JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 119.249.100.173

119.249.100.173 was found in our database!

This IP was reported 564 times. Confidence of Abuse is 83%: ?

83%

ISP	China Unicom Heibei Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Luancheng, Hebei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 119.249.100.173

Whois 119.249.100.173

IP Abuse Reports for 119.249.100.173:

This IP address has been reported a total of 564 times from 64 distinct sources. 119.249.100.173 was first reported on October 3rd 2025, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 fortypoundhead	2026-06-21 20:48:52 (10 hours ago)	Banned IP Address	Hacking Web App Attack
🇬🇷 setupgr	2026-06-21 12:58:51 (18 hours ago)	(mod_security) mod_security (id:100011) triggered by 119.249.100.173 (CN/China/Hebei/Shijiazhuang/-/ ... show more (mod_security) mod_security (id:100011) triggered by 119.249.100.173 (CN/China/Hebei/Shijiazhuang/-/[AS4837 CHINA169-BACKBONE CHINA UNICOM China169 Backbone]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 21 15:58:50.842818 2026] [security2:error] [pid 1109141:tid 1111735] [remote 119.249.100.173:21692] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(www\\\\.)?ftiaxtomonosou\\\\.gr" at SERVER_NAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "54"] [id "100011"] [msg "CSF-TRIGGER: Country Block CN/SG for ftiaxtomonosou.gr"] [hostname "ftiaxtomonosou.gr"] [uri "/product-category/%CF%83%CF%8D%CE%B3%CF%87%CF%81%CE%BF%CE%BD%CE%BF-%CE%B4%CF%89%CE%BC%CE%AC%CF%84%CE%B9%CE%BF/%CE%BA%CE%BF%CF%85%CE%BA%CE%AD%CF%84%CE%B1/page/4/"] [unique_id "ajfgCiXd52GCp6daGPrVUAAA0CA"] show less	Port Scan
🇫🇷 Sklurk	2026-06-21 07:25:36 (23 hours ago)	Web App Attack	Web App Attack
🇨🇦 1gz	2026-06-21 04:12:31 (1 day ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /kerko.php UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇷 setupgr	2026-06-20 21:14:11 (1 day ago)	(mod_security) mod_security (id:100011) triggered by 119.249.100.173 (CN/China/Hebei/Shijiazhuang/-/ ... show more (mod_security) mod_security (id:100011) triggered by 119.249.100.173 (CN/China/Hebei/Shijiazhuang/-/[AS4837 CHINA169-BACKBONE CHINA UNICOM China169 Backbone]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 21 00:14:08.867044 2026] [security2:error] [pid 2277:tid 848338] [remote 119.249.100.173:33036] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(www\\\\.)?ftiaxtomonosou\\\\.gr" at SERVER_NAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "54"] [id "100011"] [msg "CSF-TRIGGER: Country Block CN/SG for ftiaxtomonosou.gr"] [hostname "ftiaxtomonosou.gr"] [uri "/%CF%84%CE%B1_%CE%B5%CE%AF%CE%B4%CE%B7_%CF%84%CE%BF%CF%85_%CE%BE%CF%8D%CE%BB%CE%BF%CF%85/meranti-dark-red/"] [unique_id "ajcCoFVjV5VR3hAZ4rl7GQAAVSM"] show less	Port Scan
🇬🇷 setupgr	2026-06-20 19:31:06 (1 day ago)	(mod_security) mod_security (id:100011) triggered by 119.249.100.173 (CN/China/Hebei/Shijiazhuang/-/ ... show more (mod_security) mod_security (id:100011) triggered by 119.249.100.173 (CN/China/Hebei/Shijiazhuang/-/[AS4837 CHINA169-BACKBONE CHINA UNICOM China169 Backbone]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 20 22:31:01.623174 2026] [security2:error] [pid 785068:tid 785070] [remote 119.249.100.173:63115] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(www\\\\.)?ftiaxtomonosou\\\\.gr" at SERVER_NAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "54"] [id "100011"] [msg "CSF-TRIGGER: Country Block CN/SG for ftiaxtomonosou.gr"] [hostname "ftiaxtomonosou.gr"] [uri "/%CE%B4%CF%89%CE%BC%CE%AC%CF%84%CE%B9%CE%BF/page/6/"] [unique_id "ajbqdRGXBK2iHtemAo_wfQABDwE"] show less	Port Scan
Anonymous	2026-06-20 09:20:10 (1 day ago)	FortiWeb WAF: 34 attacks detected. Threat Score: 15800. Types: Client Management(17), GEO IP(17). Or ... show more FortiWeb WAF: 34 attacks detected. Threat Score: 15800. Types: Client Management(17), GEO IP(17). Origin: China. show less	Web App Attack
🇨🇦 1gz	2026-06-20 01:35:49 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /kerko.php UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇬🇷 setupgr	2026-06-19 23:49:46 (2 days ago)	(mod_security) mod_security (id:100011) triggered by 119.249.100.173 (CN/China/Hebei/Shijiazhuang/-/ ... show more (mod_security) mod_security (id:100011) triggered by 119.249.100.173 (CN/China/Hebei/Shijiazhuang/-/[AS4837 CHINA169-BACKBONE CHINA UNICOM China169 Backbone]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sat Jun 20 02:49:44.752631 2026] [security2:error] [pid 2276:tid 2297] [remote 119.249.100.173:57045] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(www\\\\.)?ftiaxtomonosou\\\\.gr" at SERVER_NAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "54"] [id "100011"] [msg "CSF-TRIGGER: Country Block CN/SG for ftiaxtomonosou.gr"] [hostname "ftiaxtomonosou.gr"] [uri "/%CF%84%CE%B1_%CE%B5%CE%AF%CE%B4%CE%B7_%CF%84%CE%BF%CF%85_%CE%BE%CF%8D%CE%BB%CE%BF%CF%85/%CF%84%CF%81%CE%B1%CF%87%CE%B5%CE%AF%CE%B1-%CF%80%CE%B5%CF%8D%CE%BA%CE%B7/page/3/"] [unique_id "ajXVmPFOzdhEIc8u07fZ2AAAAw0"] show less	Port Scan
🇮🇩 hermawan	2026-06-19 19:27:26 (2 days ago)	1781897231.884402 119.249.100.173 103.166.156.58 65535_2-4-8-1-3_1436_7 2026-06-20 02:27:11 WIB ...	Email Spam Hacking
🇪🇸 librebit	2026-06-19 16:56:07 (2 days ago)	Brute force	Brute-Force
🇬🇷 setupgr	2026-06-19 08:04:35 (2 days ago)	(mod_security) mod_security (id:100011) triggered by 119.249.100.173 (CN/China/Hebei/Shijiazhuang/-/ ... show more (mod_security) mod_security (id:100011) triggered by 119.249.100.173 (CN/China/Hebei/Shijiazhuang/-/[AS4837 CHINA169-BACKBONE CHINA UNICOM China169 Backbone]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Fri Jun 19 11:04:34.795867 2026] [security2:error] [pid 2276:tid 2280] [remote 119.249.100.173:5903] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(www\\\\.)?ftiaxtomonosou\\\\.gr" at SERVER_NAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "54"] [id "100011"] [msg "CSF-TRIGGER: Country Block CN/SG for ftiaxtomonosou.gr"] [hostname "ftiaxtomonosou.gr"] [uri "/%CF%84%CE%B1_%CE%B5%CE%AF%CE%B4%CE%B7_%CF%84%CE%BF%CF%85_%CE%BE%CF%8D%CE%BB%CE%BF%CF%85/%CE%AC%CF%83%CF%80%CF%81%CE%BF-%CE%B4%CE%B5%CF%83%CF%80%CE%BF%CF%84%CE%AC%CE%BA%CE%B9-%CE%B1%CF%85%CF%83%CF%84%CF%81%CE%B1%CE%BB%CE%AF%CE%B1%CF%82/"] [unique_id "ajT4EvFOzdhEIc8u07d0rwAAEQE"] show less	Port Scan
🇫🇷 Sklurk	2026-06-19 07:12:34 (3 days ago)	Web App Attack	Web App Attack
🇨🇦 1gz	2026-06-19 02:44:31 (3 days ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /shqiperi/tirane-vritet-ne-prite-emigranti/96248/kerko.php UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇵🇱 bmino.pl	2026-06-19 00:49:59 (3 days ago)	Autoban IP(2): 119.249.100.173 - Hostname: China Unicom China169 Network - City: Shijiazhuang - Regi ... show more Autoban IP(2): 119.249.100.173 - Hostname: China Unicom China169 Network - City: Shijiazhuang - Region: Hebei - Country: China - Location: 38.036,114.47 - Organization: AS4837 CHINA UNICOM China169 Backbone - failed attempts. show less	Bad Web Bot

Showing 1 to 15 of 564 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇫 149.54.62.66

🇮🇳 147.93.152.181

🇮🇳 117.221.136.101

🇧🇩 103.158.206.236

🇺🇸 73.27.33.174

🇺🇸 66.132.172.135

🇺🇸 38.148.249.2

🇺🇸 195.184.76.34

🇭🇰 193.176.211.51

🇵🇰 160.187.180.175

🇺🇸 107.150.102.199

🇮🇳 103.159.44.140

🇮🇳 103.39.245.69

🇺🇸 67.207.95.203

🇺🇸 65.110.40.249

🇩🇪 47.254.149.208

🇵🇷 24.50.227.93

🇸🇬 15.235.224.64

🇦🇺 209.38.80.203

🇳🇵 202.70.72.87