JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.173.173.139

43.173.173.139 was found in our database!

This IP was reported 77 times. Confidence of Abuse is 54%: ?

54%

ISP	ACEVILLE PTE.LTD.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	tencent.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.173.173.139

Whois 43.173.173.139

IP Abuse Reports for 43.173.173.139:

This IP address has been reported a total of 77 times from 22 distinct sources. 43.173.173.139 was first reported on October 25th 2025, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 kosada.com	2026-06-16 19:19:11 (5 days ago)	Web bot: denial-of-service flood	DDoS Attack Bad Web Bot
🇨🇦 1gz	2026-06-09 12:08:47 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/sot-dita-me-e-nxehte-rrezik-maksimal-per-zjarre-ne-te-gjithe-vendin/811273/ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 cyfordtechnologies.com	2026-06-09 10:15:51 (1 week ago)	High-abuse ASN prefix: 43.173. : Reported by Cyford API	Web App Attack
🇩🇪 Vegascosmetics	2026-06-08 23:11:57 (1 week ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after obfuscated encoding. Vegas Security	DDoS Attack Hacking Bad Web Bot
🇩🇪 Reinhard	2026-06-08 22:19:30 (1 week ago)	Unknown activity, but too many attacks with too many users.	Hacking
🇨🇦 1gz	2026-06-03 07:20:36 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-json/oembed/1.0/embed UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/111.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 fortypoundhead	2026-06-01 13:56:23 (2 weeks ago)	Banned IP Address	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-05-31 16:17:32 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 43.173.173.139 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210730) triggered by 43.173.173.139 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 31 12:17:26.087480 2026] [security2:error] [pid 27840:tid 27840] [client 43.173.173.139:43626] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|civilwarzone.com\|F\|2"] [data ".dll"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "civilwarzone.com"] [uri "/~site/Scripts_ExternalRedirect/ExternalRedirect.dll"] [unique_id "ahxfFhpuW24dO71Zr1jY4wAAAAM"], referer: http://civilwarzone.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 ChamberofCommerce.com	2026-05-30 17:59:58 (3 weeks ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
🇺🇸 nodepile	2026-05-30 17:13:54 (3 weeks ago)	Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/static/version1775170088/frontend/ ... show more Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/static/version1775170088/frontend/Smartwave/porto/en_US/Magento_Ui/templates/modal/modal-slide.html ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36') show less	Open Proxy VPN IP
🇦🇺 FireGuard Server	2026-05-24 20:11:44 (4 weeks ago)	Blocked by OPNsense firewall; 40 hits, proto=tcp, ports=443	Port Scan Hacking
🇦🇺 MAGIC	2026-05-21 00:10:27 (1 month ago)	VM5 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 nodepile	2026-05-20 09:16:18 (1 month ago)	Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/static/version1775170088/frontend/ ... show more Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/static/version1775170088/frontend/Smartwave/porto/en_US/Magento_Ui/templates/modal/modal-custom.html ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.3') show less	Open Proxy VPN IP
🇫🇷 Sklurk	2026-05-20 05:14:10 (1 month ago)	Web App Attack	Web App Attack
🇺🇸 kosada.com	2026-05-19 07:47:02 (1 month ago)	Web bot: DDoS	DDoS Attack Bad Web Bot

Showing 1 to 15 of 77 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇼 198.235.24.125

🇺🇸 172.253.194.152

🇭🇰 156.234.7.27

🇺🇸 149.28.52.241

🇺🇸 147.182.137.165

🇫🇷 91.231.89.221

🇺🇸 91.230.168.115

🇺🇸 72.240.125.133

🇺🇸 50.116.72.11

🇷🇼 41.186.188.100

🇸🇳 41.82.50.218

🇻🇳 183.91.11.36

🇵🇾 143.202.209.172

🇷🇺 109.173.39.103

🇳🇬 102.205.44.31

🇱🇹 81.30.98.142

🇱🇹 81.30.98.49

🇳🇱 45.148.10.151

🇳🇱 45.148.10.147

🇭🇰 8.218.192.176