JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 119.249.100.180

119.249.100.180 was found in our database!

This IP was reported 484 times. Confidence of Abuse is 96%: ?

96%

ISP	China Unicom Heibei Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Luancheng, Hebei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 119.249.100.180

Whois 119.249.100.180

IP Abuse Reports for 119.249.100.180:

This IP address has been reported a total of 484 times from 60 distinct sources. 119.249.100.180 was first reported on October 1st 2025, and the most recent report was 34 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 1gz	2026-06-04 14:00:44 (34 minutes ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /kerko.php UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 Sklurk	2026-06-04 03:42:26 (10 hours ago)	Web App Attack	Web App Attack
🇨🇦 1gz	2026-06-03 11:29:16 (1 day ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /bota/rusia-akuza-ndaj-shba/70420/ UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇪🇸 librebit	2026-06-03 10:30:34 (1 day ago)	Brute force	Brute-Force
Anonymous	2026-06-03 09:35:26 (1 day ago)	FortiWeb WAF: 26 attacks detected. Threat Score: 5200. Types: Client Management(13), GEO IP(13). Ori ... show more FortiWeb WAF: 26 attacks detected. Threat Score: 5200. Types: Client Management(13), GEO IP(13). Origin: China. show less	Web App Attack
🇫🇷 Sklurk	2026-06-03 03:41:41 (1 day ago)	Web App Attack	Web App Attack
🇨🇦 1gz	2026-06-03 00:24:10 (1 day ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /kerko.php UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 JuicyJ	2026-06-02 11:29:38 (2 days ago)	Trying to look for places to exploit	Web Spam
Anonymous	2026-06-02 08:00:02 (2 days ago)	WordPress vulnerability scanning and Lottery/prize scamming detected	Bad Web Bot Web App Attack
🇫🇷 Sklurk	2026-06-02 03:40:03 (2 days ago)	Web App Attack	Web App Attack
Anonymous	2026-06-01 09:30:48 (3 days ago)	FortiWeb WAF: 20 attacks detected. Threat Score: 6400. Types: Client Management(10), GEO IP(10). Ori ... show more FortiWeb WAF: 20 attacks detected. Threat Score: 6400. Types: Client Management(10), GEO IP(10). Origin: China. show less	Web App Attack
🇨🇦 1gz	2026-06-01 05:14:18 (3 days ago)	Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from CN. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /kerko.php UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 webgobe	2026-06-01 03:52:48 (3 days ago)	wew-Joomla User : try to access forms...	Hacking
🇺🇸 TPI-Abuse	2026-06-01 02:44:25 (3 days ago)	(mod_security) mod_security (id:210730) triggered by 119.249.100.180 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210730) triggered by 119.249.100.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 22:44:16.093282 2026] [security2:error] [pid 12707:tid 12714] [client 119.249.100.180:1096] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kettlehill.com\|F\|2"] [data ".php.bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kettlehill.com"] [uri "/404.php.bak"] [unique_id "ahzyAPr1zQOtbkd9viU0YAAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Sklurk	2026-06-01 02:20:46 (3 days ago)	Web App Attack	Web App Attack

Showing 1 to 15 of 484 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 176.65.132.129

🇸🇬 74.91.224.220

🇨🇳 14.20.73.26

🇰🇷 222.239.251.12

🇺🇸 172.236.96.130

🇺🇸 157.245.1.7

🇱🇧 80.83.29.73

🇨🇳 58.222.33.142

🇺🇸 47.251.158.218

🇸🇳 41.82.227.212

🇺🇦 195.60.175.119

🇷🇺 185.46.16.10

🇺🇸 172.110.223.143

🇲🇩 154.203.228.53

🇨🇳 116.7.248.50

🇨🇳 115.199.157.91

🇮🇳 103.216.145.2

🇷🇺 94.79.7.87

🇱🇧 80.83.29.157

🇺🇸 64.62.156.123