JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.82.13.2

47.82.13.2 was found in our database!

This IP was reported 99 times. Confidence of Abuse is 56%: ?

56%

ISP	Alibaba Cloud LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibaba-inc.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.82.13.2

Whois 47.82.13.2

IP Abuse Reports for 47.82.13.2:

This IP address has been reported a total of 99 times from 31 distinct sources. 47.82.13.2 was first reported on February 15th 2025, and the most recent report was 12 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Vegascosmetics	2026-06-18 09:53:20 (12 hours ago)	(Kingcopy.org-AI-IDS-Report):IP automatically blocked after suspicious activity. Vegas Security	DDoS Attack Hacking Exploited Host
Anonymous	2026-06-16 15:30:08 (2 days ago)	Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) ... show more Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) employed by Angara Technologies Group (Explicitly identified himself as enemy a week before attack began) \| Attack Signature Blocked: /wishlist/index/add/product/12339/form_key/c6MxqoGYCtUd2bCW/ \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 \| (Magento Site) show less	Hacking Bad Web Bot Web App Attack
🇮🇹 A000Z	2026-06-16 08:29:19 (2 days ago)	Fail2Ban: 47.82.13.2 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 ( ... show more Fail2Ban: 47.82.13.2 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36 show less	Bad Web Bot
🇺🇸 kosada.com	2026-06-14 21:44:41 (4 days ago)	Web bot: denial-of-service flood: Access denied with code 406 (phase 1)	DDoS Attack Bad Web Bot
🇮🇹 A000Z	2026-06-14 17:56:40 (4 days ago)	Fail2Ban: 47.82.13.2 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 ( ... show more Fail2Ban: 47.82.13.2 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36 show less	Bad Web Bot
Anonymous	2026-06-09 21:02:48 (1 week ago)	Repeated automated scraping and high-volume requests against a secured web server following multiple ... show more Repeated automated scraping and high-volume requests against a secured web server following multiple rate limit violations. show less	Web App Attack
🇮🇹 A000Z	2026-06-08 19:40:24 (1 week ago)	Fail2Ban: 47.82.13.2 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 ( ... show more Fail2Ban: 47.82.13.2 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/147.0.0.0 Safari/537.36 show less	Bad Web Bot
🇫🇷 Sklurk	2026-06-07 10:31:48 (1 week ago)	Web App Attack	Web App Attack
🇮🇹 A000Z	2026-06-05 05:58:06 (1 week ago)	Fail2Ban: 47.82.13.2 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 ( ... show more Fail2Ban: 47.82.13.2 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36 show less	Bad Web Bot
🇧🇷 Sipo Chutão	2026-05-31 03:00:01 (2 weeks ago)	api/articles	Hacking
🇵🇹 Information Security	2026-05-29 12:00:35 (2 weeks ago)	Web App Attack	Web App Attack
🇨🇿 vitex	2026-05-26 04:00:00 (3 weeks ago)	Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically cr ... show more Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically crawled git blame endpoints (/*/blame/commit/<hash>/file) across all commits of public repositories, causing server load of 17+ (normal: <2). Over 71,000 unique IPs involved. Attack window: 2026-05-26 03:30-06:37 UTC. Primary target: PureHTML/purezencart (9933 commits, 5065 files). Each blame request triggers expensive git operations; 30,000+ slow requests per hour. show less	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-23 17:53:14 (3 weeks ago)	(mod_security) mod_security (id:210730) triggered by 47.82.13.2 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:210730) triggered by 47.82.13.2 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 23 13:53:09.356093 2026] [security2:error] [pid 28310:tid 28310] [client 47.82.13.2:52564] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "4"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.flavornet.org\|F\|2"] [data ".pdb"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.flavornet.org"] [uri "/info/jmol/pdb/3681-71-8.pdb"] [unique_id "ahHphRPi4LmdAOPch_k14QAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 A000Z	2026-05-15 04:54:35 (1 month ago)	Fail2Ban: 47.82.13.2 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 ( ... show more Fail2Ban: 47.82.13.2 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36 show less	Bad Web Bot
🇩🇪 milcraft.nl	2026-05-11 19:07:25 (1 month ago)	Suspicious WooCommerce query combination detected. Not default available on websites. Matched combi ... show more Suspicious WooCommerce query combination detected. Not default available on websites. Matched combi patterns: filter_, add-to-cart=, orderby=, product_count=. Activity is consistent with high-volume request abuse. show less	DDoS Attack Web App Attack

Showing 1 to 15 of 99 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇾 149.118.148.214

🇷🇴 185.100.87.136

🇮🇩 182.8.67.223

🇺🇸 147.185.132.210

🇹🇭 118.194.251.17

🇨🇳 61.140.113.18

🇧🇪 198.235.24.243

🇺🇿 170.168.6.72

🇮🇳 74.125.16.186

🇮🇳 66.116.205.19

🇳🇱 45.148.10.183

🇨🇳 220.154.143.136

🇨🇳 183.164.240.222

🇨🇳 180.76.112.91

🇨🇳 110.249.202.239

🇺🇸 85.239.234.245

🇺🇸 35.231.37.79

🇧🇷 205.210.31.228

🇬🇧 193.163.125.175

🇪🇬 154.182.203.52