:54:44 (1 month ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/119.165.203.55 2026-05-1 ... show more ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/119.165.203.55 2026-05-14 14:18:31 / show less	Web App Attack
🇨🇳 ThreatBook.io	2026-05-10 01:10:35 (1 month ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/119.165.203.55 2026-05-0 ... show more ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/119.165.203.55 2026-05-09 12:24:47 /sitemap.xml show less	Web App Attack
🇨🇳 ThreatBook.io	2026-05-07 01:50:46 (1 month ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/119.165.203.55 2026-05-0 ... show more ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/119.165.203.55 2026-05-06 02:41:16 /sitemap.xml 2026-05-06 04:34:37 /portal.html 2026-05-06 02:03:32 / show less	Web App Attack
🇨🇳 ThreatBook.io	2026-05-06 02:56:22 (1 month ago)	ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/119.165.203.55 2026-05-0 ... show more ThreatBook Intelligence: Dynamic IP more details on http://threatbook.io/ip/119.165.203.55 2026-05-05 21:04:48 /config.json 2026-05-05 01:20:50 /robots.txt show less	Web App Attack

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a09:bac5:6d70:e3c::16b:135

🇻🇳 171.234.8.64

🇳🇱 160.119.71.20

🇨🇦 159.203.61.56

🇮🇩 143.20.49.38

🇫🇮 94.183.234.128

🇳🇱 91.92.40.49

🇮🇹 89.168.26.47

🇳🇱 45.148.10.157

🇳🇱 45.8.17.128

🇺🇸 18.222.105.73

🇺🇸 134.209.160.176

🇹🇼 111.70.34.21

🇮🇳 103.91.72.236

🇺🇸 97.107.141.150

🇷🇴 193.32.162.16

🇳🇱 192.253.248.65

🇮🇪 65.52.75.227

🇸🇬 47.236.197.228

🇪🇹 196.190.220.199