JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 39.149.14.165

39.149.14.165 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 15%: ?

15%

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS24445
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Zhengzhou, Henan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 39.149.14.165

Whois 39.149.14.165

IP Abuse Reports for 39.149.14.165:

This IP address has been reported a total of 4 times from 3 distinct sources. 39.149.14.165 was first reported on January 4th 2022, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-16 02:04:10 (2 days ago)	(mod_security) mod_security (id:210831) triggered by 39.149.14.165 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 39.149.14.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 22:04:04.431101 2026] [security2:error] [pid 8769:tid 8769] [client 39.149.14.165:63644] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.ww-bbs.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.ww-bbs.com"] [uri "/"] [unique_id "ajCvFG32MSnZ1G3kOD2R9gAAAAQ"], referer: http://www.ww-bbs.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 4server	2026-06-10 22:38:58 (1 week ago)	[ThuJun1100:38:47.8106622026][security2:error][pid1030673:tid1030803][client39.149.14.165:0]ModSecur ... show more [ThuJun1100:38:47.8106622026][security2:error][pid1030673:tid1030803][client39.149.14.165:0]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof\"rx$http://bsalsa\\\\\\\\.com\\|\^site24x7$\"against\"REQUEST_HEADERS:User-Agent\"required.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"282\"][id\"330094\"][rev\"5\"][msg\"Atomicorp.comWAFRules:CompromisedUser-AgentAgentAttackblocked\"][severity\"CRITICAL\"][hostname\"federicorella.ch\"][uri\"/\"][unique_id\"ainnd6xxZESwTNGWncHF4AAAARM\"]\,referer:http://federicorella.ch/ show less	Port Scan Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-01-27 20:52:14 (4 months ago)	(mod_security) mod_security (id:210831) triggered by 39.149.14.165 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210831) triggered by 39.149.14.165 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 27 15:52:06.164419 2026] [security2:error] [pid 1907808:tid 1907818] [client 39.149.14.165:25167] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|uoexpanse.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "uoexpanse.com"] [uri "/"] [unique_id "aXkldiWp0O7mkN6ST5ZN2wAAAAg"], referer: https://uoexpanse.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇿🇦 IrisFlower	2022-01-04 09:33:57 (4 years ago)	Unauthorized connection attempt detected from IP address 39.149.14.165 to port 443 [J]	Port Scan Hacking

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.232.176.7

🇰🇷 222.97.195.179

🇺🇸 194.195.208.25

🇩🇪 144.76.68.124

🇰🇷 112.184.22.125

🇺🇸 66.132.186.207

🇮🇩 36.64.68.99

🇷🇺 213.33.204.130

🇬🇧 195.96.139.55

🇺🇸 172.173.67.22

🇺🇸 162.216.150.16

🇻🇳 124.158.10.21

🇹🇭 118.193.56.246

🇱🇹 91.224.92.82

🇧🇷 20.226.2.115

🇳🇱 2a02:a462:f666:0:2943:4b88:2279:4b46

🇺🇸 195.184.76.16

🇳🇱 176.65.139.56

🇰🇷 175.201.203.181

🇺🇸 150.107.38.240