JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.79.201.25

47.79.201.25 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 61%: ?

61%

ISP	Alibaba Cloud LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibaba-inc.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.79.201.25

Whois 47.79.201.25

IP Abuse Reports for 47.79.201.25:

This IP address has been reported a total of 44 times from 18 distinct sources. 47.79.201.25 was first reported on May 27th 2025, and the most recent report was 8 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 1gz	2026-06-16 07:18:51 (8 hours ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/kultivimin-e-kanabisit-mjekesor UA: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Mobile Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-15 11:24:06 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 47.79.201.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 47.79.201.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jun 15 07:23:59.729839 2026] [security2:error] [pid 19075:tid 19075] [client 47.79.201.25:60610] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.flyingdodopublications.com\|F\|2"] [data ".egressstudiopress.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.flyingdodopublications.com"] [uri "/by-comic/herbert/www.egressstudiopress.com"] [unique_id "ai_gzwyqd9BqUXo1bMoCywAAAAQ"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-15 09:25:43 (1 day ago)	FortiWeb WAF: 64 attacks detected. Threat Score: 14400. Types: Client Management(32), GEO IP(32). Or ... show more FortiWeb WAF: 64 attacks detected. Threat Score: 14400. Types: Client Management(32), GEO IP(32). Origin: Singapore. show less	Web App Attack
🇫🇷 Sklurk	2026-06-14 06:23:18 (2 days ago)	Web App Attack	Web App Attack
🇨🇦 1gz	2026-06-14 04:16:32 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.well-known/nodeinfo UA: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Mobile Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 Vegascosmetics	2026-06-13 17:30:44 (2 days ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after suspicious activity. Vegas Security	DDoS Attack Hacking Exploited Host
Anonymous	2026-06-13 09:25:07 (3 days ago)	FortiWeb WAF: 50 attacks detected. Threat Score: 16200. Types: Client Management(25), GEO IP(25). Or ... show more FortiWeb WAF: 50 attacks detected. Threat Score: 16200. Types: Client Management(25), GEO IP(25). Origin: Singapore. show less	Web App Attack
🇫🇷 Sklurk	2026-06-13 06:09:51 (3 days ago)	Web App Attack	Web App Attack
🇺🇸 kosada.com	2026-06-13 02:00:12 (3 days ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇦🇺 FireGuard Server	2026-06-12 09:05:08 (4 days ago)	Blocked by OPNsense firewall; 4 hits, proto=tcp, ports=443	Port Scan Hacking
🇫🇷 Sklurk	2026-06-12 03:22:31 (4 days ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 03:05:58 (4 days ago)	(mod_security) mod_security (id:210381) triggered by 47.79.201.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210381) triggered by 47.79.201.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 23:05:49.632594 2026] [security2:error] [pid 13960:tid 13965] [client 47.79.201.25:46108] ModSecurity: Access denied with code 403 (phase 2). Invalid URL Encoding: Non-hexadecimal digits used at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/12_HTTP_Protocol.conf"] [line "82"] [id "210381"] [rev "6"] [msg "COMODO WAF: URL Encoding Abuse Attack Attempt\|\|www.mentzlaw.com\|F\|4"] [data "REQUEST_URI=/injurylawlawyerlouisianarodsuitwelding/%url%"] [severity "WARNING"] [tag "CWAF"] [tag "Protocol"] [hostname "www.mentzlaw.com"] [uri "/injurylawlawyerlouisianarodsuitwelding/%url%"] [unique_id "ait3jTeqFmolqo9B66lmswAAAUM"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 15:15:53 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 47.79.201.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 47.79.201.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 11:15:49.318293 2026] [security2:error] [pid 7829:tid 7829] [client 47.79.201.25:22430] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|learningbyshipping.com\|F\|2"] [data ".weebly.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "learningbyshipping.com"] [uri "/www.weebly.com"] [unique_id "airRJeSszpEdcWzjDMOtZQAAAAY"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 12:13:02 (5 days ago)	(mod_security) mod_security (id:210730) triggered by 47.79.201.25 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 47.79.201.25 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 08:12:57.501929 2026] [security2:error] [pid 10311:tid 10434] [client 47.79.201.25:41094] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|marinkovich.info\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "marinkovich.info"] [uri "/wwjnd.com"] [unique_id "aiqmSWFzva38OS08eYybHQAAAQU"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-11 09:34:03 (5 days ago)	FortiWeb WAF: 53 attacks detected. Threat Score: 5400. Types: GEO IP(27), Client Management(26). Ori ... show more FortiWeb WAF: 53 attacks detected. Threat Score: 5400. Types: GEO IP(27), Client Management(26). Origin: Singapore. show less	Web App Attack

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.211

🇺🇸 198.12.72.27

🇧🇷 167.126.6.183

🇨🇳 111.10.175.206

🇺🇸 91.230.168.174

🇺🇸 91.230.168.151

🇺🇸 91.230.168.150

🇫🇷 91.196.152.212

🇨🇱 68.211.177.55

🇺🇸 52.117.127.253

🇳🇱 45.148.10.147

🇬🇧 35.203.210.238

🇺🇸 34.31.88.250

🇦🇪 2620:171:62:f002:9999::225

🇺🇸 209.182.193.155

🇺🇸 208.87.243.251

🇺🇸 204.48.28.177

🇹🇷 172.69.251.188

🇸🇪 171.25.158.113

🇺🇸 162.216.150.187