JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.239.55.74

47.239.55.74 was found in our database!

This IP was reported 98 times. Confidence of Abuse is 100%: ?

100%

ISP	ALIBABA CLOUD - HK
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibabacloud.com
Country	🇭🇰 Hong Kong
City	Hong Kong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.239.55.74

Whois 47.239.55.74

IP Abuse Reports for 47.239.55.74:

This IP address has been reported a total of 98 times from 76 distinct sources. 47.239.55.74 was first reported on May 2nd 2026, and the most recent report was 29 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Starburst SysOp Team	2026-06-28 19:18:00 (29 minutes ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-ams6-1)	Hacking Bad Web Bot
🇸🇪 SkyDancer	2026-06-28 06:11:57 (13 hours ago)	Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blo ... show more Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blocked by SkyDancer Ai(web-X). show less	Hacking Brute-Force
Anonymous	2026-06-27 16:18:17 (1 day ago)	(caddyscan) Scanner path probe from 47.239.55.74 (HK/Hong Kong/-): 5 in the last 3600 secs; Ports: * ... show more (caddyscan) Scanner path probe from 47.239.55.74 (HK/Hong Kong/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: 216.128.134.2 200 2627 47.239.55.74 - - [27/Jun/2026:16:18:07 +0000] "GET /.git/config HTTP/1.1" 216.128.134.2 200 2627 47.239.55.74 - - [27/Jun/2026:16:18:10 +0000] "GET /actuator/logfile HTTP/1.1" 216.128.134.2 200 2627 47.239.55.74 - - [27/Jun/2026:16:18:10 +0000] "GET /.env.bak HTTP/1.1" 216.128.134.2 200 2627 47.239.55.74 - - [27/Jun/2026:16:18:13 +0000] "GET /.env.swo HTTP/1.1" 216.128.134.2 200 2627 47.239.55.74 - - [27/Jun/2026:16:18:13 +0000] "GET /.env HTTP/1.1" show less	Port Scan
🇮🇪 AutosOnShow	2026-06-26 19:27:05 (2 days ago)	blocked for webapp attack \| path requested: /.env \| seen at 2026-06-26 19:26:24.975 \|	Web App Attack
Anonymous	2026-06-26 15:52:54 (2 days ago)	[26/Jun/2026:18:52:54 +0300] 178248917476.700536 47.239.55.74 44888 148.251.76.218 80 [26/Jun/2026:1 ... show more [26/Jun/2026:18:52:54 +0300] 178248917476.700536 47.239.55.74 44888 148.251.76.218 80 [26/Jun/2026:18:52:54 +0300] 178248917440.565873 47.239.55.74 44890 148.251.76.218 80 show less	Web App Attack
🇩🇪 XICTRON	2026-06-26 13:25:05 (2 days ago)	ModSecurity rule violation detected by Fail2Ban	Web App Attack
🇺🇸 masterguru	2026-06-24 18:54:13 (4 days ago)	. Matched phrase "/.env" at REQUEST_URI. (210492-128)	Web App Attack
🇸🇪 SkyDancer	2026-06-24 14:01:03 (4 days ago)	Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blo ... show more Multiple intrusion attempts via http/https on known vulnerable url offsets. Attack automatically blocked by SkyDancer Ai(web-X). show less	Hacking Brute-Force
🇺🇸 MPL	2026-06-24 12:19:32 (4 days ago)	tcp port scan (15 or more attempts)	Port Scan
🇸🇪 adaml1324	2026-06-24 06:16:35 (4 days ago)	Web application exploit probing From server logs: 2026-06-23 16:48:42 (direkt-IP) GET /containers ... show more Web application exploit probing From server logs: 2026-06-23 16:48:42 (direkt-IP) GET /containers/json HTTP/1.1 [444 Blockerad] UA: Mozilla/5.0 (iPhone; CPU iPhone OS 18_3_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.3.1 Mobile/15E148 Safari/604.1 show less	Web App Attack
🇩🇪 Admins@FBN	2026-06-23 19:15:43 (5 days ago)	Threat Host blocked...	Hacking Port Scan
🇹🇭 Sawasdee	2026-06-23 13:45:06 (5 days ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇹🇼 kenny4387	2026-06-23 01:08:00 (5 days ago)	2026/6/23 01:55 SERVER-OTHER Spring Boot Actuator Access Attempt	Web App Attack
🇫🇷 GoodOldTOS	2026-06-22 17:09:20 (6 days ago)	Highly suspect IP	Hacking Web App Attack
🇬🇧 gurnip	2026-06-22 15:06:50 (6 days ago)	Vulnerability probe of page /.env.local, not found on server.	Brute-Force Web App Attack

Showing 1 to 15 of 98 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 207.180.210.205

🇪🇹 196.188.227.120

🇲🇽 187.191.2.214

🇫🇷 185.177.72.52

🇸🇬 172.217.44.218

🇸🇬 168.144.138.148

🇫🇷 90.40.138.52

🇺🇸 66.132.172.218

🇺🇸 34.186.116.81

🇧🇷 200.5.36.68

🇺🇸 172.245.21.30

🇮🇳 122.10.246.240

🇪🇸 93.95.208.38

🇸🇬 43.159.51.254

🇺🇸 34.182.205.193

🇩🇪 34.159.174.59

🇸🇪 155.4.244.169

🇪🇸 46.24.47.94

🇳🇱 45.148.10.121

🇺🇸 35.239.20.76