JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.154.2.4

43.154.2.4 was found in our database!

This IP was reported 81 times. Confidence of Abuse is 65%: ?

65%

ISP	Asia Pacific Network Information Center, Pty. Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	apnic.net
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.154.2.4

Whois 43.154.2.4

IP Abuse Reports for 43.154.2.4:

This IP address has been reported a total of 81 times from 27 distinct sources. 43.154.2.4 was first reported on September 19th 2025, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 1gz	2026-06-15 07:05:53 (5 hours ago)	Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /sport/agjenti-i-hysajt-e-konfirmohen-hysaj-ndiqet-nga-ekipe-angleze-dhe-gjermane/298349/ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-06-13 02:20:44 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from HK. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /uncategorized/kosove-shpend-ahmeti-paralajmeron-mund-te-humbim-50-mije-vende-pune-521354/21564/ UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇦🇺 paulshipley.com.au	2026-06-11 23:53:58 (3 days ago)	stkildashule.org.au:443 43.154.2.4 - - [12/Jun/2026:09:53:55 +1000] "GET /ip HTTP/1.1" 404 50422 "-" ... show more stkildashule.org.au:443 43.154.2.4 - - [12/Jun/2026:09:53:55 +1000] "GET /ip HTTP/1.1" 404 50422 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" ... show less	Web App Attack
🇫🇷 bigorre.org	2026-06-11 16:41:29 (3 days ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot
🇫🇮 YF	2026-06-09 11:00:52 (6 days ago)	WordPress content enumeration	Web App Attack
🇩🇪 Vegascosmetics	2026-06-08 22:36:41 (6 days ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated encoding. Vegas Security	DDoS Attack Hacking Bad Web Bot
🇨🇭 backslash	2026-06-06 09:12:00 (1 week ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇦🇺 paulshipley.com.au	2026-05-30 14:12:37 (2 weeks ago)	winesbydesign.com.au:443 43.154.2.4 - - [31/May/2026:00:12:32 +1000] "GET /ip HTTP/1.1" 404 100043 " ... show more winesbydesign.com.au:443 43.154.2.4 - - [31/May/2026:00:12:32 +1000] "GET /ip HTTP/1.1" 404 100043 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" ... show less	Web App Attack
🇳🇱 DrLex0	2026-05-30 02:26:19 (2 weeks ago)	BnL001: instant single request only to 1 page forbidden by robots.txt. Host is likely part of a botn ... show more BnL001: instant single request only to 1 page forbidden by robots.txt. Host is likely part of a botnet. show less	Bad Web Bot Exploited Host
🇦🇺 paulshipley.com.au	2026-05-28 19:54:27 (2 weeks ago)	valueaddedpromotions.com.au:443 43.154.2.4 - - [29/May/2026:05:54:21 +1000] "GET /ip HTTP/1.1" 404 1 ... show more valueaddedpromotions.com.au:443 43.154.2.4 - - [29/May/2026:05:54:21 +1000] "GET /ip HTTP/1.1" 404 101819 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" ... show less	Web App Attack
🇯🇵 Short-legs-Spider	2026-05-25 01:12:12 (3 weeks ago)	Test on existence -- [25/May/2026:10:12:12 +0900] "GET /ip HTTP/1.1" 403 76 "-" "Mozilla/5.0 (Maci ... show more Test on existence -- [25/May/2026:10:12:12 +0900] "GET /ip HTTP/1.1" 403 76 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" show less	Web App Attack
🇨🇿 ptlab	2026-05-17 02:45:36 (4 weeks ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
🇩🇪 Reinhard	2026-05-17 02:05:05 (4 weeks ago)	Unclassified dangerous activity detected.	Hacking
🇮🇹 sssrit	2026-05-16 22:07:42 (4 weeks ago)	43.154.2.4 - - [17/May/2026:00:07:41 +0200] "GET /ip HTTP/1.1" 404 43057 "-" "Mozilla/5.0 (Macintosh ... show more 43.154.2.4 - - [17/May/2026:00:07:41 +0200] "GET /ip HTTP/1.1" 404 43057 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36" ... show less	Web App Attack
🇺🇸 johnkarlhill	2026-05-16 07:58:28 (4 weeks ago)	WebKnight blocked malicious web request on johnkarlhill.com	Brute-Force SSH

Showing 1 to 15 of 81 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 163.172.143.147

🇬🇧 159.65.91.36

🇧🇩 103.86.198.253

🇺🇸 70.123.20.99

🇳🇱 20.160.86.7

🇱🇧 217.150.82.136

🇬🇧 193.32.209.235

🇺🇸 192.178.118.219

🇧🇷 177.39.120.200

🇻🇳 160.25.81.6

🇳🇱 136.144.214.138

🇷🇴 80.94.92.206

🇷🇸 77.105.37.219

🇺🇸 34.24.63.147

🇧🇷 2804:b34:303a:7001:6428:20ab:58e2:10e2

🇧🇷 200.153.86.250

🇩🇪 167.94.146.42

🇫🇷 163.172.60.23

🇩🇪 138.249.233.67

🇨🇳 120.133.60.156