JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 79.142.79.43

79.142.79.43 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 0%: ?

ISP	AltusHost Switzerland
Usage Type	Data Center/Web Hosting/Transit
ASN	AS51430
Domain Name	altushost.com
Country	🇨🇭 Switzerland
City	Zurich, Zurich

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 79.142.79.43

Whois 79.142.79.43

IP Abuse Reports for 79.142.79.43:

This IP address has been reported a total of 13 times from 11 distinct sources. 79.142.79.43 was first reported on March 28th 2024, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-17 18:08:01 (1 month ago)	Try to connect to Port_Scan_37444_stealth	Port Scan
🇺🇸 xmission.com	2026-04-01 04:59:42 (2 months ago)	Blocked by UFW (TCP on 51593) Source port: 24913 TTL: 51 Packet length: 60 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 51593) Source port: 24913 TTL: 51 Packet length: 60 TOS: 0x00 This report (for 79.142.79.43) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-03-10 11:28:48 (3 months ago)	Blocked by UFW (TCP on 9050) Source port: 38603 TTL: 52 Packet length: 60 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 9050) Source port: 38603 TTL: 52 Packet length: 60 TOS: 0x00 This report (for 79.142.79.43) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-01-27 05:00:06 (4 months ago)	BruteForce IMAP/POP3/SMTP	Brute-Force
🇺🇸 xmission.com	2025-07-14 08:00:31 (11 months ago)	Blocked by UFW (TCP on 40253) Source port: 41229 TTL: 52 Packet length: 60 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 40253) Source port: 41229 TTL: 52 Packet length: 60 TOS: 0x00 This report (for 79.142.79.43) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇮🇹 Progetto1	2025-04-26 14:22:02 (1 year ago)	Mail - Multiple failed login attempts	Brute-Force Exploited Host
🇩🇪 marzzzello	2025-04-18 03:16:19 (1 year ago)	Ports: 15x 35295	Port Scan
🇵🇱 sefinek.net	2025-02-04 18:10:06 (1 year ago)	Triggered Cloudflare WAF (firewallCustom) from CH. Action taken: MANAGED_CHALLENGE ASN: 51430 (ALTUS ... show more Triggered Cloudflare WAF (firewallCustom) from CH. Action taken: MANAGED_CHALLENGE ASN: 51430 (ALTUS) Protocol: HTTP/1.1 (GET method) Endpoint: / Timestamp: 2025-02-04T16:24:03Z Ray ID: 90cc023cbc8dbbff UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; Xbox; Xbox One) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36 Edge/44.18363.8131 Report generated by Cloudflare-WAF-To-AbuseIPDB: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 Denkena Consulting	2024-12-06 02:11:43 (1 year ago)	Dec 06 03:11:42 [postfix/smtpd] warning: unknown[79.142.79.43]: SASL LOGIN authentication failed: (r ... show more Dec 06 03:11:42 [postfix/smtpd] warning: unknown[79.142.79.43]: SASL LOGIN authentication failed: (reason unavailable), [email protected] Dec 06 03:11:42 [postfix/smtpd] disconnect from unknown[79.142.79.43] ehlo=1 auth=0/1 quit=1 commands=2/3 ... show less	Email Spam Brute-Force
Anonymous	2024-09-11 05:32:48 (1 year ago)	Aggressive web scan	Web App Attack
🇺🇸 TPI-Abuse	2024-08-13 22:57:17 (1 year ago)	(mod_security) mod_security (id:240950) triggered by 79.142.79.43 (ch-net.as51430.net): 1 in the las ... show more (mod_security) mod_security (id:240950) triggered by 79.142.79.43 (ch-net.as51430.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Aug 13 18:57:11.381655 2024] [security2:error] [pid 14877:tid 14877] [client 79.142.79.43:51055] [client 79.142.79.43] ModSecurity: Access denied with code 403 (phase 1). Pattern match "\\\\D" at TX:1. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "4530"] [id "240950"] [rev "2"] [msg "COMODO WAF: XSS & SQL injection vulnerability in Pragyan CMS 3.0 (CVE-2015-1471)\|\|www.nancyscafeandcatering.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "www.nancyscafeandcatering.com"] [uri "/wp-content/themes/eatery/nav.php"] [unique_id "Zrvkx0gZJcSNk5KMgnwiiQAAAAY"], referer: https://www.coweyepress.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-04-15 16:59:22 (2 years ago)	Credential Stuffing attacks against Microsoft 365	Brute-Force
Anonymous	2024-03-28 15:14:06 (2 years ago)	Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 144.172.92.197

🇭🇰 199.45.154.184

🇺🇦 188.163.113.186

🇳🇱 183.81.169.76

🇧🇷 177.215.134.250

🇧🇷 177.37.138.67

🇸🇪 171.25.158.82

🇹🇷 88.249.45.134

🇺🇸 195.184.76.207

🇬🇧 193.163.125.228

🇱🇻 185.113.139.84

🇧🇷 177.8.54.140

🇧🇼 168.167.228.74

🇧🇷 131.221.251.172

🇮🇩 103.54.169.251

🇺🇸 91.230.168.203

🇫🇮 86.54.25.235

🇩🇪 69.5.169.82

🇺🇸 2602:80d:1008::2e

🇺🇸 162.216.150.60