JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 140.143.193.41

140.143.193.41 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 14%: ?

14%

ISP	Tencent cloud computing (Beijing) Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45090
Domain Name	tencentcloud.com
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 140.143.193.41

Whois 140.143.193.41

IP Abuse Reports for 140.143.193.41:

This IP address has been reported a total of 13 times from 2 distinct sources. 140.143.193.41 was first reported on May 17th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-19 06:33:27 (6 days ago)	(mod_security) mod_security (id:218420) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:218420) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 02:33:20.817227 2026] [security2:error] [pid 9564:tid 9564] [client 140.143.193.41:51142] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i)php://(std(in\|out\|err)\|(in\|out)put\|fd\|memory\|temp\|filter)" at ARGS_NAMES:\\xadd allow_url_include=1 \\xadd auto_prepend_file=php://input. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/21_PHP_PHPGen.conf"] [line "22"] [id "218420"] [rev "2"] [msg "COMODO WAF: PHP Injection Attack: I/O Stream Found\|\|www.cyclingboardgames.net\|F\|2"] [data "Matched Data: php://input found within ARGS_NAMES:\\x5cxadd allow_url_include=1 \\x5cxadd auto_prepend_file=php://input: \\xadd allow_url_include=1 \\xadd auto_prepend_file=php://input"] [severity "CRITICAL"] [tag "CWAF"] [tag "PHPGen"] [hostname "www.cyclingboardgames.net"] [uri "/php-cgi/php-cgi.exe"] [unique_id "ajTisC9L7DKSgIkZt7hC0gAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 14:02:03 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 10:01:57.448762 2026] [security2:error] [pid 25324:tid 25324] [client 140.143.193.41:50414] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.21north.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.21north.com"] [uri "/index.php"] [unique_id "aigc1ZkAjbDqLnhxer6UIQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 05:08:12 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 01:08:04.652129 2026] [security2:error] [pid 7218:tid 7218] [client 140.143.193.41:36452] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.ixd.net\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.ixd.net"] [uri "/index.php"] [unique_id "aieftEWHWN9gfH-sOI0snQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 01:52:19 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 21:52:12.603438 2026] [security2:error] [pid 4873:tid 4873] [client 140.143.193.41:45362] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|puckerbikini.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "puckerbikini.com"] [uri "/index.php"] [unique_id "aidxzNfOp4F8XzyBGUsQLgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 22:15:05 (2 weeks ago)	(mod_security) mod_security (id:218420) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:218420) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 18:14:55.224516 2026] [security2:error] [pid 12114:tid 12114] [client 140.143.193.41:50280] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?i)php://(std(in\|out\|err)\|(in\|out)put\|fd\|memory\|temp\|filter)" at ARGS_NAMES:\\xadd allow_url_include=1 \\xadd auto_prepend_file=php://input. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/21_PHP_PHPGen.conf"] [line "22"] [id "218420"] [rev "2"] [msg "COMODO WAF: PHP Injection Attack: I/O Stream Found\|\|mathsquad.com\|F\|2"] [data "Matched Data: php://input found within ARGS_NAMES:\\x5cxadd allow_url_include=1 \\x5cxadd auto_prepend_file=php://input: \\xadd allow_url_include=1 \\xadd auto_prepend_file=php://input"] [severity "CRITICAL"] [tag "CWAF"] [tag "PHPGen"] [hostname "mathsquad.com"] [uri "/php-cgi/php-cgi.exe"] [unique_id "aic-35fWkLt7PlNvSrNBDAAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 16:20:56 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 12:20:51.664749 2026] [security2:error] [pid 7440:tid 7440] [client 140.143.193.41:47300] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|thesmithcouple.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "thesmithcouple.com"] [uri "/php-cgi/php-cgi.exe"] [unique_id "aibr429oLvHI8vapJ3WEwwAAAG4"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇪 RoboSOC	2026-06-08 15:15:54 (2 weeks ago)	PHP CGI Argument Injection Vulnerability, PTR: PTR record not found	Hacking
🇺🇸 TPI-Abuse	2026-06-08 14:52:03 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 10:51:58.258510 2026] [security2:error] [pid 7276:tid 7279] [client 140.143.193.41:56082] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|pamper.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "pamper.com"] [uri "/php-cgi/php-cgi.exe"] [unique_id "aibXDoxdjp2NQDXFnbmOvwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 13:30:53 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 09:30:50.327597 2026] [security2:error] [pid 22785:tid 22785] [client 140.143.193.41:33644] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|jspd.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "jspd.com"] [uri "/php-cgi/php.exe"] [unique_id "aibECltKtNOBth1V6kdKagAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 13:11:39 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 09:11:34.359277 2026] [security2:error] [pid 30038:tid 30038] [client 140.143.193.41:38960] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|intermixx.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "intermixx.com"] [uri "/cgi-bin/php.exe"] [unique_id "aia_hvb1TeHIPRTxls8jkAAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-08 12:18:19 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 08 08:18:13.631905 2026] [security2:error] [pid 25192:tid 25192] [client 140.143.193.41:34106] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|geckoturner.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "geckoturner.com"] [uri "/cgi-bin/php-cgi.exe"] [unique_id "aiazBXuNGWvZBz3GXRCkGgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 13:14:19 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 09:14:13.331492 2026] [security2:error] [pid 17722:tid 17722] [client 140.143.193.41:45356] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.beachhousebooks.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.beachhousebooks.com"] [uri "/php-cgi/php.exe"] [unique_id "ahBWpa5aswGWnNOa16qligAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-17 13:51:35 (1 month ago)	(mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 140.143.193.41 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 17 09:51:28.232494 2026] [security2:error] [pid 9626:tid 9626] [client 140.143.193.41:37516] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.backstore.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.backstore.com"] [uri "/cgi-bin/php.exe"] [unique_id "agnH4B3HUfJdgWjZ_fYQbAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇹 172.213.18.15

🇺🇸 186.179.61.164

🇯🇵 172.105.218.179

🇩🇪 164.92.161.148

🇫🇮 147.185.133.71

🇫🇮 147.185.133.21

🇺🇸 109.105.210.55

🇸🇬 101.127.101.225

🇱🇹 45.227.254.170

🇨🇦 45.56.218.235

🇸🇬 43.156.239.194

🇦🇺 40.82.214.8

🇬🇧 35.203.211.209

🇻🇳 27.79.47.240

🇺🇸 3.142.170.60

🇺🇸 216.131.73.5

🇳🇱 192.42.116.95

🇺🇸 162.216.149.88

🇺🇸 162.216.149.75

🇻🇳 123.27.40.208