JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 8.216.9.252

8.216.9.252 was found in our database!

This IP was reported 717 times. Confidence of Abuse is 100%: ?

100%

ISP	Alibaba Cloud (Singapore) Private Limited
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45102
Domain Name	alibabacloud.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 8.216.9.252

Whois 8.216.9.252

IP Abuse Reports for 8.216.9.252:

This IP address has been reported a total of 717 times from 115 distinct sources. 8.216.9.252 was first reported on October 18th 2025, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 zupan	2026-06-06 06:00:49 (14 hours ago)	Blocked by UFW on vps [8135/tcp] \| SPT: 44049 \| TTL: 51 \| LEN: 52 \| TOS: 0x00 • Reported by: github. ... show more Blocked by UFW on vps [8135/tcp] \| SPT: 44049 \| TTL: 51 \| LEN: 52 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-06 04:17:55 (16 hours ago)	Honeypot hit: Unauthorized traffic (25 bytes of payload); 8888 [5] TCP	Port Scan
🇺🇸 MPL	2026-06-06 03:48:31 (16 hours ago)	tcp/2323	Port Scan
🇳🇱 donarev419	2026-06-06 01:09:03 (19 hours ago)	Connection to port 9800 with data transfer. Data preview:	Port Scan Hacking
🇸🇪 NordhTech	2026-06-05 22:00:14 (22 hours ago)	More than 3 malicious connection attempts, trying port(s) 60001/tcp, then blocked from services ...	Port Scan Hacking
🇺🇸 MPL	2026-06-05 13:16:45 (1 day ago)	tcp/6025	Port Scan
🇺🇸 MPL	2026-06-05 12:20:41 (1 day ago)	tcp/888 (2 or more attempts)	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-05 10:50:28 (1 day ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 9000 [5] TCP	Port Scan
🇩🇪 David Ferneding	2026-06-05 09:57:22 (1 day ago)	Blocked by UFW (TCP on 18014) Source port: 46910 TTL: 54 Packet length: 52 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 18014) Source port: 46910 TTL: 54 Packet length: 52 TOS: 0x00 This report (for 8.216.9.252) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-05 06:25:32 (1 day ago)	tcp/9036 (2 or more attempts)	Port Scan
🇺🇸 Starburst SysOp Team	2026-06-05 04:51:20 (1 day ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-mnz6-3)	Hacking Bad Web Bot
🇺🇸 MPL	2026-06-05 04:32:45 (1 day ago)	tcp/7702	Port Scan
🇺🇸 MPL	2026-06-05 01:51:46 (1 day ago)	tcp/2000	Port Scan
🇺🇸 MPL	2026-06-04 20:53:55 (1 day ago)	tcp/9040	Port Scan
🇺🇸 shabi	2026-06-04 20:37:10 (2 days ago)	UFW Blocked [8176/TCP] Source: 8.216.9.252:56441 TTL: 50 Lenth: 52 TOS: 0x00	Port Scan

Showing 1 to 15 of 717 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 48.217.177.228

🇧🇷 45.205.1.72

🇧🇷 45.205.1.3

🇻🇪 154.194.13.18

🇨🇳 115.190.92.70

🇩🇪 91.92.240.232

🇩🇪 51.224.22.113

🇧🇷 45.205.1.243

🇧🇷 45.205.1.28

🇧🇷 45.205.1.23

🇺🇸 13.89.124.211

🇺🇿 213.230.93.5

🇺🇸 207.58.174.162

🇧🇷 205.210.31.184

🇦🇪 165.154.12.175

🇸🇬 156.245.144.121

🇸🇪 155.4.245.222

🇲🇾 47.250.160.88

🇳🇱 45.198.224.7

🇳🇱 45.198.224.4