JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.172.196.247

43.172.196.247 was found in our database!

This IP was reported 31 times. Confidence of Abuse is 45%: ?

45%

ISP	ACEVILLE PTE.LTD.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	tencent.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.172.196.247

Whois 43.172.196.247

IP Abuse Reports for 43.172.196.247:

This IP address has been reported a total of 31 times from 15 distinct sources. 43.172.196.247 was first reported on April 11th 2026, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 nodepile	2026-06-26 23:30:11 (15 hours ago)	Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/static/version1775170088/frontend/ ... show more Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/static/version1775170088/frontend/Smartwave/porto/en_US/Magento_Ui/templates/tooltip/tooltip.html ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36') show less	Open Proxy VPN IP
🇺🇦 URAN Publishing Service	2026-06-26 23:15:57 (15 hours ago)	DDoS Attack	DDoS Attack Bad Web Bot
🇫🇷 Sklurk	2026-06-26 22:40:28 (16 hours ago)	Web App Attack	Web App Attack
Anonymous	2026-06-15 04:34:32 (1 week ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 nodepile	2026-06-14 08:45:28 (1 week ago)	Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/static/version1775170088/frontend/ ... show more Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/static/version1775170088/frontend/Smartwave/porto/en_US/Magento_Ui/templates/modal/modal-custom.html ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36') show less	Open Proxy VPN IP
🇯🇵 Aaaa Bbbb	2026-06-05 11:15:53 (3 weeks ago)		DNS Compromise DNS Poisoning Fraud Orders DDoS Attack FTP Brute-Force Ping of Death Phishing Fraud VoIP Open Proxy Web Spam Email Spam Blog Spam VPN IP Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇨🇦 1gz	2026-05-21 09:31:05 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /sport/probleme-me-zemren-edlir-tetova-i-nenshtrohet-nderhyrjes-kirurgjikale/841558 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 kosada.com	2026-05-20 10:21:51 (1 month ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇫🇷 bigorre.org	2026-05-19 10:22:18 (1 month ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot
🇨🇦 1gz	2026-05-16 05:43:41 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/pas-lirimit-nga-paraburgimi-reagon-per-here-te-pare-gjesti-kam-bo-gabim/866310 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.5249.119 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-05-15 05:30:33 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-05-14 04:33:38 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-json/wp/v2/posts/66180 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-13 16:18:42 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 43.172.196.247 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 43.172.196.247 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 12:18:33.818500 2026] [security2:error] [pid 29115:tid 29115] [client 43.172.196.247:53928] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|civilwarzone.com\|F\|2"] [data ".dll"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "civilwarzone.com"] [uri "/~site/Scripts_ExternalRedirect/ExternalRedirect.dll"] [unique_id "agSkWfv0NZif-PJxW44IFQAAAAM"], referer: http://civilwarzone.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 1gz	2026-05-13 07:40:34 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/kerkesa-e-spak-per-arrestimin-e-belinda-ballukut-ish-deputeti-i-ps-se-petro-koci-situate-e-veshtire-per-partine-tone-duhet-te-kishte-dhene-doreheqjen/844914 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 bigorre.org	2026-05-13 03:42:22 (1 month ago)	Unidentified crawling: not a self-announced bot in user-agent	Bad Web Bot

Showing 1 to 15 of 31 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 2404:c0:9603:987b:31ec:5174:f2af:31e3

🇰🇷 222.110.147.58

🇬🇧 217.146.80.121

🇨🇳 120.79.220.105

🇹🇯 95.142.82.76

🇷🇴 89.33.239.221

🇺🇸 66.132.172.236

🇩🇪 64.226.126.224

🇩🇪 63.179.96.64

🇮🇳 43.204.110.170

🇩🇪 31.76.29.219

🇯🇵 13.231.177.238

🇦🇺 13.211.29.12

🇺🇸 3.215.16.71

🇦🇺 3.106.200.152

🇺🇸 135.237.124.6

🇺🇸 132.148.142.253

🇨🇳 118.80.62.7

🇨🇳 117.132.194.242

🇱🇻 81.30.98.49