JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.128.56.250

47.128.56.250 was found in our database!

This IP was reported 261 times. Confidence of Abuse is 10%: ?

10%

ISP	Amazon Data Services Singapore
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-47-128-56-250.ap-southeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.128.56.250

Whois 47.128.56.250

IP Abuse Reports for 47.128.56.250:

This IP address has been reported a total of 261 times from 35 distinct sources. 47.128.56.250 was first reported on September 14th 2023, and the most recent report was 23 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 dbmwebdesign	2026-06-12 15:20:14 (23 hours ago)	Bot detected and blocked by Fail2Ban in bytespider jail	Bad Web Bot
🇩🇪 dbmwebdesign	2026-06-08 10:10:21 (5 days ago)	Bot detected and blocked by Fail2Ban in bytespider jail	Bad Web Bot
🇩🇪 dbmwebdesign	2026-05-30 17:50:15 (1 week ago)	Bot detected and blocked by Fail2Ban in bytespider jail	Bad Web Bot
🇩🇪 dbmwebdesign	2026-04-17 14:20:19 (1 month ago)	Bot detected and blocked by Fail2Ban in bytespider jail	Bad Web Bot
🇫🇷 ✨	2026-04-15 01:57:18 (1 month ago)	Domain : quran-in-english.org Rule : UserAgent 2026-04-15 00:57:54 *hidden-privacy* GET /files/a ... show more Domain : quran-in-english.org Rule : UserAgent 2026-04-15 00:57:54 *hidden-privacy* GET /files/assets/basic-html/style/shadowleft.png - 443 - 47.128.56.250 HTTP/2 Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected]) https://quran-in-english.org/files/assets/basic-html/style/style.css quran-in-english.org 200 0 0 500 602 188 - - show less	Port Scan
🇩🇪 dbmwebdesign	2026-03-27 01:45:08 (2 months ago)	Bot detected and blocked by Fail2Ban in bytespider jail	Bad Web Bot
🇪🇸 librebit	2026-02-16 07:48:18 (3 months ago)	Brute force	Brute-Force
🇨🇦 1gz	2026-02-06 10:47:38 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /lajme/ky-eshte-30-vjecari-qe-e-mori-rrjedha-e-ujit-gjate-aksidentit-ne-klos-u-braktis-nga-shoku-i-tij-pas-renies-se-makines-ne-perrua-fotovideo/850438/ UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected]) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-06 15:18:08 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.56.250 (ec2-47-128-56-250.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.56.250 (ec2-47-128-56-250.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jan 06 10:18:03.023696 2026] [security2:error] [pid 7220:tid 7220] [client 47.128.56.250:19866] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.homebuilt.org\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.homebuilt.org"] [uri "/vendors/p&e/[email protected]"] [unique_id "aV0nq1dBQrBNpjce4MpHXwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 bigorre.org	2026-01-05 13:43:18 (5 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-03 14:36:00 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.56.250 (ec2-47-128-56-250.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.56.250 (ec2-47-128-56-250.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jan 03 09:35:57.286187 2026] [security2:error] [pid 6901:tid 6901] [client 47.128.56.250:58138] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|informativearticles.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "informativearticles.com"] [uri "/nutrition/[email protected]"] [unique_id "aVkpTTk16RH33wPuhKPfagAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇷 RocketEmi	2025-12-30 02:13:50 (5 months ago)	Automated web crawling detected: high request rate, scraping multiple pages. Behavior consistent wit ... show more Automated web crawling detected: high request rate, scraping multiple pages. Behavior consistent with Bad Web Bot. show less	Bad Web Bot
🇬🇧 NotCool	2025-12-27 13:51:43 (5 months ago)	(CRAWLDELAY) Generic Bot Crawl-delay Violation 47.128.56.250 (ec2-47-128-56-250.ap-southeast-1.compu ... show more (CRAWLDELAY) Generic Bot Crawl-delay Violation 47.128.56.250 (ec2-47-128-56-250.ap-southeast-1.compute.amazonaws.com): 10 in the last 3600 secs show less	Bad Web Bot
🇫🇷 bigorre.org	2025-12-12 15:45:31 (6 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇺🇸 TPI-Abuse	2025-11-09 13:10:56 (7 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.56.250 (ec2-47-128-56-250.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.56.250 (ec2-47-128-56-250.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Nov 09 08:10:50.876089 2025] [security2:error] [pid 15501:tid 15501] [client 47.128.56.250:16876] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|pointandshootfilm.com\|F\|2"] [data ".facebook.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "pointandshootfilm.com"] [uri "/www.facebook.com"] [unique_id "aRCS2p3-U7myFn1WSnIHMwAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 261 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 103.75.228.8

🇧🇷 45.205.1.246

🇩🇪 172.104.241.200

🇺🇸 162.216.150.227

🇭🇰 101.36.109.144

🇳🇱 45.148.10.183

🇩🇪 45.3.54.151

🇨🇱 34.176.97.228

🇮🇩 34.101.115.181

🇲🇽 189.203.92.70

🇩🇪 139.162.143.196

🇨🇳 117.81.151.230

🇸🇪 171.25.158.57

🇮🇳 139.59.36.109

🇺🇸 134.122.21.135

🇻🇳 113.161.39.122

🇫🇷 51.75.127.195

🇬🇧 217.146.80.117

🇮🇹 213.215.209.101

🇹🇼 198.235.24.57