JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.93.34.99

47.93.34.99 was found in our database!

This IP was reported 169 times. Confidence of Abuse is 0%: ?

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.93.34.99

Whois 47.93.34.99

IP Abuse Reports for 47.93.34.99:

This IP address has been reported a total of 169 times from 65 distinct sources. 47.93.34.99 was first reported on March 25th 2023, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 Y Anon	2026-05-09 04:19:00 (1 month ago)		Brute-Force Hacking
🇮🇩 Kencang.ID	2026-02-26 13:13:31 (3 months ago)	Failed Login Attempt 2026-02-26 13:13:31 \| 47.93.34.99 \| Desktop \| Google Chrome \| Beijing, Beijing, ... show more Failed Login Attempt 2026-02-26 13:13:31 \| 47.93.34.99 \| Desktop \| Google Chrome \| Beijing, Beijing, China \| Hangzhou Alibaba Advertising Co \| Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36 show less	Brute-Force FTP Brute-Force
🇺🇸 TPI-Abuse	2026-02-26 13:08:06 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Feb 26 08:08:03.502153 2026] [security2:error] [pid 5614:tid 5614] [client 47.93.34.99:46134] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|lightbender.net\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lightbender.net"] [uri "/wp-json/wp/v2/users"] [unique_id "aaBFs8rO21i938gBEb8ZjgAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 ger-stg-sifi1	2026-02-26 11:56:30 (3 months ago)	(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php	Web App Attack
🇨🇿 huginet	2026-02-25 01:45:36 (3 months ago)	47.93.34.99 - - [25/Feb/2026:02:45:36 +0100] "GET /wp-json/wp/v2/users?per_page=100&_fields=slug HTT ... show more 47.93.34.99 - - [25/Feb/2026:02:45:36 +0100] "GET /wp-json/wp/v2/users?per_page=100&_fields=slug HTTP/1.1" 401 152 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" 47.93.34.99 - - [25/Feb/2026:02:45:36 +0100] "GET /?rest_route=/wp/v2/users&per_page=100&_fields=slug HTTP/1.1" 401 152 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/143.0.0.0 Safari/537.36" ... show less	Web Spam Web App Attack
Anonymous	2026-02-24 20:20:34 (3 months ago)	2026-02-24T22:20:34.668054+02:00 zanati wp(earnosethroat.co.za)[2151957]: Blocked user enumeration a ... show more 2026-02-24T22:20:34.668054+02:00 zanati wp(earnosethroat.co.za)[2151957]: Blocked user enumeration attempt from 47.93.34.99 ... show less	Web App Attack
🇺🇸 TPI-Abuse	2026-02-24 19:00:19 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 14:00:13.760224 2026] [security2:error] [pid 24102:tid 24119] [client 47.93.34.99:45790] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|terihagadorn.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "terihagadorn.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZ31PSsaT6ByvYwMqj4cqgAAAE0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-24 11:03:18 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 06:03:14.082353 2026] [security2:error] [pid 1491:tid 1491] [client 47.93.34.99:46204] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|ronjamestelevision.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ronjamestelevision.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZ2Fcoa9zAylKD9qmD5kVAAAABQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-24 08:03:43 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Feb 24 03:03:38.009392 2026] [security2:error] [pid 12503:tid 12503] [client 47.93.34.99:53874] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|boaredraven.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "boaredraven.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZ1bWhXRrqrDST5zp4jbtwAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 22:41:57 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 17:41:51.874057 2026] [security2:error] [pid 18146:tid 18146] [client 47.93.34.99:52404] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|crep-psych.org\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "crep-psych.org"] [uri "/wp-json/wp/v2/users"] [unique_id "aZzXr9DCWNVWX-QqGmdapwAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 15:43:16 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 10:43:11.680517 2026] [security2:error] [pid 26273:tid 26273] [client 47.93.34.99:37730] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|lusineweb.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "lusineweb.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZx1j1HKIlI4ZTrnQcFu6gAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 05:27:46 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 23 00:27:41.270361 2026] [security2:error] [pid 8545:tid 8545] [client 47.93.34.99:40628] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|flanagan.works\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "flanagan.works"] [uri "/wp-json/wp/v2/users"] [unique_id "aZvlTWDsAiQhu7FlvqqpmQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-23 00:54:01 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 19:53:56.623213 2026] [security2:error] [pid 18045:tid 18045] [client 47.93.34.99:59070] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|speedgo.mx\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "speedgo.mx"] [uri "/wp-json/wp/v2/users"] [unique_id "aZulJOOpzv4JqBY9PQIq7gAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 11:41:34 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 06:41:27.039290 2026] [security2:error] [pid 15845:tid 15890] [client 47.93.34.99:46384] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|heworeblack.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "heworeblack.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZrrZ2NjPKeEavgH0APp4wAAAU8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-22 07:59:24 (3 months ago)	(mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: ... show more (mod_security) mod_security (id:225170) triggered by 47.93.34.99 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Feb 22 02:59:16.898396 2026] [security2:error] [pid 24006:tid 24006] [client 47.93.34.99:37810] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|truthsabouthealthcare.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "truthsabouthealthcare.com"] [uri "/wp-json/wp/v2/users"] [unique_id "aZq3VPOPziRE0ZAXYEBo3gAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 169 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 115.190.249.177

🇺🇸 2602:fb54:1a00::1c3

🇩🇪 209.38.201.35

🇨🇦 198.27.70.29

🇨🇦 159.203.18.21

🇨🇦 85.217.149.19

🇳🇱 45.148.10.183

🇳🇱 141.11.62.84

🇺🇸 109.105.210.77

🇺🇸 66.132.195.126

🇳🇱 45.148.10.141

🇺🇸 23.234.104.44

🇮🇷 5.53.36.31

🇺🇸 209.141.32.198

🇺🇸 147.185.132.14

🇨🇳 113.140.95.250

🇺🇸 100.29.192.112

🇩🇪 91.92.240.232

🇨🇿 82.118.30.66

🇺🇸 66.175.208.166