JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.254.89.149

47.254.89.149 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 42%: ?

42%

ISP	Alibaba Cloud - US
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibabacloud.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.254.89.149

Whois 47.254.89.149

IP Abuse Reports for 47.254.89.149:

This IP address has been reported a total of 16 times from 6 distinct sources. 47.254.89.149 was first reported on June 19th 2026, and the most recent report was 24 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-20 11:52:05 (24 minutes ago)	(mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 07:51:59.137048 2026] [security2:error] [pid 21046:tid 21046] [client 47.254.89.149:46036] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chatgptfrance.net"] [uri "/.git/HEAD"] [unique_id "ajZ-3xQ0z1lTfCfFtx4pVgAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 11:02:58 (1 hour ago)	(mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 07:02:51.841611 2026] [security2:error] [pid 1959:tid 1959] [client 47.254.89.149:35656] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "chapa.net"] [uri "/.git/HEAD"] [unique_id "ajZzW5layQw5m_VScYnqiQAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 08:13:58 (4 hours ago)	(mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 04:13:54.208382 2026] [security2:error] [pid 16162:tid 16162] [client 47.254.89.149:56468] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cgautomatizacion.com"] [uri "/.git/HEAD"] [unique_id "ajZLwq9nLn3JvGfLPymoaAAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇷 SOC PR	2026-06-20 06:15:00 (6 hours ago)	IPS: Web Server Exposed Git Repository Information Disclosure.	Hacking
🇩🇪 big-cloud.nl	2026-06-20 05:51:10 (6 hours ago)	Try to access /.git/HEAD	Web App Attack
🇺🇸 TPI-Abuse	2026-06-20 04:04:00 (8 hours ago)	(mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 20 00:03:52.200228 2026] [security2:error] [pid 4172:tid 4172] [client 47.254.89.149:33342] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "celltechs.net"] [uri "/.git/HEAD"] [unique_id "ajYRKAbR5wMr0ro0kaG8wgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 Oakley	2026-06-20 03:48:34 (8 hours ago)	(confirmed_bot_sig) Confirmed bot	Hacking
Anonymous	2026-06-19 23:55:48 (12 hours ago)	"GET /.git/HEAD HTTP/1.1"	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 19:34:15 (16 hours ago)	(mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 15:34:11.764000 2026] [security2:error] [pid 13874:tid 13874] [client 47.254.89.149:42160] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "carolinafootprints.com"] [uri "/.git/HEAD"] [unique_id "ajWZs9VtK5aL-ydBPkJOYQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 17:58:56 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 13:58:48.567425 2026] [security2:error] [pid 949:tid 949] [client 47.254.89.149:54218] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "calogerolawfirm.com"] [uri "/.git/HEAD"] [unique_id "ajWDWL6P37gKRoiHxlcJeAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 17:35:01 (18 hours ago)	(mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 13:34:54.656061 2026] [security2:error] [pid 26136:tid 26146] [client 47.254.89.149:35446] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "callaplusfirst.com"] [uri "/.git/HEAD"] [unique_id "ajV9vr_hOxWe5-Xdygwk5AAAAYc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-19 16:40:02 (19 hours ago)	suspicious request in access.log	Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 16:15:51 (20 hours ago)	(mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 12:15:47.903791 2026] [security2:error] [pid 12360:tid 12360] [client 47.254.89.149:39090] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "capecodbeachfront.com"] [uri "/.git/HEAD"] [unique_id "ajVrM4uq6_bLKt-CE4kiWQAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 14:40:08 (21 hours ago)	(mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 10:40:05.306383 2026] [security2:error] [pid 27875:tid 27875] [client 47.254.89.149:33414] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "btsalesrep.com"] [uri "/.git/HEAD"] [unique_id "ajVUxW_2YIEv-LeWX9xeHAAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-19 12:49:39 (23 hours ago)	(mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 47.254.89.149 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 19 08:49:36.763284 2026] [security2:error] [pid 22276:tid 22276] [client 47.254.89.149:33412] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bzbdesigns.com"] [uri "/.git/HEAD"] [unique_id "ajU64DpiVYHlZJoT0QuWywAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 188.226.201.151

🇺🇸 104.28.203.58

🇲🇾 47.250.91.153

🇩🇪 8.211.35.24

🇳🇱 5.83.143.123

🇭🇰 2404:6800:4005:c01::128

🇨🇭 212.104.214.117

🇧🇷 177.155.133.175

🇳🇱 172.211.56.214

🇩🇪 167.94.145.25

🇺🇸 162.216.149.44

🇺🇸 70.36.101.122

🇺🇸 64.62.156.219

🇬🇧 35.203.210.179

🇻🇪 200.71.154.142

🇰🇿 199.189.254.84

🇳🇱 178.16.55.50

🇺🇸 162.216.150.204

🇺🇸 162.216.150.98

🇺🇸 162.216.149.53