JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.79.207.180

47.79.207.180 was found in our database!

This IP was reported 44 times. Confidence of Abuse is 44%: ?

44%

ISP	Alibaba Cloud LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibaba-inc.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.79.207.180

Whois 47.79.207.180

IP Abuse Reports for 47.79.207.180:

This IP address has been reported a total of 44 times from 15 distinct sources. 47.79.207.180 was first reported on April 15th 2025, and the most recent report was 6 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 1gz	2026-06-13 07:11:06 (6 hours ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/mevlan-shanaj UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-06-13 01:29:01 (12 hours ago)	Malicious activity detected	Hacking Web App Attack
🇫🇷 Sklurk	2026-06-13 00:19:19 (13 hours ago)	Web App Attack	Web App Attack
🇺🇸 kosada.com	2026-06-12 19:04:18 (18 hours ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
Anonymous	2026-06-12 09:22:45 (1 day ago)	FortiWeb WAF: 70 attacks detected. Threat Score: 11000. Types: Client Management(35), GEO IP(35). Or ... show more FortiWeb WAF: 70 attacks detected. Threat Score: 11000. Types: Client Management(35), GEO IP(35). Origin: Singapore. show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 02:20:48 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 47.79.207.180 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 47.79.207.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 22:20:41.539486 2026] [security2:error] [pid 9120:tid 9120] [client 47.79.207.180:50688] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|smogsandiego.com\|F\|2"] [data ".starsmogsandiego.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "smogsandiego.com"] [uri "/www.StarSmogSanDiego.com"] [unique_id "aits-U85Quz-iv1FivusBAAAAAc"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 00:15:54 (1 day ago)	(mod_security) mod_security (id:210730) triggered by 47.79.207.180 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 47.79.207.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 20:15:50.151887 2026] [security2:error] [pid 28777:tid 28794] [client 47.79.207.180:31120] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|baronannaly.com\|F\|2"] [data ".fiefblondel.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "baronannaly.com"] [uri "/www.FiefBlondel.com"] [unique_id "aitPtmzsqttoQB9AyqX9rwAAAE8"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-11 12:08:25 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 47.79.207.180 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 47.79.207.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 11 08:08:19.709814 2026] [security2:error] [pid 16460:tid 16460] [client 47.79.207.180:5682] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.register-yacht-langkawi.com\|F\|2"] [data ".register-yacht-langkawi.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.register-yacht-langkawi.com"] [uri "/no/www.register-yacht-langkawi.com"] [unique_id "aiqlMwS4QrxHRdSlUTAb8AAAAAU"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-10 17:27:18 (2 days ago)	Malicious activity detected	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-10 16:19:14 (2 days ago)	(mod_security) mod_security (id:210730) triggered by 47.79.207.180 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210730) triggered by 47.79.207.180 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 10 12:19:06.320752 2026] [security2:error] [pid 15591:tid 15591] [client 47.79.207.180:34200] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.naturalacu.com\|F\|2"] [data ".naturalacu.com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.naturalacu.com"] [uri "/typical-cases/www.naturalacu.com"] [unique_id "aimOehSyZLw3QCLQJykGKAAAAAY"], referer: https://www.google.com/ show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 Sklurk	2026-01-17 02:00:28 (4 months ago)	Web App Attack	Web App Attack
🇫🇷 Sklurk	2026-01-15 15:09:41 (4 months ago)	Web App Attack	Web App Attack
🇮🇹 VHosting	2026-01-08 11:36:26 (5 months ago)	Detected attack and reported by a human	DDoS Attack Brute-Force Bad Web Bot Exploited Host Web App Attack SSH
🇺🇸 kosada.com	2026-01-05 19:05:34 (5 months ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇨🇦 1gz	2025-12-12 17:50:14 (6 months ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /lajme/akep UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 44 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 194.50.235.156

🇺🇸 172.253.251.151

🇻🇳 165.154.105.128

🇺🇸 162.216.149.71

🇺🇸 143.244.175.206

🇳🇱 81.19.216.121

🇩🇪 69.5.169.166

🇰🇷 222.107.156.227

🇫🇷 92.205.57.72

🇬🇧 87.106.65.126

🇺🇸 67.227.108.80

🇨🇳 27.128.171.39

🇺🇸 192.178.115.85

🇸🇬 188.166.178.186

🇺🇸 150.107.36.98

🇱🇹 81.30.98.142

🇺🇸 52.38.104.26

🇳🇱 45.142.193.8

🇺🇸 20.39.62.227

🇧🇬 5.188.206.46