Maximum Danger
IP 210.79.191.147 is a critical-risk address originating from Indonesia that has accumulated 4,504 abuse reports within approximately two months, making it one of the most heavily reported IPs in recent threat intelligence feeds. The overwhelming majority of reports specifically document active hacking activity, including intrusion attempts and exploitation of vulnerabilities against exposed services.
Automated honeypot sensors detected all 20 most recent threat reports originating from this IP, with the first reports appearing in September 2025 and continued activity through October 2025. The IP is registered to PT Cloud Hosting Indonesia operating under ASN 136052, a commercial hosting provider whose infrastructure is frequently abused by threat actors for launching attacks due to the relative anonymity and flexibility such services offer.
Hacking activity represents a broad category of intrusion attempts including vulnerability exploitation, unauthorized access attempts, and scanning behavior. Even though activity frequency scores low (0/10), the sheer volume of historical reports indicates persistent threat behavior. An IP with 4,504 total reports suggests either sustained targeted campaigns or widespread scanning across multiple victims.
Site operators should implement fail2ban or similar dynamic blocking tools to automatically ban IPs demonstrating aggressive scanning patterns. Rate-limiting authentication endpoints, enforcing strong password policies, and maintaining up-to-date intrusion detection systems are critical defensive layers. Regular monitoring of honeypot feeds and blocking known malicious ASNs can reduce exposure to infrastructure-based threats originating from hosting providers.
RO 
PH 
UA 
VN