179.183.114.175
IP Intelligence Briefing: 179.183.114.175
Date: 2026-06-17
---
**1. Core Profile**
- Risk Score: 80 (High Risk)
- Ownership:
- ASN: 18881
- Organization: TELEFÓNICA BRASIL S.A. (Brazilian telecom provider)
- Subnet: 179.180.0.0/14
- Geolocation:
- Country: Brazil (BR)
- Region: Espírito Santo
- City: Vitória
- Network Role:
- Mobile service (TIM S.A., MCC 724, MNC 04)
- LTE/5G technology
- Single-Service Host (SSH on port 22)
---
**2. Threat & Security Indicators**
- No Malicious Indicators:
- No DNSBL listings, spam, or known attacker associations.
- SSH service detected (OpenSSH 6.7), but no banner anomalies.
- DNSSEC Valid:
- DNSSEC validation is active, reducing spoofing risks.
- TLS/HTTP:
- No TLS certificates or HTTP services detected.
---
**3. Historical Observations**
- Risk Trends:
- Minimal risk score (0.13) over the past 30 days.
- No significant changes in geolocation, DNS, or threat signals.
- Consistency:
- Stable ownership and routing (no ASN changes).
- No observed scanning or port activity beyond SSH.
---
**4. Relationships & Network Context**
- Connected Entities:
- Linked to ASN 18881 (TELEFÓNICA BRASIL S.A.) and subnet 197878.
- No correlated IPs or campaigns detected.
- Subnet Analysis:
- 179.183.114.175/24: No neighboring IPs (abuse density: 0).
- Subnet classified as "clean" with no threat siblings.
---
**5. Actionable Insights**
- Monitor SSH Access:
- Evaluate SSH activity for unauthorized access attempts, given the high risk score.
- Verify Mobile Network Context:
- Confirm if the IP is part of TIMβs mobile network infrastructure or a user device.
- Check for Anomalies:
- Monitor for unexpected DNS changes or new service exposure in the subnet.
---
Conclusion:
This IP is associated with a Brazilian telecom provider and operates as a mobile service node. While no direct malicious activity is detected, its high risk score and SSH exposure warrant closer monitoring. No immediate mitigation is required, but ongoing observation is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | TELEFÔNICA BRASIL S.A |
| ASN | AS18881 |
| Network Name | 197878 |
| CIDR Block | 179.180.0.0/14 |
| RIR | LACNIC |
| Country | BR |
| Abuse Contact | β |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Single-Service Host |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_6.7 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 24% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 19% | 2 | 2 |
| reputation | 15% | 1 | 2 |
| geolocation | 21% | 2 | 2 |
| Overall | 18% | 10 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:03:57 UTC |
| Last Seen | 2026-06-26 18:10:50 UTC |
| Profile Built | 2026-06-22 23:02:29 UTC |
| Data Freshness | Live |
| Signal Types | 16 |
| Total Observations | 17 |
Full dossier details are available via our API.