JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.128.123.241

47.128.123.241 was found in our database!

This IP was reported 223 times. Confidence of Abuse is 9%: ?

ISP	Amazon Data Services Singapore
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-47-128-123-241.ap-southeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.128.123.241

Whois 47.128.123.241

IP Abuse Reports for 47.128.123.241:

This IP address has been reported a total of 223 times from 38 distinct sources. 47.128.123.241 was first reported on December 24th 2023, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 filstal.org	2026-05-19 07:15:12 (3 weeks ago)	Automated bot: spoofed/impossible user-agent, web scraping or automated request patterns detected. U ... show more Automated bot: spoofed/impossible user-agent, web scraping or automated request patterns detected. UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected]) show less	Bad Web Bot Web App Attack
Anonymous	2026-05-13 23:23:02 (1 month ago)	Banned by Fail2Ban on server	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-05 19:00:14 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.123.241 (ec2-47-128-123-241.ap-southeast ... show more (mod_security) mod_security (id:210730) triggered by 47.128.123.241 (ec2-47-128-123-241.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 15:00:07.316332 2026] [security2:error] [pid 5342:tid 5342] [client 47.128.123.241:32344] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|systemcapacityoptimization.com\|F\|2"] [data ".ini"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "systemcapacityoptimization.com"] [uri "/MKproductions/PHP.ini"] [unique_id "adKxN0Rs3m_11SfGmr-FBgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 filstal.org	2026-04-05 13:17:48 (2 months ago)	Aggressive Web Bot/Crawler - Multiple UA-switching detected.	Bad Web Bot
🇦🇺 MAGIC	2026-03-16 00:42:58 (2 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇩🇪 filstal.org	2026-03-15 20:16:07 (2 months ago)	Aggressive Web Bot/Crawler - Multiple UA-switching detected.	Bad Web Bot
🇫🇷 bigorre.org	2026-03-07 16:09:35 (3 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇮🇳 dineshskt4all	2026-03-07 07:00:34 (3 months ago)	[Sat Mar 07 07:00:32.738637 2026] [proxy_fcgi:error] [pid 629580:tid 134926984795840] [client 47.128 ... show more [Sat Mar 07 07:00:32.738637 2026] [proxy_fcgi:error] [pid 629580:tid 134926984795840] [client 47.128.123.241:0] AH01071: Got error 'Primary script unknown' ... show less	Brute-Force
🇫🇷 bigorre.org	2026-02-22 16:42:53 (3 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇬🇧 Mendip_Defender	2025-12-21 07:18:11 (5 months ago)	47.128.123.241 - - [21/Dec/2025:07:17:58 +0000] "GET /robots.txt HTTP/1.0" 200 4312 "-" "Mozilla/5.0 ... show more 47.128.123.241 - - [21/Dec/2025:07:17:58 +0000] "GET /robots.txt HTTP/1.0" 200 4312 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected])" ... show less	Bad Web Bot
🇬🇧 NotCool	2025-12-20 18:34:03 (5 months ago)	(CRAWLDELAY) Generic Bot Crawl-delay Violation 47.128.123.241 (ec2-47-128-123-241.ap-southeast-1.com ... show more (CRAWLDELAY) Generic Bot Crawl-delay Violation 47.128.123.241 (ec2-47-128-123-241.ap-southeast-1.compute.amazonaws.com): 10 in the last 3600 secs show less	Bad Web Bot
🇨🇦 1gz	2025-12-17 09:47:48 (5 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /kerko.php UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected]) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-13 19:39:27 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.123.241 (ec2-47-128-123-241.ap-southeast ... show more (mod_security) mod_security (id:210730) triggered by 47.128.123.241 (ec2-47-128-123-241.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 13 14:39:00.334649 2025] [security2:error] [pid 3260:tid 3260] [client 47.128.123.241:47614] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.iheldt.net\|F\|2"] [data ".davidmassengill.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.iheldt.net"] [uri "/http:/www.davidmassengill.com"] [unique_id "aT3A1GsS2hEeZh583N2LowAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2025-11-12 10:19:39 (7 months ago)	BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000 ... show more BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000-122) show less	Bad Web Bot
🇮🇪 Jim Keir	2025-11-11 11:35:18 (7 months ago)	2025-11-11 11:35:18 47.128.123.241 Bad bot, blocking Mozilla/5.0	Bad Web Bot

Showing 1 to 15 of 223 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 163.7.0.179

🇳🇱 45.142.193.125

🇭🇰 42.200.66.164

🇩🇪 2.26.1.31

🇬🇧 194.50.235.130

🇺🇸 172.208.48.177

🇹🇷 146.19.125.102

🇸🇬 103.187.147.214

🇺🇸 103.143.231.2

🇳🇬 102.88.137.80

🇿🇦 102.64.42.37

🇳🇱 91.92.40.5

🇺🇸 66.45.248.83

🇸🇬 47.84.105.173

🇳🇱 45.148.10.157

🇧🇷 43.164.194.33

🇮🇹 213.182.94.106

🇮🇳 172.253.226.118

🇨🇳 42.236.219.92

🇻🇳 203.205.37.233