JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.118.35.134

106.118.35.134 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 4%: ?

ISP	CHINANET hebei province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Shijiazhuang, Hebei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.118.35.134

Whois 106.118.35.134

IP Abuse Reports for 106.118.35.134:

This IP address has been reported a total of 4 times from 1 distinct source. 106.118.35.134 was first reported on June 12th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-22 19:44:57 (4 days ago)	(mod_security) mod_security (id:210831) triggered by 106.118.35.134 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 106.118.35.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 22 15:44:51.854767 2026] [security2:error] [pid 8716:tid 8730] [client 106.118.35.134:26217] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|trust-more.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "trust-more.com"] [uri "/"] [unique_id "ajmQs1Ws2jO1ejNS5WwSuQAAAIo"], referer: http://trust-more.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 21:54:41 (1 week ago)	(mod_security) mod_security (id:210831) triggered by 106.118.35.134 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 106.118.35.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 17:54:36.087728 2026] [security2:error] [pid 7791:tid 7791] [client 106.118.35.134:26346] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.hazeltrane.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.hazeltrane.com"] [uri "/"] [unique_id "ajMXnGxUc-Uje74OGM2-swAAAAc"], referer: http://www.hazeltrane.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 20:42:00 (1 week ago)	(mod_security) mod_security (id:210831) triggered by 106.118.35.134 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 106.118.35.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 16:41:55.417314 2026] [security2:error] [pid 11144:tid 11144] [client 106.118.35.134:27816] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:User-Agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|www.watonga.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "www.watonga.com"] [uri "/index.html"] [unique_id "ai8SE0SJ55LJWFbsWQnYRgAAABE"], referer: https://www.watonga.com/index.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 22:10:31 (2 weeks ago)	(mod_security) mod_security (id:210831) triggered by 106.118.35.134 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210831) triggered by 106.118.35.134 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 18:10:28.932702 2026] [security2:error] [pid 32128:tid 32128] [client 106.118.35.134:0] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i:(?:^(?:microsoft url\|user-Agent\|www\\\\.weblogs\\\\.com\|(?:jakart\|vi)a\|(google\|i{0,1}explorer{0,1}\\\\.exe\|(ms){0,1}ie( [0-9.]{1,}){0,1} {0,1}(compatible( browser){0,1}){0,1})$)\|\\\\bdatacha0s\\\\b\|; widows\|\\\\\\\\r\|a(?: href=\|d(?:sarobot\|vanced email extractor ..." at REQUEST_HEADERS:user-agent. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/03_Global_Agents.conf"] [line "29"] [id "210831"] [rev "2"] [msg "COMODO WAF: Rogue web site crawler\|\|rodrigoaldecoa.com\|F\|4"] [data "User-Agent"] [severity "WARNING"] [tag "CWAF"] [tag "Agents"] [hostname "rodrigoaldecoa.com"] [uri "/"] [unique_id "aiyD1LbWo-JOy2HGW5lWngAAABE"], referer: https://rodrigoaldecoa.com/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.182.169.203

🇨🇳 121.229.202.143

🇱🇹 45.227.254.170

🇧🇷 45.205.1.244

🇺🇸 44.128.196.138

🇮🇳 223.181.103.64

🇮🇩 154.18.255.9

🇺🇸 74.249.128.108

🇩🇪 64.89.163.83

🇺🇸 44.91.172.20

🇺🇸 20.163.15.172

🇰🇷 211.253.37.225

🇮🇳 182.78.86.62

🇺🇸 172.203.149.63

🇻🇳 157.66.26.151

🇺🇸 141.11.88.8

🇨🇳 115.56.65.84

🇺🇸 57.141.0.19

🇦🇷 45.238.106.188

🇳🇱 45.153.34.226