118.31.7.58
IP Intelligence Briefing: 118.31.7.58
Date: 2026-06-10
---
**1. Risk Profile**
- Risk Score: 50 (Moderate Risk)
- Provider Score: 0
- Authority Score: 0
- Stability Score: 0
- Network Role: Firewalled / No Services (no open ports, no TLS/http services detected).
- Threat Indicators: No malware distribution, scanning, or known attacker activity.
---
**2. Ownership & Geolocation**
- ASN: 37963 (ALISOFT, APNIC registry).
- Organization: "security trouble" (ALISOFT).
- Geolocation:
- Country: China (CN)
- Region: Zhejiang
- City: Hangzhou
- Accuracy: ±2,500 km (inferred via multi-signal geolocation).
---
**3. Threat & Behavioral Analysis**
- Threat Observations:
- No malicious campaigns, DNS abuse, or spam sources detected.
- BGP prefix 118.31.0.0/17 registered to ALIBABA-CN-NET (Hangzhou Alibaba Advertising Co., Ltd.) since 2007.
- DNS & Email Reputation:
- No DNSSEC validation issues.
- No SPF/DKIM records or email abuse indicators.
---
**4. Network Relationships**
- Linked Entities:
- Same network: ALISOFT (ASN 37963).
- No connections to known malicious organizations, Tor, or CDN networks.
---
**5. Neighborhood Analysis**
- Subnet: 118.31.7.0/24 (no active neighbors detected).
- Abuse Density: 0% (no risky sibling IPs in subnet).
---
**6. Temporal Trends**
- Observation History:
- Last 30 days: No persistent malicious activity.
- Geolocation inferred as China with 52% confidence (June 10).
- BGP route stability: 0 changes observed.
---
**7. Recommended Actions**
- Monitor: Track network ownership and geolocation changes, as the IP is linked to a long-standing AS (since 2007).
- Firewall: No immediate blocking required; the IP is non-malicious with no open services.
- Investigate: Verify ALISOFT's legitimacy, as the organization name appears ambiguous.
---
Summary:
118.31.7.58 is a non-malicious IP registered to ALISOFT (China) with no threat indicators. It resides in a stable, firewalled network with no risky neighbors. While geolocation is inferred, no active malicious behavior is detected. SOC teams should monitor for anomalies in network ownership or unexpected service exposure.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | security trouble |
| ASN | AS37963 |
| Network Name | ALISOFT |
| CIDR Block | 118.31.0.0/16 |
| RIR | APNIC |
| Country | CN |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 25% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 23% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-25 06:40:52 UTC |
| Last Seen | 2026-06-26 18:12:22 UTC |
| Profile Built | 2026-06-27 13:36:59 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 36 |
Full dossier details are available via our API.