47.238.234.93
IP Intelligence Briefing: 47.238.234.93
Date: 2026-06-11
---
**1. Core Profile**
- Risk Score: Moderate (50/100)
- Ownership: Alibaba Cloud HK (ASN 45102)
- Geolocation: Hong Kong (HK), but geolocation data shows inferred US origin (latitude 39.83, longitude -98.58). Accuracy radius: 2500 km.
- Network Role: CloudCompute infrastructure (hosted, no public services).
- Threat Indicators: No active malware, phishing, or spam signals.
---
**2. Observation History**
- Recent Activity (Last 30 Days):
- 13 observations, including 8 threat feed listings (confidence: 0.30โ0.85).
- Notable:
- Listed in 8+ threat feeds (categories: "high" severity).
- BGP prefix 47.238.0.0/16 linked to Alibaba Cloud.
- Geolocation inconsistencies (HK vs. US).
- No persistent malicious behavior detected.
---
**3. Relationships**
- Network Affiliations:
- Same network as ALIBABA-CLOUD---HK (ASN 45102).
- No direct links to Tor, CDN, or VPN infrastructure.
- DNS: No PTR records or domain associations.
- Certificates/TLS: No active TLS certificates or HTTP services.
---
**4. Neighborhood Analysis**
- Subnet: 47.238.234.93/24
- Neighbor Risk: No active IPs in subnet (0 neighbors detected).
- Abuse Density: 0% (no risky sibling IPs).
---
**5. Recommendations**
- Monitor: Track changes in threat feed listings (e.g., "high" severity signals).
- Verify Geolocation: Cross-check with Alibaba Cloudโs infrastructure map to resolve HK vs. US discrepancy.
- Network Segmentation: Ensure cloud instances are isolated to prevent lateral movement.
- Threat Feed Context: Investigate specific feeds flagged (e.g., DNSBL listings) for false positives.
Conclusion: This IP is part of Alibaba Cloudโs infrastructure with no direct malicious activity. However, its presence in multiple threat feeds warrants closer monitoring for potential misuse or misattribution.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | ALIBABA CLOUD - HK |
| ASN | AS45102 |
| Network Name | ALIBABA-CLOUD---HK |
| CIDR Block | 47.238.0.0/15 |
| RIR | ARIN |
| Country | Hong Kong |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 12% | 6 | 6 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-26 12:52:10 UTC |
| Last Seen | 2026-06-11 05:20:53 UTC |
| Profile Built | 2026-06-11 05:27:37 UTC |
| Data Freshness | Live |
| Signal Types | 15 |
| Total Observations | 18 |
Full dossier details are available via our API.