JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 119.249.100.176

119.249.100.176 was found in our database!

This IP was reported 606 times. Confidence of Abuse is 96%: ?

96%

ISP	China Unicom Heibei Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Luancheng, Hebei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 119.249.100.176

Whois 119.249.100.176

IP Abuse Reports for 119.249.100.176:

This IP address has been reported a total of 606 times from 72 distinct sources. 119.249.100.176 was first reported on September 17th 2025, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 fortypoundhead	2026-06-24 10:04:02 (9 hours ago)	Banned IP Address	Hacking Web App Attack
🇬🇷 setupgr	2026-06-24 09:40:11 (9 hours ago)	(mod_security) mod_security (id:100011) triggered by 119.249.100.176 (CN/China/Hebei/Shijiazhuang/-/ ... show more (mod_security) mod_security (id:100011) triggered by 119.249.100.176 (CN/China/Hebei/Shijiazhuang/-/[AS4837 CHINA169-BACKBONE CHINA UNICOM China169 Backbone]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Wed Jun 24 12:40:10.551921 2026] [security2:error] [pid 2470:tid 82519] [remote 119.249.100.176:2601] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(www\\\\.)?ftiaxtomonosou\\\\.gr" at SERVER_NAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "54"] [id "100011"] [msg "CSF-TRIGGER: Country Block CN/SG for ftiaxtomonosou.gr"] [hostname "ftiaxtomonosou.gr"] [uri "/%CE%B2%CE%BF%CF%84%CE%B1%CE%BD%CE%B9%CE%BA%CE%AE_%CF%84%CE%B1%CE%BE%CE%B9%CE%BD%CF%8C%CE%BC%CE%B7%CF%83%CE%B7/j-drupacea/"] [unique_id "ajul-ttqdXtSkN1ATUy4ywABFR8"] show less	Port Scan
Anonymous	2026-06-24 09:23:04 (10 hours ago)	FortiWeb WAF: 58 attacks detected. Threat Score: 12600. Types: Client Management(29), GEO IP(29). Or ... show more FortiWeb WAF: 58 attacks detected. Threat Score: 12600. Types: Client Management(29), GEO IP(29). Origin: China. show less	Web App Attack
🇭🇺 kranem	2026-06-24 06:00:37 (13 hours ago)	Triggered Cloudflare WAF from CN. Action taken: BLOCK ASN: 4837 (CHINA UNICOM China169 Backbone) Pro ... show more Triggered Cloudflare WAF from CN. Action taken: BLOCK ASN: 4837 (CHINA UNICOM China169 Backbone) Protocol: HTTP/1.1 (GET method) Endpoint: / Timestamp: 2026-06-24T03:58:56Z User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36 show less	Bad Web Bot
🇫🇷 Sklurk	2026-06-24 04:57:55 (14 hours ago)	Web App Attack	Web App Attack
🇮🇩 hermawan	2026-06-24 02:52:16 (16 hours ago)	1782269526.455224 119.249.100.176 103.166.156.58 65535_2-4-8-1-3_1436_7 2026-06-24 09:52:06 WIB ...	Email Spam Hacking
🇫🇷 Sklurk	2026-06-23 04:50:37 (1 day ago)	Web App Attack	Web App Attack
🇺🇸 fortypoundhead	2026-06-22 20:59:58 (1 day ago)	Banned IP Address	Hacking Web App Attack
Anonymous	2026-06-22 09:21:11 (2 days ago)	FortiWeb WAF: 32 attacks detected. Threat Score: 12800. Types: Client Management(16), GEO IP(16). Or ... show more FortiWeb WAF: 32 attacks detected. Threat Score: 12800. Types: Client Management(16), GEO IP(16). Origin: China. show less	Web App Attack
🇫🇷 Sklurk	2026-06-22 04:47:30 (2 days ago)	Web App Attack	Web App Attack
🇬🇷 setupgr	2026-06-21 23:22:19 (2 days ago)	(mod_security) mod_security (id:100011) triggered by 119.249.100.176 (CN/China/Hebei/Shijiazhuang/-/ ... show more (mod_security) mod_security (id:100011) triggered by 119.249.100.176 (CN/China/Hebei/Shijiazhuang/-/[AS4837 CHINA169-BACKBONE CHINA UNICOM China169 Backbone]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Mon Jun 22 02:22:17.789365 2026] [security2:error] [pid 1258419:tid 1301075] [remote 119.249.100.176:50123] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(www\\\\.)?ftiaxtomonosou\\\\.gr" at SERVER_NAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "54"] [id "100011"] [msg "CSF-TRIGGER: Country Block CN/SG for ftiaxtomonosou.gr"] [hostname "ftiaxtomonosou.gr"] [uri "/%CE%BA%CE%BF%CF%85%CE%BA%CE%AD%CF%84%CE%B5%CF%82/%CE%BD%CE%AC%CE%BE%CE%BF%CF%82/"] [unique_id "ajhyKWS6uqGD_es3_d2ZegAA1hk"] show less	Port Scan
🇨🇦 1gz	2026-06-21 07:11:23 (3 days ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /kerko.php UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 Sklurk	2026-06-21 04:45:47 (3 days ago)	Web App Attack	Web App Attack
🇬🇷 setupgr	2026-06-21 00:10:24 (3 days ago)	(mod_security) mod_security (id:100011) triggered by 119.249.100.176 (CN/China/Hebei/Shijiazhuang/-/ ... show more (mod_security) mod_security (id:100011) triggered by 119.249.100.176 (CN/China/Hebei/Shijiazhuang/-/[AS4837 CHINA169-BACKBONE CHINA UNICOM China169 Backbone]): 1 in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: [Sun Jun 21 03:10:21.965467 2026] [security2:error] [pid 785068:tid 785070] [remote 119.249.100.176:53013] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(www\\\\.)?ftiaxtomonosou\\\\.gr" at SERVER_NAME. [file "/etc/apache2/conf.d/modsec/modsec2.user.conf"] [line "54"] [id "100011"] [msg "CSF-TRIGGER: Country Block CN/SG for ftiaxtomonosou.gr"] [hostname "ftiaxtomonosou.gr"] [uri "/%CF%84%CE%B1_%CE%B5%CE%AF%CE%B4%CE%B7_%CF%84%CE%BF%CF%85_%CE%BE%CF%8D%CE%BB%CE%BF%CF%85/%CE%B4%CE%B5%CF%83%CF%80%CE%BF%CF%84%CE%AC%CE%BA%CE%B9-%CE%B9%CE%B1%CF%80%CF%89%CE%BD%CE%AF%CE%B1%CF%82/"] [unique_id "ajcr7RGXBK2iHtemAo8AyQABCQE"] show less	Port Scan
🇺🇸 fortypoundhead	2026-06-20 18:30:05 (4 days ago)	Banned IP Address	Hacking Web App Attack

Showing 1 to 15 of 606 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 176.65.132.218

🇮🇳 172.253.222.220

🇮🇳 92.4.76.12

🇳🇱 81.19.216.113

🇳🇱 45.148.10.152

🇫🇷 45.90.160.236

🇧🇪 34.76.250.220

🇺🇸 209.141.46.157

🇦🇷 179.61.10.156

🇺🇸 107.180.88.176

🇳🇱 51.15.98.45

🇸🇬 47.236.198.105

🇿🇦 41.13.13.97

🇨🇳 39.79.10.121

🇨🇳 27.18.58.221

🇺🇸 147.185.132.39

🇮🇳 122.168.123.73

🇭🇰 103.243.24.124

🇷🇴 92.118.39.71

🇬🇧 64.137.53.28