118.193.58.20
IP Intelligence Dossier
Your IP: 216.73.216.123
๐ค Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 118.193.58.20
Date: 2026-06-10
---
**1. Core Profile**
- Risk Score: 65 (Moderate Risk)
- Ownership: UCLOUD INFORMATION TECHNOLOGY HK LIMITED (ASN 135377, APNIC)
- Geolocation: Frankfurt am Main, Hesse, Germany (latitude 51.17, longitude 10.45)
- Network Role: Firewalled server with no open ports or services detected.
- Threat Indicators: No malicious activity observed. DNSSEC validated, but 3 DNSBL listings (potential spam or abuse risks).
---
**2. Observation History**
- Stability: No ownership changes; risk score stable over 30 days.
- Signals:
- Geolocation inferred via multi-signal analysis (600km accuracy).
- Operator score (0.13) indicates minimal risk.
- No persistent malicious activity or campaign correlations.
---
**3. Relationships**
- Network: Linked to UCLOUD-DE (AS135377) and shares the same /24 subnet.
- No Direct Threat Connections: No subnets, hostnames, or certificates tied to known malicious entities.
---
**4. Neighborhood Analysis**
- Subnet: 118.193.58.0/24 (3 IPs total).
- Neighbor Risk:
- 2 IPs with low risk (scores 25โ40).
- 1 IP with medium risk (score 40).
- Abuse Density: 0% (low risk of subnet-wide compromise).
---
**5. Actionable Insights**
- Monitor DNSBL Listings: Investigate why this IP is listed on 3 DNSBLs (potential spam or abuse).
- Verify DNSSEC Configuration: Ensure DNSSEC is properly implemented to mitigate spoofing risks.
- Check for Network Changes: Watch for unexpected ownership shifts or new services on the subnet.
---
Conclusion: This IP is associated with a legitimate cloud provider but shows no direct malicious activity. The DNSBL listings and stable risk profile suggest low immediate threat, though ongoing monitoring is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | UCLOUD INFORMATION TECHNOLOGY HK LIMITED |
| ASN | AS135377 |
| Network Name | UCLOUD-DE |
| CIDR Block | 118.193.58.0/23 |
| RIR | APNIC |
| Country | DE |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
No certificate
Issued by โ
N/A
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 30% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 14% | 6 | 7 |
Coverage: 5/6 dimensions ยท Data sufficiency: partial
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-24 12:33:18 UTC |
| Last Seen | 2026-06-10 14:41:37 UTC |
| Profile Built | 2026-06-10 14:48:58 UTC |
| Data Freshness | Live |
| Signal Types | 13 |
| Total Observations | 13 |
๐ 13 signal types ยท 13 observations collected
This report is generated from 13+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
โน๏ธ About This Report
All data shown is publicly available network metadata โ IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.