JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.172.196.54

43.172.196.54 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 22%: ?

22%

ISP	ACEVILLE PTE.LTD.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	tencent.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.172.196.54

Whois 43.172.196.54

IP Abuse Reports for 43.172.196.54:

This IP address has been reported a total of 26 times from 9 distinct sources. 43.172.196.54 was first reported on March 26th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 fortypoundhead	2026-06-12 07:49:33 (3 days ago)	Banned IP Address	Hacking Web App Attack
🇨🇦 1gz	2026-06-12 06:18:31 (3 days ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.5249.119 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-06-06 09:34:37 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/pensionet-do-indeksohen-25-vendimi-hyn-sot-ne-fuqi-ja-kategorite-qe-perfitojne/826541 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-06-06 01:45:03 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-json/oembed/1.0/embed UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.5249.119 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇯🇵 Aaaa Bbbb	2026-06-05 10:04:33 (1 week ago)		DNS Compromise DNS Poisoning Fraud Orders DDoS Attack FTP Brute-Force Ping of Death Phishing Fraud VoIP Open Proxy Web Spam Email Spam Blog Spam VPN IP Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇨🇦 1gz	2026-06-05 05:55:31 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-json/oembed/1.0/embed UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.3 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-06-02 23:38:01 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lifestyle/horoskopi-27-maj-2026-cfare-kane-rezervuar-yjet-per-ju-sot/881963 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-06-01 13:53:38 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/selin-bollati-ndan-nje-moment-te-vecante-me-gimbon-nga-pushimet/883056 UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.3 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-05-01 20:11:49 (1 month ago)		Web App Attack
🇷🇴 INTEQ	2026-04-13 23:10:27 (2 months ago)	Web attack from 43.172.196.54	Web App Attack
🇺🇸 TPI-Abuse	2026-04-09 02:30:43 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 43.172.196.54 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 43.172.196.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Apr 08 22:30:37.977091 2026] [security2:error] [pid 3499343:tid 3499343] [client 43.172.196.54:36080] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|lertap5.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "lertap5.com"] [uri "/HTMLHelp/Lrtp59HTML/spss.com"] [unique_id "adcPTWLFM2WuKYmsonjDQwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 1gz	2026-04-09 00:24:12 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/asakra-e-don-boskos/ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇭 4server	2026-04-07 00:54:01 (2 months ago)	[TueApr0702:53:55.9883742026][security2:error][pid2182719:tid2182728][client43.172.196.54:0]ModSecur ... show more [TueApr0702:53:55.9883742026][security2:error][pid2182719:tid2182728][client43.172.196.54:0]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\(\?i\)\(10\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|192\\\\\\\\.168\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|172\\\\\\\\.\(1[6-9]\\|2[0-9]\\|3[0-1]\)\\\\\\\\.\\\\\\\\d{1\,3}\\\\\\\\.\\\\\\\\d{1\,3}\\|fe80::\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"24\"][id\"990004\"][msg\"SSRFattempttoprivate/internalnetworkdetected\"][hostname\"whatsdecor.ch\"][uri\"/prodotto/sacco-doni-juta-25th-december-50x70-cm/\"][unique_id\"adRVo3t3hqXZMYI7wMk8nQAAAMY\"] show less	Hacking Web App Attack
🇷🇴 INTEQ	2026-04-06 22:39:56 (2 months ago)	Web attack from 43.172.196.54	Web App Attack
🇨🇦 1gz	2026-04-03 00:06:04 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/grabitje-ksamil UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.5112.81 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2604:a880:400:d1:0:4:9623:3001

🇹🇼 198.235.24.67

🇹🇼 198.235.24.40

🇳🇱 167.99.209.17

🇩🇪 159.89.101.171

🇫🇮 147.185.133.35

🇫🇷 51.68.34.131

🇳🇱 45.156.87.166

🇨🇦 24.67.8.88

🇨🇦 167.99.184.146

🇺🇸 162.144.250.188

🇮🇩 143.20.49.38

🇧🇩 103.31.154.247

🇷🇴 80.94.92.184

🇧🇬 45.137.79.27

🇺🇸 20.150.193.32

🇬🇧 2.223.104.25

🇺🇸 2604:a880:400:d1:0:4:9626:3001

🇩🇪 207.154.216.114

🇺🇸 206.221.176.60