JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.225.109.66

43.225.109.66 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	ICORE TECHNOLOGY SDN BHD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132198
Hostname(s)	whm1004.newipdns.com
Domain Name	icore.com.my
Country	🇲🇾 Malaysia
City	Port Dickson, Negeri Sembilan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.225.109.66

Whois 43.225.109.66

IP Abuse Reports for 43.225.109.66:

This IP address has been reported a total of 8 times from 4 distinct sources. 43.225.109.66 was first reported on November 7th 2023, and the most recent report was 7 months ago.

Old Reports: The most recent abuse report for this IP address is from 7 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Carsten	2025-11-05 02:28:36 (7 months ago)	GET [?orderby=price-desc´]	Port Scan
🇩🇪 Carsten	2024-11-14 11:24:12 (1 year ago)	GET [public/adminer.php]	Port Scan
🇩🇪 ps-center	2024-11-13 23:30:06 (1 year ago)	C1: Web Attack GET /public/adminer.php	Web Spam Hacking Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-09-19 06:02:03 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 43.225.109.66 (whm1004.newipdns.com): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 43.225.109.66 (whm1004.newipdns.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 19 02:01:56.440211 2024] [security2:error] [pid 16599:tid 16599] [client 43.225.109.66:53356] [client 43.225.109.66] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.211"] [uri "/.env"] [unique_id "Zuu-VCmbRAui2cm8hXpqewAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-09-19 05:43:27 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 43.225.109.66 (whm1004.newipdns.com): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 43.225.109.66 (whm1004.newipdns.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 19 01:43:21.505479 2024] [security2:error] [pid 3624634:tid 3624634] [client 43.225.109.66:43014] [client 43.225.109.66] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.139"] [uri "/.env"] [unique_id "Zuu5-bnUIeJp2w5wFq4lLwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-09-17 22:08:52 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 43.225.109.66 (whm1004.newipdns.com): 1 in the ... show more (mod_security) mod_security (id:210492) triggered by 43.225.109.66 (whm1004.newipdns.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 17 18:08:47.759574 2024] [security2:error] [pid 9041:tid 9041] [client 43.225.109.66:57204] [client 43.225.109.66] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.168"] [uri "/.env"] [unique_id "Zun977vh-lrlietfDat8igAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 NxtGenIT	2023-11-22 07:29:45 (2 years ago)	43.225.109.66 has been observed attacking Port 123. Observed Threat: NTP Amplification REQ_MON_GETLI ... show more 43.225.109.66 has been observed attacking Port 123. Observed Threat: NTP Amplification REQ_MON_GETLIST Request Found show less	DDoS Attack
🇩🇪 NxtGenIT	2023-11-07 01:03:49 (2 years ago)	43.225.109.66 has been observerd attacking Port 123. Observed Threat: NTP Amplification REQ_MON_GETL ... show more 43.225.109.66 has been observerd attacking Port 123. Observed Threat: NTP Amplification REQ_MON_GETLIST Request Found show less	DDoS Attack

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 195.178.110.2

🇧🇷 181.218.9.86

🇺🇸 147.185.132.235

🇺🇸 130.185.239.222

🇺🇸 85.239.239.138

🇺🇸 45.42.88.54

🇬🇧 31.14.254.115

🇨🇱 186.79.208.89

🇮🇳 117.247.239.202

🇵🇰 103.134.74.255

🇷🇴 80.94.92.184

🇺🇸 40.76.116.33

🇦🇺 20.58.183.176

🇪🇸 196.196.150.5

🇳🇱 176.65.139.36

🇷🇴 130.195.240.8

🇨🇳 123.173.90.177

🇮🇹 93.66.87.54

🇫🇷 85.217.140.47

🇫🇷 85.93.90.90