JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 47.80.59.244

47.80.59.244 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 73%: ?

73%

ISP	Alibaba Cloud LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibaba-inc.com
Country	🇰🇷 Korea (the Republic of)
City	Seoul, Seoul

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 47.80.59.244

Whois 47.80.59.244

IP Abuse Reports for 47.80.59.244:

This IP address has been reported a total of 15 times from 12 distinct sources. 47.80.59.244 was first reported on June 25th 2026, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 kronos	2026-06-29 07:23:12 (21 hours ago)	IDS: FlowIntel scan-like source \| SID:9900001 \| session_sigs:3 \| alerts5m:24	Port Scan
🇩🇪 ghostwarriors	2026-06-29 04:50:29 (1 day ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇩🇪 ksol-hostmaster	2026-06-29 04:47:31 (1 day ago)	Jun 29 06:47:31 ksol sshd-session[38413]: Invalid user :ANONYMIZED: from 47.80.59.244 port 45058 ...	SSH
🇳🇱 DonAtari	2026-06-29 04:17:25 (1 day ago)	DShield firewall scan - TCP to port 2222	Brute-Force SSH
🇺🇸 MPL	2026-06-28 23:35:34 (1 day ago)	tcp/2222 (8 or more attempts)	Port Scan
🇭🇰 sandra361	2026-06-28 18:37:23 (1 day ago)	Brute-force detected: 10 attempts across 1 ports (2222). \| Evidence: REAPER_TARPIT: IN=eth0 SRC=47.8 ... show more Brute-force detected: 10 attempts across 1 ports (2222). \| Evidence: REAPER_TARPIT: IN=eth0 SRC=47.80.59.244 LEN=60 TOS=0x14 PREC=0x00 TTL=56 ID=8659 DF PROTO=TCP SPT=50940 DPT=2222 WINDOW=29200 RES=0x00 SYN URGP=0 show less	Brute-Force
🇺🇸 xmission.com	2026-06-28 01:21:04 (2 days ago)	Blocked by UFW (TCP on 2222) Source port: 36662 TTL: 55 Packet length: 60 TOS: 0x14 This report (fo ... show more Blocked by UFW (TCP on 2222) Source port: 36662 TTL: 55 Packet length: 60 TOS: 0x14 This report (for 47.80.59.244) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-06-28 00:22:17 (2 days ago)	Blocked by UFW (TCP on 2222) Source port: 33456 TTL: 55 Packet length: 60 TOS: 0x14 This report (fo ... show more Blocked by UFW (TCP on 2222) Source port: 33456 TTL: 55 Packet length: 60 TOS: 0x14 This report (for 47.80.59.244) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇧🇪 sid3windr	2026-06-27 14:06:13 (2 days ago)	SSH port scan (Tarpitted for 30s, wasted 12B)	Port Scan SSH
Anonymous	2026-06-27 03:59:07 (3 days ago)	Port scan on port 2222/TCP to unused IP	Port Scan
🇺🇸 MPL	2026-06-27 01:33:24 (3 days ago)	tcp/2222 (4 or more attempts)	Port Scan
🇺🇸 rellim.com	2026-06-27 00:11:34 (3 days ago)	Jun 26 17:11:30 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08 ... show more Jun 26 17:11:30 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08:00 SRC=47.80.59.244 DST=204.17.205.254 LEN=60 TOS=0x14 PREC=0x00 TTL=53 ID=13668 DF PROTO=TCP SPT=33304 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 26 17:11:31 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08:00 SRC=47.80.59.244 DST=204.17.205.254 LEN=60 TOS=0x14 PREC=0x00 TTL=53 ID=13669 DF PROTO=TCP SPT=33304 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 26 17:11:33 alice kernel: HACK IN=enp3s0 OUT=enp1s0f1 MAC=68:05:ca:2e:ce:bc:00:24:dc:78:a0:01:08:00 SRC=47.80.59.244 DST=204.17.205.254 LEN=60 TOS=0x14 PREC=0x00 TTL=53 ID=13670 DF PROTO=TCP SPT=33304 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇹🇷 Threat.live	2026-06-25 20:25:02 (4 days ago)	Threat.live: Brute Force	Brute-Force
🇩🇪 formality	2026-06-25 15:46:06 (4 days ago)	Invalid user NL5xUDpV2xRa from 47.80.59.244 port 35640	Brute-Force SSH
🇩🇪 formality	2026-06-25 15:26:26 (4 days ago)	Invalid user NL5xUDpV2xRa from 47.80.59.244 port 42014	Brute-Force SSH

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 189.6.12.227

🇬🇧 188.240.59.7

🇧🇬 185.253.160.7

🇷🇺 176.112.164.236

🇺🇸 165.154.182.53

🇩🇪 18.194.18.151

🇬🇧 193.176.29.13

🇧🇷 187.57.197.6

🇺🇸 157.230.141.197

🇲🇾 115.132.13.133

🇵🇭 112.208.107.105

🇸🇬 103.189.235.93

🇧🇩 103.118.78.143

🇺🇸 45.134.140.10

🇺🇸 44.206.68.168

🇯🇵 8.221.139.48

🇰🇷 218.51.148.194

🇹🇼 198.235.24.35

🇨🇳 180.100.217.164

🇩🇪 157.230.116.14