JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.128.125.233

47.128.125.233 was found in our database!

This IP was reported 206 times. Confidence of Abuse is 4%: ?

ISP	Amazon Data Services Singapore
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-47-128-125-233.ap-southeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.128.125.233

Whois 47.128.125.233

IP Abuse Reports for 47.128.125.233:

This IP address has been reported a total of 206 times from 36 distinct sources. 47.128.125.233 was first reported on December 19th 2023, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-17 13:15:24 (2 days ago)	(mod_security) mod_security (id:210492) triggered by 47.128.125.233 (ec2-47-128-125-233.ap-southeast ... show more (mod_security) mod_security (id:210492) triggered by 47.128.125.233 (ec2-47-128-125-233.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 09:15:21.098016 2026] [security2:error] [pid 31629:tid 31629] [client 47.128.125.233:64032] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htaccess" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "archief.org"] [uri "/bak.htaccess"] [unique_id "ajKd6SK6zs5LslCZrF0hPAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇪 Jim Keir	2026-03-08 06:33:55 (3 months ago)	2026-03-08 06:33:54 47.128.125.233 Bad bot, blocking Mozilla/5.0	Bad Web Bot
🇩🇪 Reinhard	2026-01-05 04:15:40 (5 months ago)	Unknown activity, but too many attacks with too many users.	Hacking
🇫🇷 bigorre.org	2026-01-02 10:09:55 (5 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇫🇷 bigorre.org	2025-12-14 10:10:23 (6 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-13 18:59:00 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.125.233 (ec2-47-128-125-233.ap-southeast ... show more (mod_security) mod_security (id:210730) triggered by 47.128.125.233 (ec2-47-128-125-233.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Dec 13 13:58:52.353796 2025] [security2:error] [pid 17975:tid 18002] [client 47.128.125.233:11384] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|silvestricarpet.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "silvestricarpet.com"] [uri "/about-us/\\xe2\\x80\\x9cmailto:[email protected]"] [unique_id "aT23bCCtUIEBaJDZiQEFOgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇪 Jim Keir	2025-12-09 12:41:23 (6 months ago)	2025-12-09 12:41:22 47.128.125.233 Bad bot, blocking Mozilla/5.0	Bad Web Bot
🇺🇸 TPI-Abuse	2025-12-04 03:16:28 (6 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.125.233 (ec2-47-128-125-233.ap-southeast ... show more (mod_security) mod_security (id:210730) triggered by 47.128.125.233 (ec2-47-128-125-233.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 03 22:16:23.936511 2025] [security2:error] [pid 19768:tid 19768] [client 47.128.125.233:19816] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|phantomkennels.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "phantomkennels.com"] [uri "/paypal.com"] [unique_id "aTD9B-YipCzLgE3n4Vo4hwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 conseilgouz	2025-12-01 02:56:16 (6 months ago)	sie-88 : Bloc AI bots=>/robots.txt(Bytespider)	Hacking
🇦🇺 MAGIC	2025-10-09 01:03:44 (8 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-10-04 16:41:58 (8 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.125.233 (ec2-47-128-125-233.ap-southeast ... show more (mod_security) mod_security (id:210730) triggered by 47.128.125.233 (ec2-47-128-125-233.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Oct 04 12:41:54.035060 2025] [security2:error] [pid 30828:tid 30828] [client 47.128.125.233:21856] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|aromatherapyricebags.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "aromatherapyricebags.com"] [uri "/[email protected]"] [unique_id "aOFOUg7U9wqiG763DjToMwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-09-22 03:56:10 (8 months ago)	Excessive crawling/scraping	Hacking Brute-Force
🇮🇹 VHosting	2025-08-30 06:10:50 (9 months ago)	Detected attack by Imunify360	Brute-Force Web App Attack
🇳🇱 exxos	2025-08-24 08:03:01 (9 months ago)	Attacks with Bad user agents	Hacking
🇫🇷 bigorre.org	2025-08-20 13:17:43 (9 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot

Showing 1 to 15 of 206 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇱 194.180.49.216

🇺🇸 167.148.85.103

🇮🇳 103.39.245.69

🇫🇷 46.105.28.235

🇪🇨 45.184.226.43

🇺🇸 44.247.145.116

🇩🇪 167.94.145.29

🇬🇧 81.19.219.208

🇺🇸 74.7.241.52

🇮🇶 62.201.212.54

🇭🇰 45.142.154.113

🇺🇸 44.87.110.199

🇩🇪 3.121.228.48

🇷🇴 2.57.121.25

🇳🇱 185.93.89.147

🇺🇸 147.185.132.132

🇵🇹 144.64.10.188

🇪🇬 102.46.182.135

🇺🇸 98.159.37.235

🇩🇪 68.183.74.157