IP Intelligence Briefing: 118.163.145.175
*Generated via IPDebrief tools: Profile, History, Relationships, Neighbors*
---
**Key Findings**
1. Risk Profile:
- Overall Risk Score: 80 (High Risk)
- Threat Indicators: No active malware, phishing, or exploit indicators detected.
- Ownership: Registered to HINET Network-Adm (Taiwanese ISP) under ASN 3462.
- Geolocation: Taoyuan, Taiwan (23.7°N, 120.96°E). Mobile network (LTE/5G) operated by Chunghwa Telecom.
2. Network & DNS:
- DNS Associations: Linked to `118-163-145-175.hinet-ip.hinet.net` (HINET hostname).
- Subnet: Part of `118.163.145.175/24` with no abuse density.
- DNSSEC/CAA: Validated DNSSEC, CAA records present.
3. Threat Observations:
- DNSBL Listings: Listed in 4/8 DNSBLs (e.g., Spamhaus, SpamCop).
- Historical Signals: Detected in 2026-06-06 as "Basic" risk (low-severity), with no persistent malicious activity.
4. Relationships:
- Network Links: Associated with HINET-NET (same /16 block).
- DNS: Repeated associations with HINET hostnames.
5. Neighborhood:
- Subnet Cleanliness: No malicious neighbors detected.
---
**Actionable Insights**
- Monitor DNSBL Listings: Investigate why this IP is listed in 4 DNSBLs (e.g., Spamhaus, SpamCop) despite no active threats.
- Check for Anomalies: Track changes in DNSSEC/CAA validity or unexpected network behavior.
- Network Segmentation: Ensure mobile/LTE traffic is properly segmented, given its carrier-grade network.
- Subnet Health: The `/24` subnet appears clean, but continuous monitoring is advised due to the IPโs high risk score.
---
**Recommendations**
- No Immediate Blocking: No active exploits or malware detected, but DNSBL listings warrant further investigation.
- Enhance DNS Monitoring: Validate DNSSEC and CAA records for integrity.
- Log & Correlate: Cross-reference with internal logs for unusual traffic patterns or DNS resolution anomalies.
Note: This IP is part of a legitimate mobile network but shows potential for spam or abuse. Prioritize monitoring over blocking unless new threats emerge.
*Generated by IPDebrief โ Cybersecurity Threat Intelligence Platform*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | HINET Network-Adm |
| ASN | AS3462 |
| Network Name | HINET-NET |
| CIDR Block | 118.163.0.0/16 |
| RIR | APNIC |
| Country | TW |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | 118-163-145-175.hinet-ip.hinet.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 118-163-145-175.hinet-ip.hinet.net |
๐ DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Web Server |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 22 | ssh | tcp | โ |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 22% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 18% | 9 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-11 02:50:04 UTC |
| Last Seen | 2026-06-26 06:24:22 UTC |
| Profile Built | 2026-06-26 07:15:34 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 19 |
Full dossier details are available via our API.