JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.79.11.22

47.79.11.22 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 59%: ?

59%

ISP	Alibaba Cloud LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibaba-inc.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.79.11.22

Whois 47.79.11.22

IP Abuse Reports for 47.79.11.22:

This IP address has been reported a total of 40 times from 19 distinct sources. 47.79.11.22 was first reported on April 1st 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 A000Z	2026-06-11 22:50:54 (1 day ago)	Fail2Ban: 47.79.11.22 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 ... show more Fail2Ban: 47.79.11.22 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 show less	Bad Web Bot
🇺🇸 kosada.com	2026-06-11 05:35:33 (2 days ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
Anonymous	2026-06-09 21:05:24 (3 days ago)	Repeated automated scraping and high-volume requests against a secured web server following multiple ... show more Repeated automated scraping and high-volume requests against a secured web server following multiple rate limit violations. show less	Web App Attack
🇨🇭 backslash	2026-06-09 14:42:02 (3 days ago)	block ruleset CC531825F9395F9A07FB06C1247C46770A2690F8	Bad Web Bot
🇫🇷 Sklurk	2026-06-07 08:24:53 (6 days ago)	Web App Attack	Web App Attack
🇩🇪 Vegascosmetics	2026-06-01 06:16:48 (1 week ago)	Kingcopy(AI-IDS) Report: IP 47.79.11.22 wurde nach 3 Angriffsversuchen automatisch geblockt. Pattern ... show more Kingcopy(AI-IDS) Report: IP 47.79.11.22 wurde nach 3 Angriffsversuchen automatisch geblockt. Pattern: High Priority: ChangeCountry - Vegas Cosmetics Security System show less	DDoS Attack Hacking Bad Web Bot
🇵🇹 Information Security	2026-05-26 22:03:07 (2 weeks ago)	Web App Attack	Web App Attack
🇨🇿 vitex	2026-05-26 04:00:00 (2 weeks ago)	Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically cr ... show more Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically crawled git blame endpoints (/*/blame/commit/<hash>/file) across all commits of public repositories, causing server load of 17+ (normal: <2). Over 71,000 unique IPs involved. Attack window: 2026-05-26 03:30-06:37 UTC. Primary target: PureHTML/purezencart (9933 commits, 5065 files). Each blame request triggers expensive git operations; 30,000+ slow requests per hour. show less	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-24 04:24:13 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 47.79.11.22 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 47.79.11.22 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 24 00:24:10.015051 2026] [security2:error] [pid 12990:tid 12990] [client 47.79.11.22:35716] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.flavornet.org\|F\|2"] [data ".pdb"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.flavornet.org"] [uri "/info/jmol/pdb/134-20-3.pdb"] [unique_id "ahJ9aoJlu0QA7eLOkO1pBgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-05-23 02:36:54 (3 weeks ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇫🇷 vtchost.com	2026-05-13 17:27:39 (4 weeks ago)	requested honeypot page - ignored robots.txt - scraping botnet or virus ...	Bad Web Bot Exploited Host
🇷🇺 Mga Admin	2026-05-09 03:02:40 (1 month ago)	47.79.11.22 - - [09/May/2026:09:01:33 +0700] "GET /sumFREGAT/bychr/chr9/UBQLN1.RData HTTP/1.1" 403 1 ... show more 47.79.11.22 - - [09/May/2026:09:01:33 +0700] "GET /sumFREGAT/bychr/chr9/UBQLN1.RData HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36" ... show less	Web App Attack
🇩🇪 pltcldvlpr	2026-05-03 20:43:00 (1 month ago)	Unidentified crawler ignoring robots.txt: 47.79.11.22 - - [03/May/2026:22:42:46 +0200] "GET /protoco ... show more Unidentified crawler ignoring robots.txt: 47.79.11.22 - - [03/May/2026:22:42:46 +0200] "GET /protocol?id=sl_15_48&offset=250&seq=198 HTTP/2.0" 200 348465 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36" asn=45102 org="Alibaba (US) Technology Co., Ltd." 47.79.11.22 - - [03/May/2026:22:42:53 +0200] "GET /protocol?id=by_14_82&offset=750&seq=915 HTTP/2.0" 200 352776 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36" asn=45102 org="Alibaba (US) Technology Co., Ltd." 47.79.11.22 - - [03/May/2026:22:42:59 +0200] "GET /protocol?id=by_14_118&offset=500&seq=384 HTTP/2.0" 200 349993 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.0.0 Safari/537.36" asn=45102 org="Alibaba (US) Technology Co., Ltd." ... show less	Bad Web Bot
🇳🇱 jjnxpct	2026-05-03 04:08:24 (1 month ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /images/nieuws/2011/110624_pressrelease_16_june_2011.pdf (Rule ID: 920171) - GET or HEAD Request with Transfer-Encoding show less	Web App Attack
Anonymous	2026-05-01 04:06:00 (1 month ago)	Malicious activity detected	Hacking Web App Attack

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 212.132.120.41

🇹🇭 203.154.158.195

🇲🇽 187.191.48.6

🇵🇰 144.48.130.175

🇮🇳 139.59.4.137

🇮🇹 93.92.78.169

🇩🇪 69.5.169.93

🇺🇸 47.254.66.230

🇳🇱 45.153.34.181

🇳🇱 45.148.10.152

🇳🇱 45.148.10.147

🇳🇱 45.148.10.141

🇳🇱 213.176.16.100

🇺🇸 167.172.245.177

🇻🇳 160.191.244.158

🇨🇳 120.48.34.72

🇺🇸 104.236.53.110

🇿🇦 102.220.85.131

🇺🇸 74.125.17.249

🇺🇸 66.132.195.22