JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 117.182.231.107

117.182.231.107 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 4%: ?

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS9808
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 117.182.231.107

Whois 117.182.231.107

IP Abuse Reports for 117.182.231.107:

This IP address has been reported a total of 7 times from 3 distinct sources. 117.182.231.107 was first reported on December 18th 2024, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 03:58:09 (5 days ago)	(mod_security) mod_security (id:210350) triggered by 117.182.231.107 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 117.182.231.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 23:57:54.954982 2026] [security2:error] [pid 1285:tid 1330] [client 117.182.231.107:10334] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|rockabyecotons.com\|F\|4"] [data "close, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "rockabyecotons.com"] [uri "/the-coton-de-tulear/coton-color/"] [unique_id "ai94QkefYcjENMBE-S2T8QAAAMY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-14 04:08:11 (6 days ago)	(mod_security) mod_security (id:210350) triggered by 117.182.231.107 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 117.182.231.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 00:07:59.433799 2026] [security2:error] [pid 28872:tid 28872] [client 117.182.231.107:10824] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.doctorc.net\|F\|4"] [data "close, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.doctorc.net"] [uri "/Labs/Lab14/Lab14.htm"] [unique_id "ai4pH3GqrPpMQR807oWRUwAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2025-09-24 12:22:57 (8 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-09-24 12:04:46 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 117.182.231.107 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 117.182.231.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Sep 24 08:04:38.886396 2025] [security2:error] [pid 31162:tid 31162] [client 117.182.231.107:5442] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.renju.net\|F\|4"] [data "close, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.renju.net"] [uri "/people/020238/game/88799/"] [unique_id "aNPeVlgh-ZcgQQ64Q6sJrQAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-09-23 14:43:07 (8 months ago)	(mod_security) mod_security (id:210350) triggered by 117.182.231.107 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210350) triggered by 117.182.231.107 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 23 10:42:52.588239 2025] [security2:error] [pid 25963:tid 25963] [client 117.182.231.107:14654] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.renju.net\|F\|4"] [data "close, keep-alive"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.renju.net"] [uri "/game/171932/"] [unique_id "aNKx7O82xccPOfSjLsJEjQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2025-09-03 15:26:00 (9 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
Anonymous	2024-12-18 19:37:09 (1 year ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.88.98.113

🇳🇱 85.11.167.7

🇺🇸 43.153.64.216

🇺🇸 34.11.33.223

🇺🇸 162.216.150.128

🇺🇸 162.216.149.246

🇧🇷 138.185.145.78

🇺🇸 47.251.82.209

🇦🇺 46.203.218.101

🇬🇧 35.203.211.173

🇺🇸 34.139.50.229

🇳🇱 160.119.76.58

🇴🇲 145.14.128.40

🇨🇳 123.56.67.74

🇨🇳 113.249.113.193

🇸🇪 90.230.168.26

🇺🇸 54.70.53.60

🇲🇽 158.23.88.242

🇲🇾 121.122.119.170

🇮🇳 111.235.68.106