JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.82.14.249

47.82.14.249 was found in our database!

This IP was reported 112 times. Confidence of Abuse is 52%: ?

52%

ISP	Alibaba Cloud LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibaba-inc.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.82.14.249

Whois 47.82.14.249

IP Abuse Reports for 47.82.14.249:

This IP address has been reported a total of 112 times from 34 distinct sources. 47.82.14.249 was first reported on February 14th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 1gz	2026-06-18 08:56:37 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/2 (GET method) Endpoint: /lajme/diber-reshjet-e-bores-pushtojne-zonat-malore-veshtiresi-ne-qarkullim-pas-ngricave-dhe-akullit/850220/ UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/141.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇮🇹 A000Z	2026-06-17 03:12:42 (3 days ago)	Fail2Ban: 47.82.14.249 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 ... show more Fail2Ban: 47.82.14.249 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36 show less	Bad Web Bot
Anonymous	2026-06-16 17:15:40 (4 days ago)	Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) ... show more Large-scale coordinated botnet (200+k IPs). Attacker: mikhail-smirnov-79830323 (LinkedIn/profile ID) employed by Angara Technologies Group (Explicitly identified himself as enemy a week before attack began) \| Rate limit bad session: 3 in 2s \| UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/144.0.0.0 Safari/537.36 \| (Magento Site) show less	DDoS Attack Bad Web Bot
🇺🇸 kosada.com	2026-06-14 18:08:50 (6 days ago)	Web bot: denial-of-service flood: Access denied with code 406 (phase 1)	DDoS Attack Bad Web Bot
🇮🇹 A000Z	2026-06-12 11:44:35 (1 week ago)	Fail2Ban: 47.82.14.249 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 ... show more Fail2Ban: 47.82.14.249 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 show less	Bad Web Bot
🇫🇷 Sklurk	2026-06-07 03:59:34 (1 week ago)	Web App Attack	Web App Attack
🇩🇪 Vegascosmetics	2026-06-01 04:00:09 (2 weeks ago)	Kingcopy(AI-IDS) Report: IP 47.82.14.249 wurde nach 3 Angriffsversuchen automatisch geblockt. Patter ... show more Kingcopy(AI-IDS) Report: IP 47.82.14.249 wurde nach 3 Angriffsversuchen automatisch geblockt. Pattern: High Priority: ChangeCountry - Vegas Cosmetics Security System show less	DDoS Attack Hacking Bad Web Bot
🇵🇹 Information Security	2026-05-30 18:03:45 (3 weeks ago)	Web App Attack	Web App Attack
🇵🇹 Information Security	2026-05-28 22:10:03 (3 weeks ago)	Web App Attack	Web App Attack
🇵🇹 Information Security	2026-05-26 22:56:29 (3 weeks ago)	Web App Attack	Web App Attack
🇨🇿 vitex	2026-05-26 04:00:00 (3 weeks ago)	Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically cr ... show more Automated distributed scraping of Forgejo git server (git.vitexsoftware.com). Bots systematically crawled git blame endpoints (/*/blame/commit/<hash>/file) across all commits of public repositories, causing server load of 17+ (normal: <2). Over 71,000 unique IPs involved. Attack window: 2026-05-26 03:30-06:37 UTC. Primary target: PureHTML/purezencart (9933 commits, 5065 files). Each blame request triggers expensive git operations; 30,000+ slow requests per hour. show less	DDoS Attack Bad Web Bot
🇺🇸 kosada.com	2026-05-23 13:28:39 (4 weeks ago)	Web bot: DDoS	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-12 10:55:06 (1 month ago)	(mod_security) mod_security (id:210730) triggered by 47.82.14.249 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210730) triggered by 47.82.14.249 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue May 12 06:55:01.820441 2026] [security2:error] [pid 14350:tid 14350] [client 47.82.14.249:51860] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|www.med-engineering.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "www.med-engineering.com"] [uri "/stick.com"] [unique_id "agMHBTDWxRuYqskUhsYKXAAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-05-05 00:17:18 (1 month ago)	host-ipset-guard auto-report; server=server.osotir.org; rule=httpd-storefront-action-swarm; count=31 ... show more host-ipset-guard auto-report; server=server.osotir.org; rule=httpd-storefront-action-swarm; count=31/30; duration=72h; scope=server.osotir.org; country=SG; sites=osotir.org; samples=site_wide=true \| distinct_ips=29 \| action_types=2 show less	Bad Web Bot Web App Attack
🇩🇪 pltcldvlpr	2026-05-03 19:26:04 (1 month ago)	Unidentified crawler ignoring robots.txt: 47.82.14.249 - - [03/May/2026:21:25:01 +0200] "GET /protoc ... show more Unidentified crawler ignoring robots.txt: 47.82.14.249 - - [03/May/2026:21:25:01 +0200] "GET /protocol?id=th_4_71&offset=850&seq=912 HTTP/2.0" 200 348095 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36" asn=45102 org="Alibaba (US) Technology Co., Ltd." 47.82.14.249 - - [03/May/2026:21:25:19 +0200] "GET /protocol?id=be_18_64&offset=2300&seq=2100 HTTP/2.0" 200 343048 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36" asn=45102 org="Alibaba (US) Technology Co., Ltd." 47.82.14.249 - - [03/May/2026:21:26:03 +0200] "GET /protocol?id=be_18_59&offset=650&seq=913 HTTP/2.0" 200 346301 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/145.0.0.0 Safari/537.36" asn=45102 org="Alibaba (US) Technology Co., Ltd." ... show less	Bad Web Bot

Showing 1 to 15 of 112 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 92.154.95.236

🇨🇦 85.217.149.71

🇸🇬 85.203.21.159

🇺🇸 73.250.159.45

🇹🇼 198.235.24.55

🇺🇸 107.167.34.125

🇹🇼 106.107.219.80

🇺🇸 98.93.244.175

🇨🇦 85.217.149.38

🇺🇸 20.65.154.130

🇧🇷 205.210.31.249

🇨🇳 180.140.129.29

🇳🇱 94.168.94.166

🇺🇸 54.208.33.209

🇨🇳 222.142.249.170

🇺🇸 216.25.89.126

🇹🇼 111.70.15.138

🇺🇸 62.132.18.53

🇰🇷 59.12.212.38

🇹🇿 41.93.28.9