JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.156.130.118

43.156.130.118 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 33%: ?

33%

ISP	Asia Pacific Network Information Center, Pty. Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	apnic.net
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.156.130.118

Whois 43.156.130.118

IP Abuse Reports for 43.156.130.118:

This IP address has been reported a total of 18 times from 6 distinct sources. 43.156.130.118 was first reported on June 9th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-10 11:56:11 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 07:56:04.198142 2026] [security2:error] [pid 1883:tid 1883] [client 43.156.130.118:41380] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.kofcasamblea442.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.kofcasamblea442.org"] [uri "/"] [unique_id "ailQ1HKS0R2w6PTkp6-bMgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 cityhunter_rhone	2026-06-10 11:55:01 (1 week ago)	Mercurius trap auto report \| source=TRAP_403/TRAP_404 \| last_seen=2026-06-10 13:51:50 \| hits_403=0 \| ... show more Mercurius trap auto report \| source=TRAP_403/TRAP_404 \| last_seen=2026-06-10 13:51:50 \| hits_403=0 \| hits_404=1 \| ip=43.156.130.118 \| sample_uri=/www. show less	Port Scan Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 06:55:12 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 02:55:07.836174 2026] [security2:error] [pid 1541:tid 1541] [client 43.156.130.118:53446] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.flugstad.net\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.flugstad.net"] [uri "/lks/"] [unique_id "aikKS_zxke9Gw60dCcKB1AAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-10 06:35:09 (1 week ago)	Illegitimate and/or suspicious requests.	Hacking
🇺🇸 TPI-Abuse	2026-06-10 02:20:17 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 22:20:13.030808 2026] [security2:error] [pid 16661:tid 16661] [client 43.156.130.118:33470] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|lonasytoldosdelatorre.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "lonasytoldosdelatorre.com"] [uri "/"] [unique_id "aijJ3QQKoyY_-Tfcb_xtngAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 01:53:23 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 21:53:16.021835 2026] [security2:error] [pid 24142:tid 24142] [client 43.156.130.118:58952] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|hker.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "hker.org"] [uri "/"] [unique_id "aijDjHcbgkbBdm14DCMf-gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 13:03:34 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 09:03:31.042508 2026] [security2:error] [pid 16573:tid 16573] [client 43.156.130.118:47264] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.brandintellectgh.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.brandintellectgh.com"] [uri "/"] [unique_id "aigPIynonqca1ZdpynVhDAAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 12:43:56 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:43:50.729618 2026] [security2:error] [pid 8616:tid 8616] [client 43.156.130.118:39706] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|csme-eprr.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "csme-eprr.com"] [uri "/"] [unique_id "aigKhhvjdzfmOVDJEJwrDgAAAAc"], referer: http://www.csme-eprr.info show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 12:16:52 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:16:45.068558 2026] [security2:error] [pid 17166:tid 17181] [client 43.156.130.118:45354] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|nopictures.productions\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "nopictures.productions"] [uri "/"] [unique_id "aigELUPBymP8rG2JOekkVwAAAQw"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 dispensight	2026-06-09 11:57:16 (1 week ago)	Automated web scanner: 1 GET request to help.dispensight.cloud. Paths: /. UA: Mozilla/5.0 (iPhone; C ... show more Automated web scanner: 1 GET request to help.dispensight.cloud. Paths: /. UA: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1. Shenzhen Tencent Computer Systems Company Limited (Singapore, Singapore). show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-09 11:49:01 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:48:55.252551 2026] [security2:error] [pid 30636:tid 30636] [client 43.156.130.118:38112] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.fundingworkingcapital.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.fundingworkingcapital.com"] [uri "/"] [unique_id "aif9p1LsW_6PvT4D2ea4sQAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 11:30:53 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:30:48.548088 2026] [security2:error] [pid 22346:tid 22346] [client 43.156.130.118:32798] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.lightningbug.farm\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.lightningbug.farm"] [uri "/"] [unique_id "aif5aBPzXBE8rdlt1PjXMQAAACE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Starburst SysOp Team	2026-06-09 11:20:22 (1 week ago)	Multiple/Conflicting Connection Header Data Found. Pattern match "\\\\b(?:keep-alive\|close),\\\\s?(? ... show more Multiple/Conflicting Connection Header Data Found. Pattern match "\\\\b(?:keep-alive\|close),\\\\s?(?:keep-alive\|close)\\\\b" at REQUEST_HEADERS:Connection. (920210-mnz6-1) show less	Hacking
🇺🇸 TPI-Abuse	2026-06-09 11:14:04 (1 week ago)	(mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210350) triggered by 43.156.130.118 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:14:01.567668 2026] [security2:error] [pid 19468:tid 19468] [client 43.156.130.118:56072] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|ricketyshack.ca\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "ricketyshack.ca"] [uri "/"] [unique_id "aif1eaFVNLZWRCatZL7rYAAAAAc"], referer: http://www.ricketyshack.org show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 Lezetho	2026-06-09 11:00:55 (1 week ago)	DDoS, WebSpam, Web Attack, and Brute-force blocked by Cloudflare	DDoS Attack Email Spam Hacking Brute-Force

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.223

🇵🇱 57.128.237.218

🇨🇦 20.220.166.196

🇬🇧 217.146.80.122

🇹🇷 188.59.182.213

🇲🇽 187.191.48.4

🇷🇺 178.251.140.3

🇵🇰 154.57.216.142

🇨🇳 115.190.255.67

🇺🇸 34.231.77.232

🇺🇸 13.222.11.123

🇬🇧 2a06:4880:a000::c4

🇺🇸 178.128.150.239

🇳🇱 176.65.139.233

🇩🇪 164.92.161.148

🇺🇸 147.185.132.106

🇨🇦 144.217.161.208

🇰🇷 112.217.188.122

🇳🇱 91.92.40.204

🇩🇪 69.5.169.82