JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 123.149.74.209

123.149.74.209 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 4%: ?

ISP	CHINANET henan province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	hntele.com
Country	🇨🇳 China
City	Zhengzhou, Henan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 123.149.74.209

Whois 123.149.74.209

IP Abuse Reports for 123.149.74.209:

This IP address has been reported a total of 4 times from 2 distinct sources. 123.149.74.209 was first reported on August 9th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-06 17:20:46 (1 day ago)	(mod_security) mod_security (id:210831) triggered by 123.149.74.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 123.149.74.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 13:20:41.217895 2026] [security2:error] [pid 14244:tid 14244] [client 123.149.74.209:51485] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|digitalcontraptionlabs.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "digitalcontraptionlabs.com"] [uri "/"] [unique_id "aiRW6dGNnMOMEw5spsCbbAAAAAE"], referer: http://digitalcontraptionlabs.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 21:14:31 (2 days ago)	(mod_security) mod_security (id:210831) triggered by 123.149.74.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 123.149.74.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 17:14:25.547006 2026] [security2:error] [pid 12584:tid 12584] [client 123.149.74.209:50915] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.bhgvh.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.bhgvh.com"] [uri "/"] [unique_id "aiM8MQqMegW-AEoZWm7o5QAAABY"], referer: http://www.bhgvh.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 20:55:42 (4 days ago)	(mod_security) mod_security (id:210831) triggered by 123.149.74.209 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 123.149.74.209 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 16:55:34.792093 2026] [security2:error] [pid 477:tid 477] [client 123.149.74.209:51942] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.oldmaninthepeanut.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.oldmaninthepeanut.com"] [uri "/"] [unique_id "aiCUxsSIivTgF5jSVgHDCwAAABA"], referer: http://www.oldmaninthepeanut.com show less	Brute-Force Bad Web Bot Web App Attack
🇿🇦 IrisFlower	2021-08-09 03:12:34 (4 years ago)	Unauthorized connection attempt detected from IP address 123.149.74.209 to port 443 [J]	Port Scan Hacking

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 199.45.155.65

🇬🇧 178.253.31.121

🇸🇬 178.128.100.248

🇮🇪 3.252.223.55

🇧🇷 189.56.0.19

🇫🇮 185.94.35.146

🇵🇪 179.63.5.82

🇺🇸 64.62.156.37

🇫🇷 62.171.168.158

🇧🇷 45.178.227.0

🇨🇳 39.78.253.137

🇩🇪 34.107.87.29

🇺🇸 207.241.173.205

🇨🇴 181.49.8.57

🇺🇸 152.32.183.236

🇨🇳 123.139.116.49

🇻🇳 113.177.131.75

🇮🇳 103.190.198.222

🇰🇿 37.208.46.130

🇧🇪 35.241.176.243