JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.128.35.58

47.128.35.58 was found in our database!

This IP was reported 295 times. Confidence of Abuse is 1%: ?

ISP	Amazon Data Services Singapore
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-47-128-35-58.ap-southeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.128.35.58

Whois 47.128.35.58

IP Abuse Reports for 47.128.35.58:

This IP address has been reported a total of 295 times from 46 distinct sources. 47.128.35.58 was first reported on September 17th 2023, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 hostmach	2026-05-26 21:15:26 (3 weeks ago)	backup_logs.sh; Ports: CSI; Direction: acctinfo; Trigger: cpanel_profile; Logs: cpanel3-skel	Port Scan
🇺🇸 TPI-Abuse	2026-03-10 11:10:32 (3 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.35.58 (ec2-47-128-35-58.ap-southeast-1.c ... show more (mod_security) mod_security (id:210730) triggered by 47.128.35.58 (ec2-47-128-35-58.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 10 07:10:25.707709 2026] [security2:error] [pid 1461:tid 1461] [client 47.128.35.58:20378] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|wmionline.org\|F\|2"] [data ".wordpress.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "wmionline.org"] [uri "/wmionline.wordpress.com"] [unique_id "aa_8IaM8F2vhFxHHfmwApQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-03 19:41:48 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 47.128.35.58 (ec2-47-128-35-58.ap-southeast-1.c ... show more (mod_security) mod_security (id:210492) triggered by 47.128.35.58 (ec2-47-128-35-58.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 03 14:41:14.389231 2026] [security2:error] [pid 8318:tid 8318] [client 47.128.35.58:42094] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htpasswd" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "stuartpearson.net"] [uri "/.htpasswds/"] [unique_id "aac5Wn2LiHI3CoCFMxN0ZwAAAB8"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 strzonnek	2026-02-28 08:05:44 (3 months ago)	attack on webform	Brute-Force Web App Attack
🇨🇭 backslash	2026-02-26 12:03:06 (3 months ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇨🇦 1gz	2026-02-23 23:27:36 (3 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /include/lajme5fund.php UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected]) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-19 01:07:39 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 47.128.35.58 (ec2-47-128-35-58.ap-southeast-1.c ... show more (mod_security) mod_security (id:210492) triggered by 47.128.35.58 (ec2-47-128-35-58.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Feb 18 20:07:36.111048 2026] [security2:error] [pid 21250:tid 21250] [client 47.128.35.58:24676] ModSecurity: Access denied with code 403 (phase 1). Matched phrase ".htpasswd" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.heuristicbooks.com"] [uri "/Heuristic%20Books%20--%20Algorithms%20for%20Better%20Living_files/ccx/"] [unique_id "aZZiWBFXAcTbhM11AfcDNgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 bigorre.org	2026-02-18 13:55:45 (3 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇫🇷 bigorre.org	2026-02-14 16:19:32 (4 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇪🇸 librebit	2026-02-06 09:03:14 (4 months ago)	Brute force	Brute-Force
🇫🇷 bigorre.org	2025-12-15 15:40:59 (6 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇨🇦 1gz	2025-12-15 05:17:17 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /lajme/pa-ngrene-mengjes/ UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected]) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 mrcrassi	2025-12-03 15:49:11 (6 months ago)	Triggered Cloudflare WAF (botFight) from SG. Action taken: MANAGED_CHALLENGE Protocol: HTTP/2 (GET m ... show more Triggered Cloudflare WAF (botFight) from SG. Action taken: MANAGED_CHALLENGE Protocol: HTTP/2 (GET method) Endpoint: / UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected]) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-11-13 23:59:02 (7 months ago)	Malicious activity detected	Hacking Web App Attack
🇩🇪 conseilgouz	2025-11-13 14:56:18 (7 months ago)	doe-24 : CGSECURE_MSG_24=>/robots.txt(Bytespider)	Hacking

Showing 1 to 15 of 295 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.103.152.196

🇺🇸 205.210.31.90

🇺🇸 91.230.168.30

🇺🇸 91.230.168.2

🇸🇬 2404:6800:4003:c04::121

🇯🇵 212.32.76.4

🇨🇦 199.21.149.124

🇩🇪 167.94.146.48

🇭🇰 152.32.190.10

🇺🇸 148.153.32.123

🇧🇬 78.128.113.74

🇨🇳 14.103.115.143

🇳🇱 200.162.148.208

🇪🇨 193.30.14.163

🇧🇷 187.33.59.116

🇧🇩 103.4.145.50

🇧🇷 82.47.106.184

🇺🇸 71.19.150.18

🇹🇼 61.224.66.211

🇧🇷 45.205.1.76