JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.115.230.206

47.115.230.206 was found in our database!

This IP was reported 88 times. Confidence of Abuse is 100%: ?

100%

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.115.230.206

Whois 47.115.230.206

IP Abuse Reports for 47.115.230.206:

This IP address has been reported a total of 88 times from 46 distinct sources. 47.115.230.206 was first reported on April 24th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇦 Arpan Sen	2026-06-28 18:19:57 (1 day ago)	Network port/address scan: probed 1 distinct port(s) across 64 host(s); 100% of connections received ... show more Network port/address scan: probed 1 distinct port(s) across 64 host(s); 100% of connections received no service (SYN, no reply) -- passive network sensor. show less	Port Scan
🇯🇵 VXG-NET	2026-06-28 02:27:01 (1 day ago)	port=6379, indicator_type=scan	Port Scan
🇨🇳 pengpeng	2026-06-28 01:42:22 (1 day ago)	monitor: on VM-0-7-ubuntu \| port: 6379 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter	Port Scan
🇩🇪 heyzg	2026-06-27 00:51:00 (3 days ago)	HTTP Malware Staging (observed): 26 cmds, 2 HTTP, 14s; attempted remote file download & cron persist ... show more HTTP Malware Staging (observed): 26 cmds, 2 HTTP, 14s; attempted remote file download & cron persistence; payload: hxxp://194[.]110[.]247[.]97/ep9TS2/ndt[.]sh, hxxp://103[.]79[.]77[.]16/ep9TS2/ndt[.]sh; external IP: 194[.]110[.]247[.]97, 103[.]79[.]77[.]16 show less	Hacking Exploited Host SSH
🇨🇦 design2web.ca	2026-06-26 07:11:52 (3 days ago)	[UniFi FW] Redis unauthorized access attempt on port 6379 (Redis) \| Policy: Region Blocking \| Proto: ... show more [UniFi FW] Redis unauthorized access attempt on port 6379 (Redis) \| Policy: Region Blocking \| Proto: TCP \| Src: 47.115.230.206:39512 \| SrcRegion: CN \| Detected: 2026-06-26 05:41:05 UTC \| ISP: Addresses CNNIC \| D2W UniFi AbuseIPDB Reporter v2 show less	Port Scan
🇨🇦 Slackin' Jack	2026-06-26 05:21:11 (3 days ago)	Triggered honeypot on port 6379. (47.115.230.206)	Port Scan
Anonymous	2026-06-26 02:06:57 (3 days ago)	2026-06-26T03:06:56.223070+01:00 vps kernel: [44179761.181125] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-26T03:06:56.223070+01:00 vps kernel: [44179761.181125] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=47.115.230.206 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=41 ID=8824 DF PROTO=TCP SPT=57042 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇬🇧 andypiper	2026-06-26 01:03:00 (3 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇩🇪 guldkage	2026-06-26 01:00:43 (4 days ago)	Unauthorized connection attempt detected from IP address 47.115.230.206 to port 6379 (ger-02) [REDIS ... show more Unauthorized connection attempt detected from IP address 47.115.230.206 to port 6379 (ger-02) [REDIS] show less	Exploited Host
🇫🇷 EDSL	2026-06-26 00:34:17 (4 days ago)	[SRV-VPN1] Blocked by SysWarden Firewall (Database/Cache Attack)	Brute-Force Port Scan Hacking
🇳🇱 VMHeaven.io	2026-06-26 00:20:26 (4 days ago)	Blocked by UFW [6379/tcp] Source port: 58732 TTL: 42 Packet length: 60	Port Scan
🇧🇷 diego	2026-06-26 00:11:26 (4 days ago)	[rede-164-29] 06/25/2026-21:11:26.359858, 47.115.230.206, Protocol: 6, ET CINS Active Threat Intelli ... show more [rede-164-29] 06/25/2026-21:11:26.359858, 47.115.230.206, Protocol: 6, ET CINS Active Threat Intelligence Poor Reputation IP group 70 show less	Hacking
🇳🇱 COMPLEX	2026-06-26 00:04:47 (4 days ago)	Unsolicited TCP traffic \| Action: DROP \| Port 6379	Brute-Force
🇺🇸 donarev419	2026-06-24 01:27:12 (5 days ago)	Connection to port 6379 with data transfer. Data preview: *1 $4 info	Port Scan Hacking
🇳🇵 radheykrishna.com.np	2026-06-23 12:17:40 (6 days ago)	Jun 23 18:02:40 kernel: [5706912.807838] [UFW BLOCK] IN=ens160 OUT= SRC=47.115.230.206 LEN=60 TOS=0x ... show more Jun 23 18:02:40 kernel: [5706912.807838] [UFW BLOCK] IN=ens160 OUT= SRC=47.115.230.206 LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=12312 DF PROTO=TCP SPT=53808 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan

Showing 1 to 15 of 88 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 186.215.191.192

🇨🇳 81.70.202.6

🇳🇱 51.158.173.124

🇺🇸 45.156.129.91

🇳🇱 34.158.159.163

🇳🇵 203.9.210.215

🇹🇼 198.235.24.122

🇺🇸 195.184.76.18

🇸🇬 194.233.81.74

🇷🇺 193.233.88.40

🇧🇷 191.177.179.34

🇱🇹 185.169.4.15

🇦🇷 179.60.228.74

🇺🇸 172.174.235.159

🇻🇳 171.231.188.177

🇧🇷 170.0.61.70

🇸🇬 147.93.157.252

🇩🇪 142.93.163.177

🇨🇳 123.233.232.150

🇹🇭 110.164.228.242