Check an IP Address, Domain Name, Subnet, or ASN

8.211.47.212 was found in our database!

$ whois 8.211.47.212

country·🇩🇪 Germany

city·Frankfurt am Main

isp·Alibaba US Technology Co., Ltd.

asn·AS45102

network·Standard

$ sikker risk 8.211.47.212scoring →

confidence

69%High

first_seen·Feb 13, 2026

last_seen·2h ago

sessions·21

events·21

$ sikker protocols 8.211.47.212

SIP

9 / 9

SMB

4 / 4

HTTPS

3 / 3

HTTP

2 / 2

RTSP

2 / 2

MYSQL

1 / 1

$ sikker summary 8.211.47.212

8.211.47.212 has a threat confidence score of 69%. This IP address from Germany (AS45102, Alibaba US Technology Co., Ltd.) has been observed in 21 honeypot sessions targeting SIP, SMB, HTTPS, HTTP, RTSP and 1 other protocols. First observed on February 13, 2026, most recently active April 19, 2026.

$ sikker behaviors 8.211.47.212catalog →

mediumMysql User Schema Table Footprint Reconnaissance1x

Attacker enumerates non-system MySQL database schemas and associated table statistics (row counts, storage size, average row size) via metadata queries against the TABLES catalog. This activity indicates targeted discovery of accessible application datasets and data volume profiling to prioritize exfiltration, credential harvesting, or destructive actions against high-value databases.

lowRtsp Options Probe2x

Client sends RTSP OPTIONS requests to check supported methods and confirm that an RTSP service is exposed, then disconnects without attempting authentication or stream setup. This pattern is typically associated with automated reconnaissance or internet-wide scanning rather than active stream access.

infoHttp Root Path Request2x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

$ sikker primitives 8.211.47.212

rtsp_options2 http_method_get2 https_path_root1 mysql_select_tables_metadata_excluding_system_schemas1

$ sikker related 8.211.47.212

🇩🇪·More threats fromGermany→AS·More threats fromAlibaba US Technology Co., Ltd.→SIP·More threats targetingSIP→SMB·More threats targetingSMB→HTTP·More threats targetingHTTPS→HTTP·More threats targetingHTTP→RTSP·More threats targetingRTSP→MYSQ·More threats targetingMYSQL→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
47.242.212.253	76%	3,252
47.238.67.1	97%	94
47.239.209.50	88%	28
47.86.9.16	81%	48,390
47.239.240.205	93%	72

IP Address	Confidence	Events
85.215.204.17	94%	1,121
45.65.112.108	86%	2,945
87.98.242.75	97%	28,118
216.24.213.226	88%	15,865
217.216.108.129	86%	2,416