AbuseIPDB » 47.89.254.25

47.89.254.25 was found in our database!

This IP was reported 8,876 times. Confidence of Abuse is 100%: ?

100%

ISP	Alibaba Cloud - US
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibabacloud.com
Country	United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 47.89.254.25

Whois 47.89.254.25

IP Abuse Reports for 47.89.254.25:

This IP address has been reported a total of 8,876 times from 204 distinct sources. 47.89.254.25 was first reported on June 20th 2024, and the most recent report was 28 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Tamsweb	2025-07-19 07:58:03 (28 minutes ago)	Unauthorized connection attempt or scan from 47.89.254.25 on port 16544 ...	Port Scan
mkaraki	2025-07-19 05:55:31 (2 hours ago)	1752904528 # Service_probe # SIGNATURE_SEND # source_ip:47.89.254.25 # dst_port:28080 ...	Port Scan
ATV	2025-07-19 03:05:00 (5 hours ago)	Unsolicited connection attempts to port 3128	Port Scan
sefinek.net	2025-07-19 02:13:40 (6 hours ago)	Blocked by UFW on PL02 [12341/tcp] Source port: 32238 TTL: 53 Packet length: 52<br ... show moreBlocked by UFW on PL02 [12341/tcp] Source port: 32238 TTL: 53 Packet length: 52 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
pamircil	2025-07-19 02:07:23 (6 hours ago)	🍯 WinnieThePooh Honeypot : Detected Port Scanning (tcp/30001) 💀	Port Scan Hacking Brute-Force
avsisp	2025-07-19 00:14:24 (8 hours ago)	Honeypot IP Hit to Unused IP (https://github.com/AVSISP/honeypot)	Port Scan
MPL	2025-07-18 21:55:49 (10 hours ago)	tcp/8881	Port Scan
MPL	2025-07-18 21:55:49 (10 hours ago)	tcp/8881	Port Scan
StatsMe	2025-07-18 21:18:01 (11 hours ago)	2025-07-18T19:38:10.875053+0300 ET CINS Active Threat Intelligence Poor Reputation IP group 63	Port Scan Hacking Spoofing Brute-Force
RAP	2025-07-18 19:07:35 (13 hours ago)	2025-07-18 19:07:35 UTC Unauthorized activity to TCP port 8089. Web App	Port Scan Web App Attack
MPL	2025-07-18 17:45:40 (14 hours ago)	tcp/12313	Port Scan
MPL	2025-07-18 17:45:40 (14 hours ago)	tcp/12313	Port Scan
Study Bitcoin 🤗	2025-07-18 17:39:05 (14 hours ago)	Port probe to tcp/3120 [srv136]	Port Scan
Study Bitcoin 🤗	2025-07-18 17:24:19 (15 hours ago)	Port probe to tcp/28080 [srv127]	Port Scan
iNetWorker	2025-07-18 17:20:19 (15 hours ago)	firewall-block, port(s): 5599/tcp	Port Scan

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩