Severe Risk
IP 47.113.195.173 is a high-risk address linked to active hacking activity, with 226 abuse reports logged in December 2025 indicating sustained intrusion attempts against exposed services. This Chinese-hosted IP operating through Hangzhou Alibaba Advertising Co.,Ltd. (AS37963) carries a severe 10/10 threat level with 94% confidence, making it a clear candidate for immediate blocking at the network perimeter.
The 226 total reports, all sourced from automated honeypot sensors, reflect persistent multi-vector probing consistent with automated attack campaigns. The activity frequency score of 8/10 confirms this is not an isolated incident but repeated scanning behavior targeting vulnerable entry points. All reported threats were classified under the hacking category, with the detection window limited to December 2025. The 94% confidence score indicates the threat classification is highly reliable based on the observed patterns.
Hacking activity encompasses vulnerability exploitation, unauthorized access attempts, and intrusion campaigns that can lead to data breaches, service disruption, or complete network compromise. This IP's behavior suggests automated scanning for exposed services such as SSH, RDP, or web interfaces with the intent to exploit misconfigurations or unpatched software. The volume of reports indicates this address participates in coordinated campaigns rather than opportunistic probing.
Site operators should block this IP address at the firewall or edge router level to eliminate direct access attempts. Implementing automated blocking tools such as fail2ban can dynamically respond to repeated connection patterns. Enforcing strong authentication, limiting exposure of administrative interfaces to trusted networks, and maintaining current security patches across all internet-facing systems are critical defensive layers. Continuous monitoring of authentication logs for brute-force patterns will help identify and mitigate ongoing attempts.
RO 
FR 
SE 
TR