JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 119.249.100.44

119.249.100.44 was found in our database!

This IP was reported 561 times. Confidence of Abuse is 100%: ?

100%

ISP	China Unicom Heibei Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Luancheng, Hebei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 119.249.100.44

Whois 119.249.100.44

IP Abuse Reports for 119.249.100.44:

This IP address has been reported a total of 561 times from 67 distinct sources. 119.249.100.44 was first reported on October 1st 2025, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 hbrks	2026-01-06 22:03:44 (4 months ago)	1 attack(s) detected, such as these: {"event":"web_block","ip":"119.249.100.44","host":"adm.mdb.dev. ... show more 1 attack(s) detected, such as these: {"event":"web_block","ip":"119.249.100.44","host":"adm.mdb.dev.marche-be.com","request":"GET / HTTP/1.1","user_agent":"Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36","reason":"service:unknow","timestamp":"2026-01-06T22:03:44 00:00","logentry":"adm.mdb.dev.marche-be.com 119.249.100.44 - - [06/Jan/2026:22:03:44 0000] GET / HTTP/1.1 444 0 - Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36 - matched:service:unknow"} * Report Details : https://p4u.xyz/V8IVDMEM6GU/1 IP Details *: https://p4u.xyz/V8IVDMEM6GU/2 show less	Web Spam Hacking Bad Web Bot
Anonymous	2026-01-06 15:45:06 (4 months ago)	IP banned by Fail2Ban in jail nginx-abusive-ips	Brute-Force Bad Web Bot Web App Attack
🇫🇷 bigorre.org	2026-01-06 14:53:11 (4 months ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot
Anonymous	2026-01-06 10:11:40 (4 months ago)	FortiWeb WAF: 90 attacks detected. Threat Score: 14200. Types: Client Management(45), GEO IP(45). Or ... show more FortiWeb WAF: 90 attacks detected. Threat Score: 14200. Types: Client Management(45), GEO IP(45). Origin: China. show less	Web App Attack
🇩🇪 HandyTreff.de	2026-01-06 06:36:35 (4 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -48.405 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -48.405 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Saf show less	Bad Web Bot Web App Attack
🇮🇩 hermawan	2026-01-06 01:23:17 (4 months ago)	[Tue Jan 06 08:23:16.583711 2026] [security2:error] [pid 942749:tid 139701106136768] [client 119.249 ... show more [Tue Jan 06 08:23:16.583711 2026] [security2:error] [pid 942749:tid 139701106136768] [client 119.249.100.44:25459] ModSecurity: Access denied with code 403 (phase 1). Match of "ipMatch 103.166.156.58" against "REMOTE_ADDR" required. [file "/etc/modsecurity/coreruleset-4.20.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "413"] [id "440006"] [msg "Connection Close Header"] [data " Matched Data ARGS charset: - Matched Data TX.1: found within Content-Type multipart form Matched Data: close found within REMOTE_ADDR: 119.249.100.44 request_line = GET /index.php/profil/meteorologi/prakiraan-meteorologi/555557769-peringatan-dini-3-harian-jawa-timur-hari-kamis-sabtu-tanggal-2-4-januari-2020-update-dari-analisis-hari-kamis-2-januari-2020 HTTP/1.1 Request URI RAW = /index.php/profil/meteorologi/prakiraan-meteorologi/555557769-peringatan-dini-3-harian-jawa-timur-hari-kamis-sabtu-tanggal-..."] [hostname "staklim-malang.info"] [uri "/index.php/profil/meteorologi/prakiraan-meteorologi/555557 ... show less	Hacking Web App Attack
🇭🇳 unph	2026-01-05 22:47:36 (4 months ago)	Intento de acceso sospechoso en el login de WordPress	Brute-Force
🇫🇷 bigorre.org	2026-01-05 11:28:52 (4 months ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot
🇺🇸 fortypoundhead	2026-01-05 06:13:50 (4 months ago)	Banned IP Address	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-01-04 18:10:19 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 119.249.100.44 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 119.249.100.44 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jan 04 13:10:12.062548 2026] [security2:error] [pid 10657:tid 10657] [client 119.249.100.44:43016] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.becclesrestaurants.com\|F\|2"] [data ".html.old"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.becclesrestaurants.com"] [uri "/index.html.old"] [unique_id "aVqtBDdEFQRC-XJfTzAyQgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-01-04 10:28:03 (4 months ago)	Blocked by UFW (TCP on 80) Source port: 24093 TTL: 49 Packet length: 60 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 24093 TTL: 49 Packet length: 60 TOS: 0x00 This report (for 119.249.100.44) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
Anonymous	2026-01-04 10:13:18 (5 months ago)	FortiWeb WAF: 28 attacks detected. Threat Score: 7800. Types: Client Management(14), GEO IP(14). Ori ... show more FortiWeb WAF: 28 attacks detected. Threat Score: 7800. Types: Client Management(14), GEO IP(14). Origin: China. show less	Web App Attack
🇫🇷 bigorre.org	2026-01-04 02:41:04 (5 months ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot
🇺🇸 fortypoundhead	2026-01-02 21:32:30 (5 months ago)	Banned IP Address	Hacking Web App Attack
🇺🇸 nodepile	2026-01-02 20:34:42 (5 months ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/7-75w-led-headlight-for-jee ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/7-75w-led-headlight-for-jeep-6492.html ua='Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/48.0.2564.116 Safari/537.36') show less	Exploited Host Web App Attack

Showing 451 to 465 of 561 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 198.74.50.114

🇮🇳 182.78.70.98

🇲🇾 180.74.90.204

🇨🇴 152.200.181.42

🇮🇳 123.58.203.202

🇫🇷 51.75.141.245

🇮🇩 38.253.239.21

🇺🇸 159.89.157.152

🇮🇳 152.59.121.52

🇺🇸 150.107.38.234

🇵🇰 139.135.45.60

🇸🇾 89.43.133.103

🇺🇸 85.239.151.41

🇨🇳 60.223.110.133

🇷🇴 2.57.121.25

🇨🇱 186.10.86.130

🇨🇳 180.165.29.129

🇺🇸 109.105.210.78

🇺🇸 57.151.98.124

🇺🇸 47.251.7.228