JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 143.20.97.118

143.20.97.118 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 50%: ?

50%

ISP	Internet Utilities Europe and Asia Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS214481
Domain Name	netutils.io
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 143.20.97.118

Whois 143.20.97.118

IP Abuse Reports for 143.20.97.118:

This IP address has been reported a total of 33 times from 10 distinct sources. 143.20.97.118 was first reported on June 4th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇪 webbie	2026-06-06 23:18:39 (1 week ago)	143.20.97.118 - - [07/Jun/2026:01:18:37 +0200] "GET /secrets.json HTTP/1.1" 404 4779 "-" "Mozilla/5. ... show more 143.20.97.118 - - [07/Jun/2026:01:18:37 +0200] "GET /secrets.json HTTP/1.1" 404 4779 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; GPTBot/1.2; +https://openai.com/gptbot" 143.20.97.118 - - [07/Jun/2026:01:18:37 +0200] "GET /.git/config HTTP/1.1" 404 4779 "-" "meta-externalagent/1.1 (+https://developers.facebook.com/docs/sharing/webmasters/crawler)" 143.20.97.118 - - [07/Jun/2026:01:18:37 +0200] "GET /application.yml HTTP/1.1" 404 4779 "-" "Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; Perplexity-User/1.0; +https://perplexity.ai/perplexity-user" 143.20.97.118 - - [07/Jun/2026:01:18:37 +0200] "GET /sitemap.xml HTTP/1.1" 404 403 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.0 Safari/605.1.15" 143.20.97.118 - - [07/Jun/2026:01:18:37 +0200] "GET /.aws/credentials HTTP/1.1" 404 4779 "-" "Mozilla/5.0 (compatible; Bytespider; [email protected])" ... show less	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 19:00:10 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 15:00:03.513772 2026] [security2:error] [pid 7769:tid 7769] [client 143.20.97.118:48574] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "d2d.aarce.me"] [uri "/.git/config"] [unique_id "aiRuMyVUvLFjGkinSLx4_AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-06 11:05:36 (1 week ago)	Blocked: Reason='Suspicious traffic score=90 (review-based detection)'; Requests=107	Hacking
🇺🇸 TPI-Abuse	2026-06-06 07:26:50 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 03:26:42.589758 2026] [security2:error] [pid 31560:tid 31566] [client 143.20.97.118:52894] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cynosurelandscapers.cynosureinternetservices.com"] [uri "/.git/config"] [unique_id "aiPLsjJZvuNQcSYaUq69ggAAAMQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 06:19:36 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 02:19:30.010873 2026] [security2:error] [pid 30343:tid 30343] [client 143.20.97.118:39726] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cxenterprise.com"] [uri "/.git/config"] [unique_id "aiO78hv3RCT8SCSZUlmTsQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 06:03:26 (1 week ago)	(mod_security) mod_security (id:949110) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:949110) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 02:03:20.028054 2026] [security2:error] [pid 25145:tid 25145] [client 143.20.97.118:33086] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "30"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.cwbaz.com.maricotippett.com"] [uri "/.git/config"] [unique_id "aiO4KMqTuRy8-MV_-AUWzgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 05:41:31 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 01:41:26.911200 2026] [security2:error] [pid 19638:tid 19638] [client 143.20.97.118:57220] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cuulco.stlouisdave.com"] [uri "/.git/config"] [unique_id "aiOzBtGKpxZWGmC3AUzxRAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 05:01:11 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 01:01:06.877213 2026] [security2:error] [pid 9865:tid 9865] [client 143.20.97.118:53180] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.customhumanrobots.internetnameregistration.com"] [uri "/.git/config"] [unique_id "aiOpksa0ZHLURmZlPYdtogAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇲🇽 octageeks.com	2026-06-06 04:13:09 (1 week ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 02:06:57 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 22:06:50.849941 2026] [security2:error] [pid 32173:tid 32173] [client 143.20.97.118:41968] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "grabnerconsulting.com"] [uri "/.git/config"] [unique_id "aiOAum3jqXVgNZot6Cb5_gAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Mundo Bueno	2026-06-06 01:53:46 (1 week ago)	[ISILIA Protection v2.1] Tentative d'accès: /.aws/credentials \| Pays: PL \| UA: Mozilla/5.0 AppleWebK ... show more [ISILIA Protection v2.1] Tentative d'accès: /.aws/credentials \| Pays: PL \| UA: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko); compatible; OAI-SearchBot/1.0; +https://openai.c show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 01:25:22 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 21:25:19.613717 2026] [security2:error] [pid 25529:tid 25529] [client 143.20.97.118:44940] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cspminc.com"] [uri "/.git/config"] [unique_id "aiN2_9hb6FLtZ7kIPzNDlgAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 23:39:41 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 19:39:36.500050 2026] [security2:error] [pid 21811:tid 21811] [client 143.20.97.118:50662] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.crushmycrave.ficklepassionproductions.com"] [uri "/.git/config"] [unique_id "aiNeOOFTPy1h3elJnmuVEQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 22:59:10 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 18:59:05.833693 2026] [security2:error] [pid 13216:tid 13216] [client 143.20.97.118:49146] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.crowleywoodworking.com"] [uri "/.git/config"] [unique_id "aiNUudSHtbmaoP5yvAhDXwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 20:28:15 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 143.20.97.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 05 16:28:07.413212 2026] [security2:error] [pid 18954:tid 18954] [client 143.20.97.118:34720] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.cristalsupermercado.gp.com.grupoporvenir.com"] [uri "/.git/config"] [unique_id "aiMxV5XMz9Ro12Moez1lGgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.157

🇨🇳 27.128.162.146

🇨🇳 218.94.108.146

🇧🇷 205.210.31.223

🇯🇵 203.25.124.71

🇹🇳 196.237.255.89

🇺🇸 172.86.116.98

🇺🇸 170.247.220.175

🇺🇸 170.246.54.21

🇺🇸 170.231.251.160

🇺🇸 104.232.79.58

🇭🇺 85.155.242.167

🇧🇬 78.128.114.110

🇬🇧 193.163.125.180

🇷🇺 188.143.232.131

🇳🇱 176.65.139.218

🇫🇮 147.185.133.25

🇺🇸 143.137.167.105

🇺🇸 143.137.166.90

🇺🇸 143.137.165.200