JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.134.49.216

43.134.49.216 was found in our database!

This IP was reported 132 times. Confidence of Abuse is 44%: ?

44%

ISP	Asia Pacific Network Information Center, Pty. Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	apnic.net
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.134.49.216

Whois 43.134.49.216

IP Abuse Reports for 43.134.49.216:

This IP address has been reported a total of 132 times from 38 distinct sources. 43.134.49.216 was first reported on February 28th 2026, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 slartybartfast69420blazit	2026-06-23 20:31:56 (17 hours ago)	Fail2ban picked up 43.134.49.216 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-21 20:33:41 (2 days ago)	Fail2ban picked up 43.134.49.216 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-20 20:33:36 (3 days ago)	Fail2ban picked up 43.134.49.216 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-18 20:34:32 (5 days ago)	Fail2ban picked up 43.134.49.216 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-16 20:35:11 (1 week ago)	Fail2ban picked up 43.134.49.216 attacking nginx	Web App Attack
🇺🇸 TPI-Abuse	2026-06-16 08:13:09 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 04:13:04.125167 2026] [security2:error] [pid 18116:tid 18116] [client 43.134.49.216:36552] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.levijoneslegal.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.levijoneslegal.com"] [uri "/"] [unique_id "ajEFkDUPD-dS9gyf_LKUbgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-14 20:36:39 (1 week ago)	Fail2ban picked up 43.134.49.216 attacking nginx	Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-13 20:36:37 (1 week ago)	Fail2ban picked up 43.134.49.216 attacking nginx	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 06:26:18 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 02:26:10.403655 2026] [security2:error] [pid 8521:tid 8521] [client 43.134.49.216:45218] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.konstantiasofokleous.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.konstantiasofokleous.com"] [uri "/"] [unique_id "aiz4An_XbgqbrGTyhGmMZQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-11 20:38:53 (1 week ago)	Fail2ban picked up 43.134.49.216 attacking nginx	Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 11:52:06 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 07:51:58.064064 2026] [security2:error] [pid 23943:tid 23943] [client 43.134.49.216:47944] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.newisci.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.newisci.org"] [uri "/"] [unique_id "ailP3vHou9WxrFzY03d2lAAAAAw"], referer: http://www.newisci.org show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 05:33:19 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 01:33:14.884746 2026] [security2:error] [pid 6994:tid 6994] [client 43.134.49.216:57450] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|mariettacaseyclub.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "mariettacaseyclub.org"] [uri "/"] [unique_id "aij3Gi5Bs2FSuFt6aqMUQAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 02:28:32 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 22:28:27.066509 2026] [security2:error] [pid 20023:tid 20023] [client 43.134.49.216:35790] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|visionremota.info\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "visionremota.info"] [uri "/"] [unique_id "aijLy9gi467eqSpkkBHaZAAAABI"], referer: http://visionremota.info show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 02:07:01 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 22:06:57.310667 2026] [security2:error] [pid 11137:tid 11137] [client 43.134.49.216:54054] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.n3fjp.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.n3fjp.com"] [uri "/"] [unique_id "aijGwZRqavpE5VyqNCrZTAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 01:45:37 (2 weeks ago)	(mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.134.49.216 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 21:45:31.222501 2026] [security2:error] [pid 14852:tid 14852] [client 43.134.49.216:42984] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.bearbeds.email\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.bearbeds.email"] [uri "/"] [unique_id "aijBu8hU1qIGUn25p1t6IQAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 132 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 80.82.77.33

🇨🇴 201.184.50.251

🇧🇪 146.148.5.239

🇺🇸 107.150.103.88

🇺🇸 85.217.220.252

🇺🇸 69.49.112.62

🇯🇵 8.216.0.35

🇰🇷 220.79.226.163

🇫🇷 185.182.186.243

🇸🇬 162.158.170.152

🇨🇳 113.218.17.101

🇳🇱 91.92.40.5

🇳🇱 80.82.77.139

🇩🇪 69.5.169.26

🇺🇸 52.165.81.64

🇳🇴 51.13.121.117

🇲🇾 47.250.174.4

🇺🇸 43.135.174.146

🇺🇸 34.182.4.193

🇨🇱 216.155.93.75