JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 101.47.20.220

101.47.20.220 was found in our database!

This IP was reported 84 times. Confidence of Abuse is 49%: ?

49%

ISP	BYTEPLUS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS150436
Domain Name	bytedance.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 101.47.20.220

Whois 101.47.20.220

IP Abuse Reports for 101.47.20.220:

This IP address has been reported a total of 84 times from 24 distinct sources. 101.47.20.220 was first reported on January 11th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Sklurk	2026-06-03 01:10:07 (1 day ago)	Web App Attack	Web App Attack
🇫🇷 Sklurk	2026-05-31 11:25:45 (3 days ago)	Web App Attack	Web App Attack
🇺🇸 stechusa	2026-05-27 16:15:10 (1 week ago)	[Askari] \| country=SG \| Behavior: Targeting specific pages, Outdated browser, Concurrent page load d ... show more [Askari] \| country=SG \| Behavior: Targeting specific pages, Outdated browser, Concurrent page load during attack, HTTP/1.1 over TLS show less	Bad Web Bot DDoS Attack
🇺🇸 stechusa	2026-05-27 16:15:10 (1 week ago)	ELEVATED_THREAT \| country=SG \| ASN=Byteplus Pte. Ltd. \| AbuseIPDB=65% \| 41 IPs targeting /brand/satc ... show more ELEVATED_THREAT \| country=SG \| ASN=Byteplus Pte. Ltd. \| AbuseIPDB=65% \| 41 IPs targeting /brand/satco-products-inc.html \| HTTP/1.1 over TLS (elevated=True) \| AbuseIPDB score: 65% (60 reports) show less	Bad Web Bot DDoS Attack
🇺🇸 stechusa	2026-05-22 23:38:39 (1 week ago)	[Askari] \| country=SG \| Behavior: HTTP/1.1 over TLS, Outdated browser	Bad Web Bot DDoS Attack
🇺🇸 stechusa	2026-05-22 23:38:38 (1 week ago)	ELEVATED_THREAT \| country=SG \| ASN=Byteplus Pte. Ltd. \| AbuseIPDB=65% \| form_key M3RiF7Sn... shared ... show more ELEVATED_THREAT \| country=SG \| ASN=Byteplus Pte. Ltd. \| AbuseIPDB=65% \| form_key M3RiF7Sn... shared by 2 IPs: 101.47.20.220, 150.5.130.215 \| HTTP/1.1 over TLS (elevated=True) \| GET to POST-only endpoint: /wishlist/index/add/product/24967/form_key/mEBaDUMDr8g0i5X8 (status=403) show less	Bad Web Bot DDoS Attack
🇨🇦 1gz	2026-05-18 05:07:00 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lifestyle/shba-hetim-policit-striptist-video/129095/kerko.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 stechusa	2026-05-17 21:43:24 (2 weeks ago)	[Askari] \| country=SG \| ASN=Byteplus Pte. Ltd. \| Behavior: HTTP/1.1 over TLS, Targeting specific pag ... show more [Askari] \| country=SG \| ASN=Byteplus Pte. Ltd. \| Behavior: HTTP/1.1 over TLS, Targeting specific pages, Outdated browser show less	Bad Web Bot DDoS Attack
🇺🇸 stechusa	2026-05-17 21:43:23 (2 weeks ago)	country=SG \| ASN=Byteplus Pte. Ltd. \| AbuseIPDB=65% \| form_key 4TZht7oO... shared by 2 IPs: 101.47.2 ... show more country=SG \| ASN=Byteplus Pte. Ltd. \| AbuseIPDB=65% \| form_key 4TZht7oO... shared by 2 IPs: 101.47.20.220, 163.7.14.179 \| 403 on protected endpoint: /catalog/product_compare/add/product/40005/uenc/aHR0cHM6Ly93d3cubGlnaHRpbmcybGln (method=GET, ModSec blocked) \| GET to POST-only endpoint: /wishlist/index/add/product/39929/form_key/4TZht7oOjmwNKSMu/ (status=403) show less	Bad Web Bot DDoS Attack
🇨🇦 1gz	2026-05-17 06:44:07 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lifestyle/menyrat-me-efektive-per-te-hequr-dyllin-e-tepert-pa-demtuar-veshet/476383/kerko.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇸🇬 mypatricks	2026-05-16 21:41:16 (2 weeks ago)	101.47.20.220 \| Port: 13893 \| DNS: 101.47.20.220 2026-05-17T05:41:15+08:00 Asia/Singapore \| FETCH Sp ... show more 101.47.20.220 \| Port: 13893 \| DNS: 101.47.20.220 2026-05-17T05:41:15+08:00 Asia/Singapore \| FETCH Sproofing Activity Detetced. \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.5112.81 Safari/537.36 HTTP/1.1 443 GET \| URL: /?8aeffabcadc8d9=266&1745800355 \| Ref: - \| Country: SG/Singapore/+08:00 IP City: Singapore 9fcd8ba15e1d3e2c-SIN/Singapore, Singapore 1 hits/0 secs Robots 2 show less	Brute-Force Web App Attack Blog Spam Web Spam Exploited Host
🇨🇦 1gz	2026-05-16 09:57:37 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/ofroi-50-mije-euro-garanci-ne-kembim-te-lirise-apeli-i-gjkko-le-ne-burg-ilir-meten/876714/ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2026-05-16 08:53:20 (2 weeks ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/une-dua-te-shtrihem-ti-do-diell-olta-debaton-me-kiaren-je-egoiste/476487/ UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 nodepile	2026-05-13 05:33:19 (3 weeks ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/static/version1775170088/fr ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/static/version1775170088/frontend/Smartwave/porto/en_US/js-translation.json ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36') show less	Web App Attack Exploited Host
🇫🇷 Sklurk	2026-05-13 05:17:25 (3 weeks ago)	Web App Attack	Web App Attack

Showing 1 to 15 of 84 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 106.75.16.140

🇨🇳 106.32.106.29

🇺🇸 68.220.171.40

🇰🇷 222.107.156.227

🇧🇷 205.210.31.239

🇬🇧 193.163.125.76

🇵🇭 136.158.29.11

🇸🇬 103.250.11.63

🇮🇩 103.157.63.19

🇷🇴 103.75.71.17

🇨🇳 101.126.14.37

🇺🇸 65.49.1.173

🇵🇭 49.146.37.163

🇦🇷 190.181.101.224

🇺🇸 188.215.125.52

🇮🇶 185.244.152.239

🇳🇱 160.119.76.43

🇺🇸 147.185.132.87

🇺🇸 138.0.240.206

🇰🇷 112.216.129.27