JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.79.206.11

47.79.206.11 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 55%: ?

55%

ISP	Alibaba Cloud LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibaba-inc.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.79.206.11

Whois 47.79.206.11

IP Abuse Reports for 47.79.206.11:

This IP address has been reported a total of 48 times from 18 distinct sources. 47.79.206.11 was first reported on May 22nd 2025, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-30 01:34:39 (15 hours ago)	Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Sever ... show more Honeypot detection: Docker daemon unauthorized access / container escape attempt on port 2375. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 gui-ying233	2026-06-26 00:01:53 (4 days ago)	Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Mobile Sa ... show more Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Mobile Safari/537.36 show less	Bad Web Bot
🇺🇸 kosada.com	2026-06-25 22:29:41 (4 days ago)	Web bot: denial-of-service flood	DDoS Attack Bad Web Bot
Anonymous	2026-06-18 09:23:28 (1 week ago)	FortiWeb WAF: 8 attacks detected. Threat Score: 10200. Types: Client Management(4), GEO IP(4). Origi ... show more FortiWeb WAF: 8 attacks detected. Threat Score: 10200. Types: Client Management(4), GEO IP(4). Origin: Singapore. show less	Web App Attack
Anonymous	2026-06-16 18:26:17 (1 week ago)	Malicious activity detected	Hacking Web App Attack
🇦🇺 FireGuard Server	2026-06-16 14:30:07 (2 weeks ago)	Blocked by OPNsense firewall; 4 hits, proto=tcp, ports=443	Port Scan Hacking
Anonymous	2026-06-16 09:20:38 (2 weeks ago)	FortiWeb WAF: 40 attacks detected. Threat Score: 16800. Types: Client Management(20), GEO IP(20). Or ... show more FortiWeb WAF: 40 attacks detected. Threat Score: 16800. Types: Client Management(20), GEO IP(20). Origin: Singapore. show less	Web App Attack
🇺🇸 ChamberofCommerce.com	2026-06-16 09:09:31 (2 weeks ago)	Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested ... show more Unauthorized Scraping Attempt - More then 225 Pages Requested in a 24 hour period - Total Requested Before Block:226 show less	Bad Web Bot
Anonymous	2026-06-15 06:51:02 (2 weeks ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 02:09:52 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 47.79.206.11 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 47.79.206.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 22:09:48.150771 2026] [security2:error] [pid 20020:tid 20020] [client 47.79.206.11:14164] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.greatwesternfirearms.com\|F\|2"] [data ".greatwesternfirearms.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.greatwesternfirearms.com"] [uri "/updates/www.greatwesternfirearms.com"] [unique_id "ai9e7OuvTe6o4VZec_0hDwAAAIE"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 01:33:25 (2 weeks ago)	(mod_security) mod_security (id:210730) triggered by 47.79.206.11 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 47.79.206.11 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:33:21.387226 2026] [security2:error] [pid 29320:tid 29320] [client 47.79.206.11:15478] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.phantomkennels.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.phantomkennels.com"] [uri "/paypal.com"] [unique_id "ai9WYX63_J63xNWuSaj8lwAAAC4"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-14 09:20:44 (2 weeks ago)	FortiWeb WAF: 72 attacks detected. Threat Score: 17200. Types: Client Management(36), GEO IP(36). Or ... show more FortiWeb WAF: 72 attacks detected. Threat Score: 17200. Types: Client Management(36), GEO IP(36). Origin: Singapore. show less	Web App Attack
🇫🇷 Sklurk	2026-06-13 18:28:53 (2 weeks ago)	Web App Attack	Web App Attack
🇦🇺 afleventoffice.com.au	2026-06-12 22:05:36 (2 weeks ago)	GET /R1ADELSYDN HTTP/1.1	Web App Attack
🇫🇷 Sklurk	2026-06-12 17:30:41 (2 weeks ago)	Web App Attack	Web App Attack

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 188.166.68.252

🇸🇪 170.168.241.113

🇰🇷 125.142.37.91

🇸🇬 119.28.101.155

🇷🇴 80.94.95.43

🇧🇪 35.190.215.72

🇨🇳 218.13.26.42

🇺🇸 165.154.182.92

🇮🇩 163.7.9.55

🇨🇳 106.63.26.156

🇸🇬 47.84.86.191

🇹🇭 45.194.70.253

🇸🇬 43.156.212.86

🇲🇦 41.141.183.125

🇵🇰 39.55.131.43

🇬🇧 2.57.17.91

🇳🇱 178.16.54.226

🇺🇸 154.217.253.190

🇮🇳 106.192.188.88

🇸🇬 101.47.158.56