JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 110.182.174.139

110.182.174.139 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 0%: ?

ISP	CHINANET SHANXI PROVINCE NETWORK
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	shanxitele.com
Country	🇨🇳 China
City	Linfen, Shanxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 110.182.174.139

Whois 110.182.174.139

IP Abuse Reports for 110.182.174.139:

This IP address has been reported a total of 18 times from 14 distinct sources. 110.182.174.139 was first reported on October 6th 2022, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-09-10 17:34:33 (9 months ago)	(mod_security) mod_security (id:210350) triggered by 110.182.174.139 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 110.182.174.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 10 13:34:26.341208 2025] [security2:error] [pid 4886:tid 4886] [client 110.182.174.139:25736] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.renju.net\|F\|4"] [data "close, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.renju.net"] [uri "/tournament/1913/game/70937"] [unique_id "aMG2og-VZvMfe67gRaNk-gAAABc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-09 17:38:54 (9 months ago)	(mod_security) mod_security (id:210350) triggered by 110.182.174.139 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 110.182.174.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 09 13:38:48.994435 2025] [security2:error] [pid 31661:tid 31661] [client 110.182.174.139:25522] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.renju.net\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.renju.net"] [uri "/tournament/2924/game/123587/"] [unique_id "aMBmKLbPG7HRfup-SOAQxwAAAA8"], referer: https://www.renju.net/tournament/2924/game/123587 show less	Brute-Force Bad Web Bot Web App Attack
🇨🇿 Countryman	2024-04-27 06:39:44 (2 years ago)	repeated unauthorized connection attempts, host sweep, port 23	Hacking Brute-Force
🇺🇸 RAP	2024-04-27 04:22:58 (2 years ago)	2024-04-27 04:22:58 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 sumnone	2024-04-26 21:15:56 (2 years ago)	Port probing on unauthorized port 23	Port Scan Hacking Exploited Host
🇳🇱 EGP Abuse Dept	2024-04-26 06:24:40 (2 years ago)	Unauthorized connection to Telnet port 23	Port Scan Hacking
🇫🇷 security.rdmc.fr	2024-04-25 14:56:05 (2 years ago)	Port Scan Attack proto:TCP src:17988 dst:23	Port Scan
🇨🇳 ThreatBook.io	2023-05-26 00:24:48 (3 years ago)	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/110.182.174.139 ... show more ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/110.182.174.139 2023-05-25 22:51:23 ["enable","system","shell","sh","cat /proc/mounts; /bin/busybox FWWNK"] show less	SSH
🇿🇦 IrisFlower	2023-05-24 22:49:15 (3 years ago)	Unauthorized connection attempt detected from IP address 110.182.174.139 to port 23 [J]	Port Scan Hacking
🇨🇦 Largnet SOC	2022-10-08 03:07:44 (3 years ago)	110.182.174.139 triggered Icarus honeypot on port 23. Check us out on github.	Port Scan Hacking
🇵🇱 ChillScanner	2022-10-07 23:39:25 (3 years ago)	1 probe(s) @ TCP(23)	Port Scan
🇺🇸 MPL	2022-10-07 16:05:11 (3 years ago)	tcp/23	Port Scan
🇵🇱 kolya	2022-10-07 08:31:54 (3 years ago)	[07/10/2022 12:31:54] Unauthorized connection attempt to port 23, server 2252f372.	Port Scan
🇩🇪 KPS	2022-10-07 03:55:53 (3 years ago)	PortscanM	Port Scan
🇺🇸 MPL	2022-10-07 03:19:12 (3 years ago)	tcp/23	Port Scan

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇺 202.123.26.150

🇲🇽 187.191.48.24

🇱🇰 123.231.126.223

🇷🇸 77.105.37.219

🇳🇱 34.7.155.1

🇨🇳 14.103.112.110

🇺🇸 216.218.206.113

🇹🇼 212.115.54.84

🇰🇷 211.45.163.178

🇭🇳 181.115.7.203

🇺🇸 165.154.173.97

🇺🇸 162.216.149.192

🇮🇳 122.187.229.220

🇺🇸 65.49.1.207

🇳🇱 34.12.190.154

🇺🇸 3.145.0.81

🇺🇸 2604:a940:301:225:0:1c::

🇹🇼 192.178.36.152

🇺🇸 162.216.150.54

🇩🇪 151.243.11.35