JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.79.51.54

47.79.51.54 was found in our database!

This IP was reported 79 times. Confidence of Abuse is 59%: ?

59%

ISP	Alibaba Cloud LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibaba-inc.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.79.51.54

Whois 47.79.51.54

IP Abuse Reports for 47.79.51.54:

This IP address has been reported a total of 79 times from 26 distinct sources. 47.79.51.54 was first reported on August 30th 2025, and the most recent report was 20 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 MAGIC	2026-06-15 01:06:17 (20 hours ago)	VM5 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 kosada.com	2026-06-14 19:45:23 (1 day ago)	Web bot: denial-of-service flood: Access denied with code 406 (phase 1)	DDoS Attack Bad Web Bot
🇮🇹 A000Z	2026-06-14 19:43:34 (1 day ago)	Fail2Ban: 47.79.51.54 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 ... show more Fail2Ban: 47.79.51.54 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36 show less	Bad Web Bot
🇨🇦 1gz	2026-06-13 00:32:48 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /lajme/evis-berberi-i-niste-foto-me-emrat-e-kompanive-ne-gare-afera-210-mln-euro-me-2-tendera-zbulime-te-reja-nga-spak-belinda-balluku-kontrollonte-ne-kohe-reale-fituesit-e-projekteve-video/839601/ UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 Sklurk	2026-06-07 05:27:13 (1 week ago)	Web App Attack	Web App Attack
🇵🇹 Information Security	2026-05-30 09:04:14 (2 weeks ago)	Web App Attack	Web App Attack
🇩🇪 Vegascosmetics	2026-05-29 05:49:54 (2 weeks ago)	Kingcopy(AI-IDS):IP is Probing for Multiple vulnerabilities WTF:Banned	Hacking Bad Web Bot
🇵🇹 Information Security	2026-05-28 20:11:20 (2 weeks ago)	Web App Attack	Web App Attack
🇵🇹 Information Security	2026-05-27 00:52:38 (2 weeks ago)	Web App Attack	Web App Attack
🇨🇿 vitex	2026-05-26 04:00:00 (2 weeks ago)	Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically cr ... show more Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically crawled git blame endpoints (/*/blame/commit/<hash>/file) across all commits of public repositories, causing server load of 17+ (normal: <2). Over 71,000 unique IPs involved. Attack window: 2026-05-26 03:30-06:37 UTC. Primary target: PureHTML/purezencart (9933 commits, 5065 files). Each blame request triggers expensive git operations; 30,000+ slow requests per hour. show less	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-23 19:22:34 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 47.79.51.54 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 47.79.51.54 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 15:22:27.702977 2026] [security2:error] [pid 5796:tid 5796] [client 47.79.51.54:59338] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.flavornet.org\|F\|2"] [data ".pdb"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.flavornet.org"] [uri "/info/jmol/pdb/2363-89-5.pdb"] [unique_id "ahH-czh2hpO1Owx2oHAo1gAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 gui-ying233	2026-05-20 00:17:11 (3 weeks ago)	Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Sa ... show more Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36 show less	Bad Web Bot
🇷🇺 Mga Admin	2026-05-09 03:01:39 (1 month ago)	47.79.51.54 - - [09/May/2026:08:57:32 +0700] "GET /sumFREGAT/bychr/chr16/CHD9.RData HTTP/1.1" 403 19 ... show more 47.79.51.54 - - [09/May/2026:08:57:32 +0700] "GET /sumFREGAT/bychr/chr16/CHD9.RData HTTP/1.1" 403 199 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36" ... show less	Web App Attack
🇩🇪 pltcldvlpr	2026-05-03 15:33:30 (1 month ago)	Unidentified crawler ignoring robots.txt: 47.79.51.54 - - [03/May/2026:17:32:58 +0200] "GET /protoco ... show more Unidentified crawler ignoring robots.txt: 47.79.51.54 - - [03/May/2026:17:32:58 +0200] "GET /protocol?id=be_16_53&offset=1750&seq=1637 HTTP/2.0" 200 335356 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36" asn=45102 org="Alibaba (US) Technology Co., Ltd." 47.79.51.54 - - [03/May/2026:17:33:29 +0200] "GET /protocol?id=sn_6_90&offset=2350&seq=2397 HTTP/2.0" 200 345339 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36" asn=45102 org="Alibaba (US) Technology Co., Ltd." 47.79.51.54 - - [03/May/2026:17:33:29 +0200] "GET /protocol?id=ni_15_121&offset=250&seq=298 HTTP/2.0" 200 342210 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36" asn=45102 org="Alibaba (US) Technology Co., Ltd." ... show less	Bad Web Bot
🇳🇱 jjnxpct	2026-05-03 04:06:28 (1 month ago)	Automated security incident from hosting server. ModSecurity blocked suspicious request targeting UR ... show more Automated security incident from hosting server. ModSecurity blocked suspicious request targeting URI: /images/nieuws/2016/160811_nrc_next_mensenrechtenjuriste_in_nederland_ernstig_bedreigd.pdf (Rule ID: 920171) - GET or HEAD Request with Transfer-Encoding show less	Web App Attack

Showing 1 to 15 of 79 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.118

🇵🇰 111.88.6.196

🇺🇸 104.236.83.40

🇮🇪 54.171.52.229

🇺🇸 35.245.75.234

🇧🇪 34.52.163.70

🇨🇳 14.103.48.24

🇺🇸 8.234.171.228

🇨🇳 221.226.17.34

🇩🇪 138.199.236.179

🇬🇧 109.75.161.71

🇳🇱 89.21.67.171

🇬🇧 35.203.210.55

🇧🇪 34.140.3.198

🇺🇸 20.96.179.87

🇪🇸 5.182.83.231

🇧🇩 182.48.80.240

🇺🇸 147.185.132.52

🇭🇰 110.235.23.99

🇮🇩 103.171.85.161