JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.172.196.141

43.172.196.141 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 45%: ?

45%

ISP	ACEVILLE PTE.LTD.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	tencent.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.172.196.141

Whois 43.172.196.141

IP Abuse Reports for 43.172.196.141:

This IP address has been reported a total of 21 times from 11 distinct sources. 43.172.196.141 was first reported on April 10th 2026, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 el-brujo	2026-06-20 23:57:05 (20 hours ago)	Cloudflare WAF: Request Path: /programacion-cc Request Query: ?action=.xml;type=rss2;PHPSESSID=57j8t ... show more Cloudflare WAF: Request Path: /programacion-cc Request Query: ?action=.xml;type=rss2;PHPSESSID=57j8tm3f438rga2p8jvq71700u Host: forum.elhacker.net userAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 Action: managed_challenge Source: firewallCustom ASN Description: Tencent Building, Kejizhongyi Avenue Country: SG Method: GET Timestamp: 2026-06-20T23:57:05Z ruleId: 770fb332273f47628e1c012f2ac4e3d3. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 fortypoundhead	2026-06-18 03:26:35 (3 days ago)	Banned IP Address	Hacking Web App Attack
🇺🇸 kosada.com	2026-06-16 22:42:11 (4 days ago)	Web bot: denial-of-service flood	DDoS Attack Bad Web Bot
🇦🇺 MAGIC	2026-06-11 01:04:10 (1 week ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 fortypoundhead	2026-06-10 11:14:33 (1 week ago)	Banned IP Address	Hacking Web App Attack
🇨🇦 1gz	2026-06-06 08:38:14 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-json/oembed/1.0/embed UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-06-05 02:25:33 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-06-04 04:15:36 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: CHALLENGE Protocol: HTTP/1.1 (GET m ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: CHALLENGE Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-06-02 13:40:02 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-json/wp/v2/posts/189705 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/110.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇦🇺 FireGuard Server	2026-05-24 20:11:25 (4 weeks ago)	Blocked by OPNsense firewall; 40 hits, proto=tcp, ports=443	Port Scan Hacking
🇺🇸 kosada.com	2026-05-20 14:41:43 (1 month ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇨🇦 1gz	2026-05-20 00:15:34 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/donald-trump-tregon-pse-nuk-ka-konsumuar-kurre-alkool-nje-mesim-nga-vellai-im/827807 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/112.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-05-14 03:45:42 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/besim-sherifi UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.3 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇮 inlink.ltd	2026-05-14 03:25:01 (1 month ago)	WAF PoW failure, possible botnet behavior, IP mismatch, POST request made by 43.172.196.141 was not ... show more WAF PoW failure, possible botnet behavior, IP mismatch, POST request made by 43.172.196.141 was not IP who made PoW GET request earlier show less	DDoS Attack Exploited Host
🇺🇸 TPI-Abuse	2026-05-14 02:36:15 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 43.172.196.141 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 43.172.196.141 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 22:36:07.431674 2026] [security2:error] [pid 5362:tid 5362] [client 43.172.196.141:58966] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.batw.net\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.batw.net"] [uri "/borzois.com"] [unique_id "agU1F8BI9H9S-4cHxkXdowAAACE"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:f8b0:4001:c18::12b

🇺🇸 2607:f8b0:4001:c17::121

🇩🇪 178.105.200.202

🇧🇷 177.10.203.106

🇳🇱 176.65.148.242

🇳🇱 176.65.139.234

🇩🇪 155.117.127.214

🇺🇸 138.199.43.103

🇺🇸 100.25.120.246

🇺🇸 91.193.232.250

🇨🇦 85.217.149.44

🇷🇴 80.94.92.171

🇳🇱 45.148.10.118

🇿🇼 41.173.236.119

🇺🇸 34.67.87.198

🇳🇱 34.6.93.130

🇺🇸 20.169.107.109

🇮🇹 5.89.75.194

🇩🇪 213.209.159.238

🇳🇱 188.166.73.173