JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 183.87.99.252

183.87.99.252 was found in our database!

This IP was reported 11 times. Confidence of Abuse is 22%: ?

22%

ISP	Huawei-Cloud-HK
Usage Type	Data Center/Web Hosting/Transit
ASN	AS136907
Domain Name	huawei.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 183.87.99.252

Whois 183.87.99.252

IP Abuse Reports for 183.87.99.252:

This IP address has been reported a total of 11 times from 4 distinct sources. 183.87.99.252 was first reported on April 4th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 netmagnet	2026-06-07 09:14:33 (1 week ago)	Automated HTTP request flood (1567 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= que ... show more Automated HTTP request flood (1567 requests in ~10 min) to lovecpokladu.cz using spam ?backlink= query params; bad web bot / web app attack from Huawei Cloud HK. show less	Web Spam Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-03 01:16:54 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 02 21:16:50.533021 2026] [security2:error] [pid 15619:tid 15619] [client 183.87.99.252:55454] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|dogarttoday.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "dogarttoday.com"] [uri "/tag/chuck-rigg"] [unique_id "ah-AgivKVeAkic8j8mcGJwAAAAU"], referer: https://dogarttoday.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-01 19:16:16 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 01 15:16:08.226544 2026] [security2:error] [pid 19079:tid 19079] [client 183.87.99.252:33888] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.antiradares.net\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.antiradares.net"] [uri "/"] [unique_id "ah3aeLWnUc8n_D4izN0d6AAAACA"], referer: http://www.antiradares.net/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-29 09:19:04 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 29 05:18:58.099839 2026] [security2:error] [pid 23428:tid 23428] [client 183.87.99.252:22209] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|styxwamworld.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "styxwamworld.com"] [uri "/"] [unique_id "ahlaAhcT296ESY4dfbT0PwAAABI"], referer: https://styxwamworld.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-05-28 11:06:43 (2 weeks ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-22 23:44:26 (3 weeks ago)	(mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 19:44:21.099152 2026] [security2:error] [pid 17892:tid 17892] [client 183.87.99.252:34043] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|eileensharaga.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "eileensharaga.com"] [uri "/"] [unique_id "ahDqVb8M0PFvvvJK1dKoBAAAAAk"], referer: https://eileensharaga.net/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-19 01:00:06 (4 weeks ago)	\| [Dangerous/India] Aggressive IP 183.87.99.252 (~30 hits). Type: DoS Defender- Web server 400 error ... show more \| [Dangerous/India] Aggressive IP 183.87.99.252 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇺🇸 kosada.com	2026-05-17 23:43:15 (4 weeks ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-02 15:01:57 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 02 11:01:49.162501 2026] [security2:error] [pid 28569:tid 28585] [client 183.87.99.252:57195] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|dulemba.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "dulemba.com"] [uri "/2009/04/pete-cat-on-ponce.html"] [unique_id "afYR3bFNSzZLbxV5do5jxQAAAU4"], referer: http://dulemba.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-22 00:49:52 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 21 20:49:47.159267 2026] [security2:error] [pid 20845:tid 20845] [client 183.87.99.252:59133] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.schunagroup.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.schunagroup.com"] [uri "/"] [unique_id "aegbK5wL45Rerw4dnaBYjQAAAAA"], referer: http://www.schunagroup.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-04 13:20:05 (2 months ago)	(mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 183.87.99.252 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 04 09:19:58.306809 2026] [security2:error] [pid 29987:tid 29987] [client 183.87.99.252:47189] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|spacebooger.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "spacebooger.com"] [uri "/"] [unique_id "adEP_gXXjRLEW_auQPUQHQAAAAU"], referer: http://demsgoodreadin.blogspot.com show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 11 of 11 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 217.181.86.77

🇬🇧 193.163.125.113

🇨🇱 181.173.250.235

🇨🇦 172.253.91.20

🇺🇸 170.231.251.184

🇷🇴 141.98.83.240

🇨🇳 139.224.132.41

🇦🇺 134.199.175.245

🇭🇰 83.229.121.2

🇨🇦 82.38.154.32

🇸🇦 77.240.87.244

🇺🇸 34.209.85.109

🇺🇸 18.223.123.224

🇺🇸 13.89.125.22

🇺🇸 2607:f8b0:4001:c61::125

🇧🇾 194.158.201.82

🇮🇳 182.95.185.30

🇭🇰 168.76.131.178

🇨🇳 120.220.250.167

🇨🇳 119.98.79.125