JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 183.252.219.250

183.252.219.250 was found in our database!

This IP was reported 5 times. Confidence of Abuse is 16%: ?

16%

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS9808
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 183.252.219.250

Whois 183.252.219.250

IP Abuse Reports for 183.252.219.250:

This IP address has been reported a total of 5 times from 3 distinct sources. 183.252.219.250 was first reported on April 26th 2022, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-24 02:04:46 (22 hours ago)	(mod_security) mod_security (id:210831) triggered by 183.252.219.250 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210831) triggered by 183.252.219.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 23 22:04:41.439204 2026] [security2:error] [pid 10166:tid 10166] [client 183.252.219.250:10149] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.ruthmartin.org\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.ruthmartin.org"] [uri "/"] [unique_id "ajs7OZvfjBEBdwsIzoaxfQAAABU"], referer: http://www.ruthmartin.org/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-06-20 20:42:28 (4 days ago)	[SatJun2022:42:22.3794482026][security2:error][pid1645268:tid1645401][client183.252.219.250:0]ModSec ... show more [SatJun2022:42:22.3794482026][security2:error][pid1645268:tid1645401][client183.252.219.250:0]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof\"rx$http://bsalsa\\\\\\\\.com\\|\^site24x7$\"against\"REQUEST_HEADERS:user-agent\"required.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"282\"][id\"330094\"][rev\"5\"][msg\"Atomicorp.comWAFRules:CompromisedUser-AgentAgentAttackblocked\"][severity\"CRITICAL\"][hostname\"www.filarmonicaagno.ch\"][uri\"/\"][unique_id\"ajb7Luh6kCNqBmvayivBrwAAARc\"]\,referer:https://www.filarmonicaagno.ch/ show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-31 21:21:58 (3 weeks ago)	(mod_security) mod_security (id:210831) triggered by 183.252.219.250 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210831) triggered by 183.252.219.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 17:21:53.525540 2026] [security2:error] [pid 1704:tid 1704] [client 183.252.219.250:10233] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.fibroscopie.net\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.fibroscopie.net"] [uri "/"] [unique_id "ahymcdynrrqs2fPWgORC1AAAAAM"], referer: http://www.fibroscopie.net/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-30 19:16:45 (3 weeks ago)	(mod_security) mod_security (id:210831) triggered by 183.252.219.250 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210831) triggered by 183.252.219.250 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 30 15:16:39.296852 2026] [security2:error] [pid 7306:tid 7306] [client 183.252.219.250:9734] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|photoboothtogo.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "photoboothtogo.com"] [uri "/index.htm"] [unique_id "ahs3l-C0BgcG370HXLqMUwAAAAs"], referer: http://photoboothtogo.com/index.htm show less	Brute-Force Bad Web Bot Web App Attack
🇿🇦 IrisFlower	2022-04-26 01:19:49 (4 years ago)	Unauthorized connection attempt detected from IP address 183.252.219.250 to port 443 [J]	Port Scan Hacking

Showing 1 to 5 of 5 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 91.230.168.208

🇸🇬 194.5.82.47

🇪🇸 158.173.36.217

🇭🇰 123.58.210.86

🇧🇹 103.133.216.202

🇭🇰 101.36.109.176

🇳🇱 89.21.67.157

🇲🇦 81.192.46.29

🇷🇺 46.159.230.137

🇭🇰 46.8.78.131

🇱🇹 45.227.254.170

🇬🇧 45.146.10.113

🇨🇳 43.248.108.210

🇺🇸 20.106.196.4

🇨🇳 1.30.111.88

🇹🇷 195.33.200.58

🇪🇸 194.41.127.237

🇮🇶 185.244.153.19

🇧🇷 177.200.34.8

🇺🇸 173.255.223.149