JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.128.59.157

47.128.59.157 was found in our database!

This IP was reported 281 times. Confidence of Abuse is 14%: ?

14%

ISP	Amazon Data Services Singapore
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-47-128-59-157.ap-southeast-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.128.59.157

Whois 47.128.59.157

IP Abuse Reports for 47.128.59.157:

This IP address has been reported a total of 281 times from 43 distinct sources. 47.128.59.157 was first reported on September 14th 2023, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-10 19:25:39 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 47.128.59.157 (ec2-47-128-59-157.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.59.157 (ec2-47-128-59-157.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 15:25:32.220885 2026] [security2:error] [pid 2839:tid 2839] [client 47.128.59.157:25306] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.informativearticles.com\|F\|2"] [data ".brightmoment.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.informativearticles.com"] [uri "/motivation/www.brightmoment.com"] [unique_id "aim6LFZe8zULvjC3D64sWQAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 masterguru	2026-05-25 12:58:22 (2 weeks ago)	BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000 ... show more BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000-122) show less	Bad Web Bot
🇪🇸 masterguru	2026-05-19 01:06:38 (3 weeks ago)	BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000 ... show more BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000-122) show less	Bad Web Bot
🇪🇸 masterguru	2026-04-29 11:26:01 (1 month ago)	BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000 ... show more BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000-122) show less	Bad Web Bot
🇪🇸 masterguru	2026-04-18 20:33:29 (1 month ago)	BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000 ... show more BAD BOT - Detected and Blocked.. Matched phrase "bytespider" at REQUEST_HEADERS:user-agent. (1100000-122) show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-04-04 02:52:38 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.59.157 (ec2-47-128-59-157.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.59.157 (ec2-47-128-59-157.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Apr 03 22:52:32.613440 2026] [security2:error] [pid 1593:tid 1593] [client 47.128.59.157:50462] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.informativearticles.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.informativearticles.com"] [uri "/inspirational/httP;/NuPathz.com"] [unique_id "adB88CjDSy4jzm7fC7SswQAAABk"] show less	Brute-Force Bad Web Bot Web App Attack
🇱🇺 conseilgouz	2026-03-23 19:13:50 (2 months ago)	are-88 : Bloc AI bots=>/component/icagenda/20-2-weihnachtstag-2?Itemid=103&iccaldate=2055-4-1(By ... show more are-88 : Bloc AI bots=>/component/icagenda/20-2-weihnachtstag-2?Itemid=103&iccaldate=2055-4-1(Bytespider) show less	Hacking
🇺🇸 TPI-Abuse	2026-03-17 09:39:08 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.59.157 (ec2-47-128-59-157.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.59.157 (ec2-47-128-59-157.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 17 05:39:04.267048 2026] [security2:error] [pid 701:tid 701] [client 47.128.59.157:19618] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|informativearticles.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "informativearticles.com"] [uri "/[email protected]"] [unique_id "abkhOAG4X7c0V2ChtkuBBQAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 librebit	2026-03-07 07:10:37 (3 months ago)	Brute force	Brute-Force
🇨🇭 backslash	2026-03-04 15:21:08 (3 months ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇫🇷 bigorre.org	2026-03-03 16:22:37 (3 months ago)	Excessive crawling : exceed crawl-delay defined in robots.txt	Bad Web Bot
🇨🇦 1gz	2026-02-07 13:03:01 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /showbiz/ste-takon-ty-kjo-ermal-mamaqi-dhe-oriola-marashi-kunja-publikisht-njeri-tjetrit-foto-lajm/521176/ UA: Mozilla/5.0 (Linux; Android 5.0) AppleWebKit/537.36 (KHTML, like Gecko) Mobile Safari/537.36 (compatible; Bytespider; [email protected]) This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇮🇳 dineshskt4all	2026-01-29 21:24:48 (4 months ago)	47.128.59.157 - - [29/Jan/2026:21:24:44 +0000] "GET /index.php?limit=75&order=DESC&path=80_90&produc ... show more 47.128.59.157 - - [29/Jan/2026:21:24:44 +0000] "GET /index.php?limit=75&order=DESC&path=80_90&product_id=164&route=product%2Fproduct&sort=pd.name HTTP/1.0" 403 6766 "-" "Mozilla/5.0 (compatible; Bytespider; [email protected]) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.0.0 Safari/537.36" ... show less	IoT Targeted
🇦🇷 RocketEmi	2026-01-17 14:16:10 (4 months ago)	Automated web crawling detected: high request rate, scraping multiple pages. Behavior consistent wit ... show more Automated web crawling detected: high request rate, scraping multiple pages. Behavior consistent with Bad Web Bot. show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-01-07 05:02:32 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 47.128.59.157 (ec2-47-128-59-157.ap-southeast-1 ... show more (mod_security) mod_security (id:210730) triggered by 47.128.59.157 (ec2-47-128-59-157.ap-southeast-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 07 00:02:27.974728 2026] [security2:error] [pid 2133:tid 2133] [client 47.128.59.157:64366] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.informativearticles.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.informativearticles.com"] [uri "/customer-service/WallyConway.com"] [unique_id "aV3o41zPBNmuy4lpVYzM-QAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 281 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇺 185.203.186.92

🇷🇺 46.8.246.27

🇹🇼 202.39.153.245

🇰🇭 116.212.152.238

🇨🇳 101.126.89.164

🇺🇸 66.132.186.175

🇮🇶 62.201.212.54

🇨🇳 61.179.242.239

🇹🇭 1.20.140.252

🇹🇼 220.128.221.64

🇬🇧 195.140.214.27

🇨🇴 186.115.52.67

🇮🇹 172.253.12.208

🇩🇪 155.117.127.214

🇺🇸 152.32.208.116

🇻🇳 118.71.58.199

🇨🇳 111.9.22.102

🇮🇸 82.221.141.229

🇳🇱 45.148.10.147

🇬🇧 35.203.211.129