JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.79.198.133

47.79.198.133 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 13%: ?

13%

ISP	Alibaba Cloud LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibaba-inc.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.79.198.133

Whois 47.79.198.133

IP Abuse Reports for 47.79.198.133:

This IP address has been reported a total of 50 times from 20 distinct sources. 47.79.198.133 was first reported on May 14th 2025, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-06-14 05:45:16 (7 hours ago)	(mod_security) mod_security (id:210730) triggered by 47.79.198.133 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 47.79.198.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 01:45:09.130205 2026] [security2:error] [pid 23697:tid 23708] [client 47.79.198.133:13132] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|tamarkummel.com\|F\|2"] [data ".dll"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "tamarkummel.com"] [uri "/~site/Scripts_ExternalRedirect/ExternalRedirect.dll"] [unique_id "ai4_5alLo-QfLnMcjtCpKAAAAMk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 18:52:50 (18 hours ago)	(mod_security) mod_security (id:210730) triggered by 47.79.198.133 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 47.79.198.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 14:52:42.558048 2026] [security2:error] [pid 11191:tid 11191] [client 47.79.198.133:55184] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.civilwarzone.com\|F\|2"] [data ".dll"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.civilwarzone.com"] [uri "/~site/Scripts_ExternalRedirect/ExternalRedirect.dll"] [unique_id "ai2m-vJeWVSYfvohk7CnaAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Sklurk	2026-05-19 08:32:56 (3 weeks ago)	Web App Attack	Web App Attack
🇫🇷 Sklurk	2026-04-13 03:05:41 (2 months ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-03-31 04:39:59 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 47.79.198.133 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 47.79.198.133 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Mar 31 00:39:51.127472 2026] [security2:error] [pid 17580:tid 17580] [client 47.79.198.133:17118] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.beirutbazar.com\|F\|2"] [data ".beirutbazar.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.beirutbazar.com"] [uri "/item/celia-d-sneakers-lbp-217500-usd-145/www.beirutbazar.com"] [unique_id "actQF7wt0zRgYSOTKP_EaAAAAAs"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇨🇦 1gz	2026-03-25 04:37:05 (2 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: / UA: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Mobile Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 ersei.net	2026-01-15 20:14:21 (4 months ago)	Nonstop scanning with no cooldown or respect for 429.	Bad Web Bot
🇺🇸 kosada.com	2026-01-05 07:02:01 (5 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 kosada.com	2025-12-26 17:08:11 (5 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 ersei.net	2025-12-14 07:14:00 (6 months ago)	Nonstop scanning with no cooldown or respect for 429.	Bad Web Bot
🇨🇦 1gz	2025-12-13 03:43:37 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /maqedoni/popullsia-ne-maqedonine-e-veriut-sot-shpallen-rezultatet-e-regjistrimit/278156 UA: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Mobile Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇨🇦 1gz	2025-12-12 18:50:33 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/lindita-theodhori-ditelindja UA: Mozilla/5.0 (Linux; Android 11; RMX3581 Build/RP1A.201005.001) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.6834.163 Mobile Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2025-12-10 03:03:08 (6 months ago)	Web attack	Bad Web Bot Web App Attack
🇺🇸 ersei.net	2025-12-07 17:05:27 (6 months ago)	Nonstop scanning with no cooldown or respect for 429.	Bad Web Bot
🇫🇷 Sklurk	2025-12-07 01:03:35 (6 months ago)	Web App Attack	Web App Attack

Showing 1 to 15 of 50 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇦🇷 186.38.26.5

🇺🇸 174.27.80.222

🇿🇦 154.0.7.147

🇬🇧 81.19.219.204

🇺🇸 45.92.229.88

🇰🇷 8.230.18.66

🇧🇷 191.241.76.128

🇺🇸 137.184.69.130

🇳🇿 121.73.163.185

🇺🇸 92.204.138.51

🇧🇬 78.128.114.58

🇷🇺 45.195.221.26

🇧🇪 34.156.184.54

🇳🇱 34.34.121.164

🇮🇳 13.200.181.89

🇮🇪 3.255.216.174

🇮🇷 2.180.217.82

🇰🇷 222.236.155.146

🇰🇷 125.132.34.65

🇮🇪 52.169.217.131