JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.128.127.120

47.128.127.120 was found in our database!

This IP was reported 213 times. Confidence of Abuse is 3%: ?

ISP	Amazon Data Services Singapore
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-47-128-127-120.ap-southeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.128.127.120

Whois 47.128.127.120

IP Abuse Reports for 47.128.127.120:

This IP address has been reported a total of 213 times from 43 distinct sources. 47.128.127.120 was first reported on December 22nd 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-14 19:48:32 (1 week ago)	(mod_security) mod_security (id:210730) triggered by 47.128.127.120 (ec2-47-128-127-120.ap-southeast ... show more (mod_security) mod_security (id:210730) triggered by 47.128.127.120 (ec2-47-128-127-120.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 15:48:28.483360 2026] [security2:error] [pid 6124:tid 6124] [client 47.128.127.120:31080] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.tobyjohnson.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.tobyjohnson.com"] [uri "/lethepressbooks.com"] [unique_id "ai8FjODMT8jTSIjgGytqDQAAACA"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 backslash	2026-02-25 14:06:01 (3 months ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇫🇷 bigorre.org	2026-02-23 16:56:38 (3 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇫🇷 bigorre.org	2026-02-18 15:56:17 (4 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-19 16:45:52 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.127.120 (ec2-47-128-127-120.ap-southeast ... show more (mod_security) mod_security (id:210730) triggered by 47.128.127.120 (ec2-47-128-127-120.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 19 11:45:45.415445 2026] [security2:error] [pid 19222:tid 19222] [client 47.128.127.120:62530] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.coolwebsites.org\|F\|2"] [data ".lawgirl.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.coolwebsites.org"] [uri "/www.lawgirl.com"] [unique_id "aW5fuSlxnN8FQ7kYPcmjfAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-01-15 13:19:08 (5 months ago)	Brute force	Brute-Force
🇪🇸 masterguru	2026-01-11 10:44:06 (5 months ago)	BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000 ... show more BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000-123) show less	Bad Web Bot
🇺🇸 xmission.com	2026-01-05 20:20:30 (5 months ago)	47.128.127.120 - - [05/Jan/2026:13:20:29 -0700] "GET /related/parenthood/page/22/?page=124 HTTP/2.0" ... show more 47.128.127.120 - - [05/Jan/2026:13:20:29 -0700] "GET /related/parenthood/page/22/?page=124 HTTP/2.0" 200 15153 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected])" 47.128.127.120 - - [05/Jan/2026:13:20:30 -0700] "GET /wp-content/uploads/2018/06/disney2-700x467.png HTTP/2.0" 206 500 "https://dooce.com/related/parenthood/page/22/?page=124" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected])" 47.128.127.120 - - [05/Jan/2026:13:20:30 -0700] "GET /wp-content/uploads/2018/06/disney3-700x467.png HTTP/2.0" 206 500 "https://dooce.com/related/parenthood/page/22/?page=124" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected])" 47.128.127.120 - - [05/Jan/2026:13:20:30 -0700] "GET /wp-content/uploads/2018/06 ... show less	Bad Web Bot
🇫🇷 bigorre.org	2026-01-03 13:39:27 (5 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇩🇪 dbmwebdesign	2025-12-27 05:10:21 (5 months ago)	Bot detected and blocked by Fail2Ban in bytespider jail	Bad Web Bot
🇺🇸 xmission.com	2025-12-24 20:31:14 (5 months ago)	47.128.127.120 - - [24/Dec/2025:13:31:13 -0700] "GET /related/parenthood/page/430/?page=121 HTTP/2.0 ... show more 47.128.127.120 - - [24/Dec/2025:13:31:13 -0700] "GET /related/parenthood/page/430/?page=121 HTTP/2.0" 200 12997 "-" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected])" 47.128.127.120 - - [24/Dec/2025:13:31:13 -0700] "GET /photos/leta/532.jpg HTTP/2.0" 404 146 "https://dooce.com/related/parenthood/page/430/?page=121" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected])" 47.128.127.120 - - [24/Dec/2025:13:31:13 -0700] "GET /photos/leta/531.jpg HTTP/2.0" 404 146 "https://dooce.com/related/parenthood/page/430/?page=121" "Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected])" 47.128.127.120 - - [24/Dec/2025:13:31:13 -0700] "GET /photos/leta/533.jpg HTTP/2.0" 404 146 "https://dooce.com/related/parenthood/p ... show less	Bad Web Bot
🇩🇪 conseilgouz	2025-12-22 05:10:25 (6 months ago)	lae-88 : Bloc AI bots=>/(Bytespider)	Hacking
🇺🇸 fortypoundhead	2025-12-22 04:33:05 (6 months ago)	Banned IP Address	Hacking Web App Attack
🇩🇪 Reinhard	2025-12-21 13:23:44 (6 months ago)	Unknown activity, but too many attacks with too many users.	Hacking
Anonymous	2025-12-20 05:18:59 (6 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack

Showing 1 to 15 of 213 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 186.219.184.142

🇱🇻 185.135.87.109

🇬🇧 178.128.42.243

🇳🇬 152.32.141.98

🇳🇱 103.69.224.22

🇳🇱 45.148.10.151

🇺🇸 32.194.174.174

🇨🇳 8.138.225.215

🇩🇪 206.81.24.227

🇻🇪 190.8.164.152

🇳🇱 176.65.139.181

🇺🇸 174.138.55.181

🇺🇸 172.66.47.39

🇨🇦 167.160.184.145

🇺🇸 143.42.1.44

🇺🇸 143.42.0.20

🇬🇧 123.58.207.81

🇺🇸 65.49.20.66

🇳🇱 62.197.45.129

🇲🇾 49.124.152.35