JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.79.206.85

47.79.206.85 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 48%: ?

48%

ISP	Alibaba Cloud LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibaba-inc.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.79.206.85

Whois 47.79.206.85

IP Abuse Reports for 47.79.206.85:

This IP address has been reported a total of 44 times from 15 distinct sources. 47.79.206.85 was first reported on May 23rd 2025, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 kosada.com	2026-06-14 18:26:28 (1 day ago)	Web bot: denial-of-service flood: Access denied with code 406 (phase 1)	DDoS Attack Bad Web Bot
🇨🇦 1gz	2026-06-14 10:15:34 (1 day ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/genar-topalli UA: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Mobile Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-06-14 09:19:46 (1 day ago)	FortiWeb WAF: 54 attacks detected. Threat Score: 19400. Types: Client Management(27), GEO IP(27). Or ... show more FortiWeb WAF: 54 attacks detected. Threat Score: 19400. Types: Client Management(27), GEO IP(27). Origin: Singapore. show less	Web App Attack
🇫🇷 Sklurk	2026-06-13 17:14:51 (2 days ago)	Web App Attack	Web App Attack
Anonymous	2026-06-13 12:40:02 (2 days ago)	Malicious activity detected	Hacking Web App Attack
🇨🇦 1gz	2026-06-13 00:03:55 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/vladimir-topjana UA: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Mobile Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-06-12 17:06:22 (3 days ago)	Malicious activity	Bad Web Bot Web App Attack
🇫🇷 Sklurk	2026-06-12 16:02:01 (3 days ago)	Web App Attack	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 15:23:06 (3 days ago)	(mod_security) mod_security (id:210730) triggered by 47.79.206.85 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 47.79.206.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 11:23:01.362814 2026] [security2:error] [pid 17270:tid 17270] [client 47.79.206.85:20596] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.kithouse.org\|F\|2"] [data ".gordonvantine.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.kithouse.org"] [uri "/www.gordonvantine.com"] [unique_id "aiwkVQVftH4ofjLUMFnVogAAAAo"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-12 09:20:45 (3 days ago)	FortiWeb WAF: 98 attacks detected. Threat Score: 13800. Types: Client Management(49), GEO IP(49). Or ... show more FortiWeb WAF: 98 attacks detected. Threat Score: 13800. Types: Client Management(49), GEO IP(49). Origin: Singapore. show less	Web App Attack
Anonymous	2026-06-12 02:16:02 (3 days ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 11:15:12 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 47.79.206.85 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 47.79.206.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 07:15:07.604072 2026] [security2:error] [pid 18208:tid 18208] [client 47.79.206.85:40144] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.copanmaya.org\|F\|2"] [data ".googletagmanager.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.copanmaya.org"] [uri "/mayans/www.googletagmanager.com"] [unique_id "aiqYuyHvZYso32Fnpqse0wAAABo"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 10:25:56 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 47.79.206.85 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 47.79.206.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 06:25:51.653299 2026] [security2:error] [pid 4829:tid 4829] [client 47.79.206.85:21602] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.avaliantlife.com\|F\|2"] [data ".avaliantlife.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.avaliantlife.com"] [uri "/2014/03/www.avaliantlife.com"] [unique_id "aiqNL6_WRaWSmMELyuf_LgAAACI"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 05:18:35 (4 days ago)	(mod_security) mod_security (id:210730) triggered by 47.79.206.85 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 47.79.206.85 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 01:18:30.051637 2026] [security2:error] [pid 6787:tid 6787] [client 47.79.206.85:33004] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|csme-eprr.com\|F\|2"] [data ".db"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "csme-eprr.com"] [uri "/eprr/gifs/Thumbs.db"] [unique_id "aipFJpJu8WJ9QudvE9bALQAAAAM"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Sklurk	2026-06-11 00:23:11 (4 days ago)	Web App Attack	Web App Attack

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.113

🇩🇪 46.16.223.190

🇬🇧 217.154.45.93

🇧🇷 205.210.31.150

🇨🇳 192.144.140.170

🇲🇽 187.191.2.214

🇭🇰 152.32.189.59

🇫🇮 147.185.133.117

🇩🇪 104.28.166.184

🇺🇸 104.23.195.14

🇮🇳 103.160.172.243

🇳🇱 91.92.40.12

🇨🇦 85.217.149.13

🇫🇷 85.217.140.32

🇺🇸 2607:f8b0:4023:100f::128

🇧🇷 205.210.31.253

🇷🇺 176.211.42.202

🇳🇱 45.148.10.151

🇺🇸 34.30.247.170

🇳🇱 195.178.110.30