JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.156.16.81

43.156.16.81 was found in our database!

This IP was reported 7 times. Confidence of Abuse is 5%: ?

ISP	Asia Pacific Network Information Center, Pty. Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	apnic.net
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.156.16.81

Whois 43.156.16.81

IP Abuse Reports for 43.156.16.81:

This IP address has been reported a total of 7 times from 1 distinct source. 43.156.16.81 was first reported on June 10th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-13 06:19:43 (1 day ago)	(mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 02:19:36.740131 2026] [security2:error] [pid 21868:tid 21868] [client 43.156.16.81:48434] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.superzilla.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.superzilla.com"] [uri "/"] [unique_id "aiz2eNi2xS4jcPvQIeinOwAAAAc"], referer: http://superzilla.net show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 09:13:44 (2 days ago)	(mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 05:13:37.731564 2026] [security2:error] [pid 22539:tid 22539] [client 43.156.16.81:51474] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.salsontap.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.salsontap.com"] [uri "/"] [unique_id "aivNwey-rlHmnchh2sJf5AAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 12:09:15 (4 days ago)	(mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 08:09:08.210018 2026] [security2:error] [pid 17628:tid 17628] [client 43.156.16.81:37210] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.hartflicker.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.hartflicker.com"] [uri "/"] [unique_id "ailT5JcwWZodeIo43Y2tjwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 06:59:27 (4 days ago)	(mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 02:59:22.299057 2026] [security2:error] [pid 19173:tid 19188] [client 43.156.16.81:53514] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|nesso.es\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "nesso.es"] [uri "/"] [unique_id "aikLSpDEm7Sa31vohXYuRAAAAQ0"], referer: http://nesso.es show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 05:40:14 (4 days ago)	(mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 01:40:11.454018 2026] [security2:error] [pid 16020:tid 16020] [client 43.156.16.81:57168] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.c470techarchive.net\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.c470techarchive.net"] [uri "/"] [unique_id "aij4u_E3TumXK6SONe3GbQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 02:25:46 (4 days ago)	(mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 22:25:42.295816 2026] [security2:error] [pid 5343:tid 5343] [client 43.156.16.81:53206] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|wethepeoplealliance.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "wethepeoplealliance.org"] [uri "/"] [unique_id "aijLJuAM5HkU6-b5kKa34wAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 02:08:32 (4 days ago)	(mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210350) triggered by 43.156.16.81 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 22:08:24.239960 2026] [security2:error] [pid 15287:tid 15287] [client 43.156.16.81:54254] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|lusineweb.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "lusineweb.com"] [uri "/"] [unique_id "aijHGDxrAESTHeiVBpgeogAAABo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 7 of 7 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.167.232.228

🇰🇷 211.37.174.62

🇨🇳 171.114.224.130

🇺🇸 159.223.118.175

🇨🇳 113.57.186.64

🇨🇳 43.248.108.64

🇳🇱 195.178.110.30

🇨🇳 175.30.48.10

🇭🇰 152.32.171.184

🇺🇸 130.131.161.76

🇨🇦 85.217.149.64

🇳🇱 64.227.68.5

🇺🇸 45.156.129.159

🇺🇸 45.55.185.228

🇧🇷 43.157.163.155

🇺🇸 34.134.61.111

🇩🇪 31.76.16.115

🇺🇸 5.183.254.204

🇩🇪 217.60.241.103

🇳🇱 176.65.139.247