JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.159.56.139

43.159.56.139 was found in our database!

This IP was reported 9 times. Confidence of Abuse is 16%: ?

16%

ISP	Asia Pacific Network Information Center, Pty. Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	apnic.net
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.159.56.139

Whois 43.159.56.139

IP Abuse Reports for 43.159.56.139:

This IP address has been reported a total of 9 times from 2 distinct sources. 43.159.56.139 was first reported on June 9th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 soverin	2026-06-09 12:43:28 (1 day ago)	Network scan on port 80	Email Spam
🇺🇸 TPI-Abuse	2026-06-09 12:17:15 (1 day ago)	(mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 08:17:08.819542 2026] [security2:error] [pid 7730:tid 7730] [client 43.159.56.139:33430] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|dkdesign.click\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "dkdesign.click"] [uri "/"] [unique_id "aigERDg1biuOlRmc30rJ7wAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 11:56:22 (1 day ago)	(mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:56:18.466161 2026] [security2:error] [pid 16640:tid 16640] [client 43.159.56.139:51436] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|learningbyshipping.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "learningbyshipping.com"] [uri "/"] [unique_id "aif_Yh-Y-9Q0xg4BOecG7QAAABs"], referer: http://www.sinofsky.org show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 11:39:40 (1 day ago)	(mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:39:35.737980 2026] [security2:error] [pid 7786:tid 7786] [client 43.159.56.139:46172] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|periodpiano.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "periodpiano.org"] [uri "/"] [unique_id "aif7d6jz2yFj0r4dfcecYgAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 11:10:42 (1 day ago)	(mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 07:10:36.091653 2026] [security2:error] [pid 19043:tid 19043] [client 43.159.56.139:33712] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.f40ph.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.f40ph.org"] [uri "/"] [unique_id "aif0rCN-092O6EUYPaiBKQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 10:49:24 (1 day ago)	(mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:49:19.656843 2026] [security2:error] [pid 15710:tid 15710] [client 43.159.56.139:43194] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.bobfaw.com\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.bobfaw.com"] [uri "/faws/"] [unique_id "aifvr4h_jEx4w4WAjveKQwAAABg"], referer: http://www.thefaws.org show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 10:13:50 (1 day ago)	(mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 06:13:47.412735 2026] [security2:error] [pid 21373:tid 21373] [client 43.159.56.139:51448] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.emsahara.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.emsahara.org"] [uri "/"] [unique_id "aifnW9RGPQfCoyytNQkg8AAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 09:58:08 (1 day ago)	(mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 05:58:03.565068 2026] [security2:error] [pid 10037:tid 10037] [client 43.159.56.139:42866] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.adventiststoday.org\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.adventiststoday.org"] [uri "/"] [unique_id "aifjq-ICj4iMFe7hm-EUJAAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-09 09:41:01 (1 day ago)	(mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210350) triggered by 43.159.56.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 09 05:40:54.079816 2026] [security2:error] [pid 11438:tid 11438] [client 43.159.56.139:39798] ModSecurity: Access denied with code 403 (phase 2). Pattern match "\\\\b(close\|keep-alive),[\\\\t\\\\n\\\\r ]{0,1}(close\|keep-alive)\\\\b" at REQUEST_HEADERS:Connection. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "70"] [id "210350"] [rev "1"] [msg "COMODO WAF: Multiple/Conflicting Connection Header Data Found\|\|www.sangalgano.info\|F\|4"] [data "keep-alive, close"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.sangalgano.info"] [uri "/"] [unique_id "aiffpuB97ik0j10c7_g_lQAAACc"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 9 of 9 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 153.0.48.62

🇺🇸 44.223.116.180

🇸🇬 43.134.27.11

🇺🇸 195.184.76.142

🇺🇸 165.227.109.178

🇮🇩 160.25.237.138

🇫🇮 147.185.133.186

🇺🇸 104.243.35.45

🇨🇳 101.126.46.108

🇺🇸 20.64.105.250

🇯🇵 8.216.17.176

🇮🇷 2.180.110.145

🇹🇼 198.235.24.45

🇺🇸 192.3.127.40

🇨🇳 175.173.81.73

🇺🇸 162.216.149.70

🇳🇱 160.119.76.50

🇵🇰 153.117.14.15

🇩🇪 141.11.250.239

🇨🇳 119.29.119.117