JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.128.110.35

47.128.110.35 was found in our database!

This IP was reported 237 times. Confidence of Abuse is 12%: ?

12%

ISP	Amazon Data Services Singapore
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-47-128-110-35.ap-southeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.128.110.35

Whois 47.128.110.35

IP Abuse Reports for 47.128.110.35:

This IP address has been reported a total of 237 times from 36 distinct sources. 47.128.110.35 was first reported on December 20th 2023, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-15 20:30:20 (15 hours ago)	(mod_security) mod_security (id:210730) triggered by 47.128.110.35 (ec2-47-128-110-35.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.110.35 (ec2-47-128-110-35.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 16:30:16.856360 2026] [security2:error] [pid 22443:tid 22479] [client 47.128.110.35:37958] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|batonrougegazette.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "batonrougegazette.com"] [uri "/uncategorized/2023-college-football-week-4-predictions-best-bets-by-chris-the-bear-fallica/dragon-money01.com"] [unique_id "ajBg2MaUdgUzyNtwC20gUgAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-04-27 18:15:01 (1 month ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted] from 47.128.110.35 (SG/Si ... show more (apache-useragents) Failed apache-useragents trigger with match [redacted] from 47.128.110.35 (SG/Singapore/ec2-47-128-110-35.ap-southeast-1.compute.amazonaws.com) show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-11 20:26:26 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.110.35 (ec2-47-128-110-35.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.110.35 (ec2-47-128-110-35.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Apr 11 16:26:19.665529 2026] [security2:error] [pid 1102495:tid 1102518] [client 47.128.110.35:12872] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|batonrougegazette.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "batonrougegazette.com"] [uri "/uncategorized/2023-college-football-week-4-predictions-best-bets-by-chris-the-bear-fallica/dragon-money27.com"] [unique_id "adquawOCJ6RTHJ8cnW1gvAAAAZI"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-04-04 03:16:14 (2 months ago)	Brute force	Brute-Force
Anonymous	2026-04-02 04:17:45 (2 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-03-23 19:23:32 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.110.35 (ec2-47-128-110-35.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.110.35 (ec2-47-128-110-35.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 23 15:23:23.957143 2026] [security2:error] [pid 3851931:tid 3851931] [client 47.128.110.35:60574] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.vitess.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.vitess.com"] [uri "/2012/08/bonjour-brioche-taste-the-difference/www.vitess.com/granallenamentoseries.com"] [unique_id "acGTK8DQhhB0euihuZOlVAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 bigorre.org	2026-03-04 19:58:03 (3 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇫🇷 bigorre.org	2026-02-19 10:06:46 (3 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇨🇦 1gz	2026-02-11 03:31:27 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /lajme/bota/do-te-perfundoj-lufta-ne-ukraine-ne-qershor-zelensky-shba-po-nxit-nje-zgjedhje/857147/ UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected]) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-13 19:36:08 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.110.35 (ec2-47-128-110-35.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.110.35 (ec2-47-128-110-35.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 13 14:36:04.404372 2026] [security2:error] [pid 13560:tid 13560] [client 47.128.110.35:26232] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|stepiz62.com\|F\|2"] [data ".xsd"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "stepiz62.com"] [uri "/joty/resources/JotyResponse.xsd"] [unique_id "aWaepHlMREesOGREP9n2UwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-01-09 03:49:31 (5 months ago)	Brute force	Brute-Force
🇫🇷 bigorre.org	2026-01-05 16:36:24 (5 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇦🇺 MAGIC	2026-01-05 00:03:27 (5 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 fortypoundhead	2025-12-26 12:36:06 (5 months ago)	Banned IP Address	Hacking Web App Attack
🇨🇦 1gz	2025-12-15 04:51:57 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /lajme/marjus-xhafa/ UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected]) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 237 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 172.71.119.87

🇧🇬 78.128.113.22

🇮🇳 182.78.73.94

🇷🇺 178.178.194.123

🇺🇸 64.62.156.210

🇩🇪 49.12.185.204

🇧🇷 45.205.1.247

🇳🇱 45.148.10.147

🇸🇬 43.156.12.237

🇨🇳 36.137.131.9

🇺🇸 208.84.100.196

🇺🇸 207.46.13.155

🇯🇵 203.25.124.189

🇦🇷 181.28.101.14

🇺🇸 173.239.221.12

🇺🇸 172.234.218.22

🇬🇧 87.106.44.172

🇺🇸 66.132.186.243

🇫🇮 65.21.44.81

🇺🇸 47.251.59.83