JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.128.40.98

47.128.40.98 was found in our database!

This IP was reported 259 times. Confidence of Abuse is 3%: ?

ISP	Amazon Data Services Singapore
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-47-128-40-98.ap-southeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.128.40.98

Whois 47.128.40.98

IP Abuse Reports for 47.128.40.98:

This IP address has been reported a total of 259 times from 42 distinct sources. 47.128.40.98 was first reported on September 19th 2023, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Hazzard	2026-06-08 02:29:11 (5 days ago)	(apache-useragents) Failed apache-useragents trigger with match [redacted]): (CF_ENABLE)	Bad Web Bot
🇺🇸 xmission.com	2026-03-07 12:21:40 (3 months ago)	47.128.40.98 - - [07/Mar/2026:05:21:38 -0700] "GET /related/parenthood/page/478/?page=96 HTTP/2.0" 2 ... show more 47.128.40.98 - - [07/Mar/2026:05:21:38 -0700] "GET /related/parenthood/page/478/?page=96 HTTP/2.0" 200 12526 "-" "Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36" 47.128.40.98 - - [07/Mar/2026:05:21:39 -0700] "GET /wp-content/uploads/2012/07/410.jpg HTTP/2.0" 206 500 "https://dooce.com/related/parenthood/page/478/?page=96" "Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36" 47.128.40.98 - - [07/Mar/2026:05:21:39 -0700] "GET /photos/leta/410.jpg HTTP/2.0" 404 548 "https://dooce.com/related/parenthood/page/478/?page=96" "Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36" 47.128.40.98 - - [07/Mar/2026:05:21:39 -0700] "GET /photos/leta/411.jpg HTTP/2.0" 404 548 "https://dooce.com/related/parenthood/page/478/?page=96" "Mozilla/5.0 ( ... show less	Bad Web Bot
🇨🇭 backslash	2026-02-28 10:27:12 (3 months ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇦🇺 MAGIC	2026-02-19 00:49:51 (3 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-02-05 19:10:24 (4 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.40.98 (ec2-47-128-40-98.ap-southeast-1.c ... show more (mod_security) mod_security (id:210730) triggered by 47.128.40.98 (ec2-47-128-40-98.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 05 14:10:19.775560 2026] [security2:error] [pid 21037:tid 21037] [client 47.128.40.98:20280] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.asbechiro.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.asbechiro.com"] [uri "/yahoo.com"] [unique_id "aYTrG-6ufotrp8cpMi-Q4wAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-01-29 05:45:29 (4 months ago)	Brute force	Brute-Force
🇦🇺 MAGIC	2026-01-18 00:00:23 (4 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-12 19:08:18 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.40.98 (ec2-47-128-40-98.ap-southeast-1.c ... show more (mod_security) mod_security (id:210730) triggered by 47.128.40.98 (ec2-47-128-40-98.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jan 12 14:08:13.471377 2026] [security2:error] [pid 14178:tid 14178] [client 47.128.40.98:40000] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|chrisbilder.com\|F\|2"] [data ".dat"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "chrisbilder.com"] [uri "/ts/data_sets/exchange.dat"] [unique_id "aWVGnYEZ9tI1akKszlGxjwAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-01-12 16:37:40 (5 months ago)	Brute force	Brute-Force
🇺🇸 xmission.com	2025-12-30 12:33:34 (5 months ago)	47.128.40.98 - - [30/Dec/2025:05:33:33 -0700] "GET /category/photos/daily-photo/page/1624/?page=77 H ... show more 47.128.40.98 - - [30/Dec/2025:05:33:33 -0700] "GET /category/photos/daily-photo/page/1624/?page=77 HTTP/2.0" 200 9345 "-" "Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36" 47.128.40.98 - - [30/Dec/2025:05:33:33 -0700] "GET /wp-content/uploads/2012/07/03_07_2007_01.jpg HTTP/2.0" 206 500 "https://dooce.com/category/photos/daily-photo/page/1624/?page=77" "Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36" 47.128.40.98 - - [30/Dec/2025:05:33:33 -0700] "GET /photos/dailyphoto/03_07_2007_01.jpg HTTP/2.0" 206 500 "https://dooce.com/category/photos/daily-photo/page/1624/?page=77" "Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36" 47.128.40.98 - - [30/Dec/2025:05:33:33 -0700] "GET /photos/dailyphoto/03_07_2007_02.jpg HTTP/2.0" 404 548 ... show less	Bad Web Bot
🇸🇬 anotherwatcher	2025-11-26 13:01:18 (6 months ago)	bad bot	Bad Web Bot
🇩🇪 conseilgouz	2025-10-27 22:12:34 (7 months ago)	lae-88 : Bloc AI bots=>/component/weblinks/weblink/1-parc-naturel-du-vexin-francais?Itemid=135&c ... show more lae-88 : Bloc AI bots=>/component/weblinks/weblink/1-parc-naturel-du-vexin-francais?Itemid=135&catid=19&task=weblin...(Bytespider) show less	Hacking
🇦🇺 MAGIC	2025-10-17 02:31:38 (7 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇮🇪 Jim Keir	2025-10-13 07:01:43 (8 months ago)	2025-10-13 07:01:42 47.128.40.98 Bad bot, blocking Mozilla/5.0	Bad Web Bot
Anonymous	2025-10-12 09:20:15 (8 months ago)	Ports: 80,443; Direction: 1; Trigger: LF_CUSTOMTRIGGER	Brute-Force SSH

Showing 1 to 15 of 259 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.203

🇮🇷 176.65.233.170

🇺🇸 170.9.16.186

🇩🇪 166.88.225.208

🇵🇰 103.154.64.185

🇩🇪 69.5.169.153

🇫🇷 51.91.252.38

🇫🇷 51.77.158.34

🇩🇪 49.13.86.131

🇭🇰 45.142.154.46

🇹🇼 42.0.81.25

🇫🇮 178.20.210.151

🇧🇷 170.81.152.67

🇧🇷 170.78.245.208

🇫🇷 85.217.140.22

🇺🇸 72.240.125.133

🇭🇰 45.142.154.30

🇨🇳 36.133.163.5

🇨🇭 35.216.144.195

🇧🇷 34.39.228.240