47.93.198.79
IP Intelligence Briefing: 47.93.198.79
Date: 2026-06-18
---
**1. Risk Profile**
- Overall Risk Score: 25 (Low Risk)
- Threat Indicators: No malicious activity detected (no blacklists, spam, or campaigns).
- Network Classification: CloudCompute infrastructure (hosting provider).
- Geolocation: Beijing, China (CN).
---
**2. Ownership & Network**
- ASN: 37963 (ALISOFT, registered to "security trouble").
- Subnet: 47.93.198.79/24 (no active neighbors detected).
- Routing: BGP prefix 47.92.0.0/14, stable route with no recent changes.
- Provider: ARIN-registered, no known abuse or instability.
---
**3. Observation History**
- Recent Activity (2026-06-18):
- Minimal risk score (0.13) with no DNSSEC validation issues.
- ICMP validation failed ("ICMP blocked - unable to validate"), suggesting potential firewall restrictions.
- Historical Data (2026-06-03):
- Confirmed as a cloud-hosted IP with no CDN/VPN/Proxy indicators.
- Geolocation validated as Beijing, China (7726 km from probe, plausible).
---
**4. Relationships & Neighbors**
- Linked Entities:
- Same network: "ALISOFT" (ASN 37963).
- Subnet Neighbors: No active or risky sibling IPs in 47.93.198.79/24.
- No Threat Correlation: No connected domains, certificates, or malicious campaigns.
---
**5. Behavioral Insights**
- Services: No open ports, TLS certs, or HTTP services detected.
- Email Reputation: No SPF/DKIM records or email-related threats.
- Honeypot Activity: No enumeration or WAF violations observed.
---
**6. Recommendations**
1. Monitor Geolocation Validity: The ICMP validation failure may indicate restrictive firewall rules. Verify if this IP is intentionally blocking probes.
2. Watch for Ownership Changes: The owner "security trouble" appears suspicious. Check for ASN ownership shifts or abuse reports.
3. Ensure Cloud Security: As a cloud-hosted IP, confirm compliance with Alibaba Cloud (ASN 37963) security policies.
4. No Immediate Action Required: Low risk and no threats detected, but maintain monitoring for anomalies.
---
Source: IPDebrief Threat Intelligence Platform
Note: This IP is part of a clean network with no active threats, but its ownerβs name raises minor concerns. Further investigation into the "security trouble" registration is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | security trouble |
| ASN | AS37963 |
| Network Name | ALISOFT |
| CIDR Block | 47.92.0.0/14 |
| RIR | ARIN |
| Country | CN |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 21% | 2 | 2 |
| routing | 17% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 15% | 1 | 2 |
| geolocation | 30% | 2 | 3 |
| Overall | 20% | 9 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:04:23 UTC |
| Last Seen | 2026-06-23 15:01:56 UTC |
| Profile Built | 2026-06-23 15:03:04 UTC |
| Data Freshness | Live |
| Signal Types | 16 |
| Total Observations | 18 |
Full dossier details are available via our API.