JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.253.131.142

47.253.131.142 was found in our database!

This IP was reported 29 times. Confidence of Abuse is 86%: ?

86%

ISP	Alibaba Cloud - US
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibabacloud.com
Country	🇺🇸 United States of America
City	Virginia Beach, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.253.131.142

Whois 47.253.131.142

IP Abuse Reports for 47.253.131.142:

This IP address has been reported a total of 29 times from 19 distinct sources. 47.253.131.142 was first reported on May 25th 2026, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 licen777	2026-06-10 17:26:30 (9 hours ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-10T17:15:42Z and 2026-06-1 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-10T17:15:42Z and 2026-06-10T17:26:30Z show less	Brute-Force SSH
🇫🇷 CA Net, Europe	2026-06-09 14:39:07 (1 day ago)	Jun 9 16:18:52 spado sshd[16221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid= ... show more Jun 9 16:18:52 spado sshd[16221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.253.131.142 Jun 9 16:18:54 spado sshd[16221]: Failed password for invalid user elgg from 47.253.131.142 port 39290 ssh2 Jun 9 16:39:07 spado sshd[16381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.253.131.142 show less	Brute-Force SSH
🇩🇪 licen777	2026-06-09 14:27:35 (1 day ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-09T14:19:43Z and 2026-06-0 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-09T14:19:43Z and 2026-06-09T14:27:34Z show less	Brute-Force SSH
🇫🇮 Finder	2026-06-06 05:53:03 (4 days ago)	Fail2Ban - Brute-force SSH server ...	Brute-Force SSH
🇩🇪 kkeyser	2026-06-06 05:46:04 (4 days ago)	Failed password for invalid user test2 from 47.253.131.142 port 51214 ssh2	Brute-Force SSH
🇨🇭 ScanThe.Net	2026-06-06 05:37:57 (4 days ago)	ID: 3906585010 \| PORT: 34263 \| https://47-253-131-142.scanthe.net	Port Scan
🇩🇪 licen777	2026-06-05 02:44:48 (6 days ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-05T02:28:58Z and 2026-06-0 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-05T02:28:58Z and 2026-06-05T02:44:48Z show less	Brute-Force SSH
🇷🇴 iulianh	2026-06-03 23:42:07 (1 week ago)	2244	Brute-Force SSH
🇭🇺 kranem	2026-06-03 23:40:35 (1 week ago)	Jun 4 01:33:07 RYZEN-0 sshd[974048]: Failed password for invalid user teamwork from 47.253.131.142 ... show more Jun 4 01:33:07 RYZEN-0 sshd[974048]: Failed password for invalid user teamwork from 47.253.131.142 port 32804 ssh2 Jun 4 01:33:09 RYZEN-0 sshd[974048]: Disconnected from invalid user teamwork 47.253.131.142 port 32804 [preauth] Jun 4 01:40:33 RYZEN-0 sshd[1182197]: Invalid user ole from 47.253.131.142 port 43290 Jun 4 01:40:33 RYZEN-0 sshd[1182197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.253.131.142 Jun 4 01:40:35 RYZEN-0 sshd[1182197]: Failed password for invalid user ole from 47.253.131.142 port 43290 ssh2 ... show less	Brute-Force SSH
🇩🇪 licen777	2026-06-02 19:45:57 (1 week ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-02T19:34:07Z and 2026-06-0 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-02T19:34:07Z and 2026-06-02T19:45:57Z show less	Brute-Force SSH
Anonymous	2026-06-02 05:59:57 (1 week ago)	SSH brute force attempt	SSH Brute-Force
🇬🇧 sc user	2026-06-01 18:52:45 (1 week ago)	Fail2Ban sshd: repeated SSH login failures (possible brute-force) detected by automated security too ... show more Fail2Ban sshd: repeated SSH login failures (possible brute-force) detected by automated security tooling. Technical log details and local server identifiers intentionally omitted for privacy. show less	Brute-Force SSH
🇪🇸 robotstxt	2026-06-01 16:00:31 (1 week ago)	2026-06-01T15:56:04.319570+00:00 bcq-pro sshd[532043]: Invalid user test from 47.253.131.142 port 58 ... show more 2026-06-01T15:56:04.319570+00:00 bcq-pro sshd[532043]: Invalid user test from 47.253.131.142 port 58474 2026-06-01T15:59:30.650186+00:00 bcq-pro sshd[532211]: Invalid user leo from 47.253.131.142 port 59248 2026-06-01T16:00:30.229716+00:00 bcq-pro sshd[532262]: Invalid user test from 47.253.131.142 port 38266 ... show less	Brute-Force
🇩🇪 rev-crew.info	2026-05-31 12:34:43 (1 week ago)	2026-05-31T14:27:41.238065+02:00 rev-crew.info sshd-session[967832]: Disconnected from invalid user ... show more 2026-05-31T14:27:41.238065+02:00 rev-crew.info sshd-session[967832]: Disconnected from invalid user mailadmin 47.253.131.142 port 35570 [preauth] 2026-05-31T14:33:10.776557+02:00 rev-crew.info sshd-session[974943]: Connection from 47.253.131.142 port 36360 on 5.9.102.165 port 2244 rdomain "" 2026-05-31T14:33:11.429755+02:00 rev-crew.info sshd-session[974943]: Invalid user user2 from 47.253.131.142 port 36360 2026-05-31T14:33:11.541990+02:00 rev-crew.info sshd-session[974943]: Disconnected from invalid user user2 47.253.131.142 port 36360 [preauth] 2026-05-31T14:33:57.407245+02:00 rev-crew.info sshd-session[975809]: Disconnected from authenticating user root 47.253.131.142 port 43756 [preauth] 2026-05-31T14:34:42.517894+02:00 rev-crew.info sshd-session[976851]: Disconnected from authenticating user root 47.253.131.142 port 51156 [preauth] ... show less	Brute-Force SSH
🇬🇧 sc user	2026-05-31 05:07:40 (1 week ago)	Fail2Ban sshd: repeated SSH login failures (possible brute-force) detected by automated security too ... show more Fail2Ban sshd: repeated SSH login failures (possible brute-force) detected by automated security tooling. Technical log details and local server identifiers intentionally omitted for privacy. show less	Brute-Force SSH

Showing 1 to 15 of 29 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 198.235.24.167

🇺🇸 173.255.223.32

🇫🇷 173.212.217.75

🇮🇩 113.11.179.55

🇫🇷 91.231.89.47

🇩🇪 69.5.169.218

🇩🇪 64.89.163.132

🇨🇳 61.166.141.42

🇳🇱 45.142.193.12

🇰🇷 14.63.196.175

🇬🇧 193.163.125.86

🇰🇿 188.247.203.210

🇧🇷 185.100.215.213

🇺🇸 172.183.117.255

🇩🇪 167.94.146.37

🇮🇳 157.51.223.157

🇫🇮 147.185.133.183

🇺🇸 147.185.132.207

🇮🇩 147.139.136.75

🇻🇳 103.9.204.209