JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.128.19.78

43.128.19.78 was found in our database!

This IP was reported 94 times. Confidence of Abuse is 0%: ?

ISP	Asia Pacific Network Information Center, Pty. Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	apnic.net
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.128.19.78

Whois 43.128.19.78

IP Abuse Reports for 43.128.19.78:

This IP address has been reported a total of 94 times from 29 distinct sources. 43.128.19.78 was first reported on June 25th 2024, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-03-17 23:54:58 (2 months ago)	Web App Attack	Web App Attack
🇺🇸 COMPLEX	2026-03-17 00:06:09 (2 months ago)	Unsolicited TCP traffic \| Action: DROP \| Port 80	Port Scan
🇺🇸 vdub144	2026-03-14 07:46:32 (2 months ago)	Automated report from Gross Automation security system. \| Attack type: ancient_browser \| Path: /manu ... show more Automated report from Gross Automation security system. \| Attack type: ancient_browser \| Path: /manufacturer/Hammond+Power \| UA: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36 \| Blocked by: nginx-bot-hell show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-14 04:13:02 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 43.128.19.78 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 43.128.19.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Mar 14 00:12:57.326689 2026] [security2:error] [pid 17930:tid 17930] [client 43.128.19.78:35702] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.fractalsky.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.fractalsky.com"] [uri "/blackhorrormovie.com"] [unique_id "abTgSU_VAVl-GaRnGu3XkgAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 HandyTreff.de	2026-03-10 20:50:41 (2 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -69.549 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -69.549 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 show less	Web App Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-03-09 09:09:36 (2 months ago)	(mod_security) mod_security (id:217210) triggered by 43.128.19.78 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:217210) triggered by 43.128.19.78 (-): 1 in the last 300 secs; Ports: ; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 09 05:09:27.724038 2026] [security2:error] [pid 18414:tid 18414] [client 43.128.19.78:48554] ModSecurity: Access denied with code 403 (phase 2). Match of "rx ^(?i:(?:[a-z]{3,10}\\\\s+(?:\\\\w{3,7}?://[\\\\w\\\\-\\\\./](?::\\\\d+)?)?/[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S])?\|connect (?:\\\\d{1,3}\\\\.){3}\\\\d{1,3}\\\\.?(?::\\\\d+)?\|options \\\\)\\\\s+[\\\\w\\\\./]+\|get /[^?#](?:\\\\?[^#\\\\s])?(?:#[\\\\S]*)?)$" against "REQUEST_LINE" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "114"] [id "217210"] [rev "1"] [msg "COMODO WAF: Invalid HTTP Request Line\|\|www.3dcounty.com\|F\|4"] [data "GET ?3DAINews.com HTTP/1.1"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.3dcounty.com"] [uri "/"] [unique_id "aa6ORzhmkuN4996G2Lz3jQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 vdub144	2026-03-08 16:14:25 (3 months ago)	Automated report from Gross Automation security system. \| Attack type: ancient_browser \| Path: /cont ... show more Automated report from Gross Automation security system. \| Attack type: ancient_browser \| Path: /contact \| UA: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36 \| Blocked by: nginx-bot-hell show less	Bad Web Bot
🇫🇷 Sklurk	2026-03-05 18:39:13 (3 months ago)	Web App Attack	Web App Attack
🇩🇪 ketovoila.pl	2026-03-05 14:20:50 (3 months ago)	ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=ketovoila.pl/; UA=Mozilla/5.0 (Windows ... show more ketovoila.pl HONEYPOT traffic: count=1, paths=1; sample_path=ketovoila.pl/; UA=Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36; window=2026-03-05T13:56:20Z..2026-03-05T13:56:20Z show less	Port Scan Hacking Brute-Force
🇫🇷 conseilgouz	2026-03-02 01:15:48 (3 months ago)	siw-Joomla User : try to access forms...	Hacking
🇺🇸 TPI-Abuse	2026-03-01 20:30:32 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 43.128.19.78 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 43.128.19.78 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 01 15:30:27.212942 2026] [security2:error] [pid 25186:tid 25186] [client 43.128.19.78:33436] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.azcrittergetter.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.azcrittergetter.com"] [uri "/csfitz.com"] [unique_id "aaSh44DJuuyAQ4Yjp3TFRwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 vdub144	2026-03-01 18:30:18 (3 months ago)	Automated report from Gross Automation security system. \| Attack type: ancient_browser \| Path: /manu ... show more Automated report from Gross Automation security system. \| Attack type: ancient_browser \| Path: /manufacturer/Macromatic \| UA: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.88 Safari/537.36 \| Blocked by: nginx-bot-hell show less	Bad Web Bot
Anonymous	2026-02-25 12:50:33 (3 months ago)	botnet	DDoS Attack
🇦🇺 MAGIC	2025-12-16 02:23:03 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇫🇷 Sklurk	2025-12-14 16:17:12 (5 months ago)	Web App Attack	Web App Attack

Showing 1 to 15 of 94 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.108.100.117

🇩🇪 213.209.159.56

🇲🇽 189.217.130.86

🇷🇺 188.92.241.148

🇨🇳 113.44.107.98

🇺🇸 103.228.226.201

🇳🇱 93.123.109.23

🇷🇺 81.27.243.242

🇳🇱 45.148.10.141

🇦🇺 1.41.39.3

🇧🇷 191.204.244.85

🇧🇷 187.12.48.70

🇹🇭 180.180.218.74

🇲🇦 105.156.59.133

🇳🇱 81.19.216.118

🇺🇸 74.114.29.209

🇭🇰 65.181.88.245

🇳🇱 45.128.199.40

🇻🇳 45.119.212.99

🇮🇳 36.255.6.209