49.158.179.118
IP Intelligence Briefing: 49.158.179.118
Date: 2026-06-09
---
**1. Risk Profile**
- Risk Score: 80 (High Risk)
- Provider Score: 0
- Authority Score: 0
- Stability Score: 0
- Threat Indicators: No direct malicious activity detected (no malware, C2, or known attacker associations).
---
**2. Ownership & Geolocation**
- Registrar: Evans Lin (ASN 24164, UBBNET-NET)
- Region: Registered to Taiwan (APNIC) but geolocated to "New Taipei City, US" (likely data inconsistency).
- Subnet: 49.158.176.0/21 (owned by UBBNET-NET).
---
**3. Network Behavior**
- Services: No open ports or active services detected.
- DNS:
- PTR hostname: `49-158-179-118.dynamic.elinx.com.tw`
- No email authentication (SPF/DKIM) or domain hosting.
- BGP:
- Route stability: Unstable (route changes in last 30 days).
- DNSSEC valid, but no CAA records.
- Routing:
- Traceroute shows transit through Comcast and NTT.
---
**4. Threat Observations**
- Historical Signals (Last 30 Days):
- 16 observations, including DNS listings (4 DNSBL hits) and geolocation inferences.
- No persistent malicious activity or honeypot hits.
- Abuse Density: Subnet abuse density is 0 (no malicious neighbors).
---
**5. Relationships**
- Linked Entities:
- Same network: UBBNET-NET (ASN 24164).
- DNS associations: `49-158-179-118.dynamic.elinx.com.tw` (repeated 11 times).
- No Known Campaigns or Certificates: No TLS/SSL certificates or malicious banners detected.
---
**6. Recommendations**
- Monitor: Track DNS changes and geolocation discrepancies.
- Firewall: Block traffic to this IP if it aligns with known malicious patterns.
- Investigate: Verify geolocation inconsistencies and check for potential spoofing.
---
Note: This IP shows no direct malicious activity but warrants monitoring due to high risk score and ambiguous geolocation data.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Evans Lin |
| ASN | AS24164 |
| Network Name | UBBNET-NET |
| CIDR Block | 49.158.176.0/21 |
| RIR | APNIC |
| Country | TW |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | 49-158-179-118.dynamic.elinx.com.tw |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | 49-158-179-118.dynamic.elinx.com.tw |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 21% | 2 | 2 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 12% | 6 | 6 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-21 08:55:47 UTC |
| Last Seen | 2026-06-11 15:09:08 UTC |
| Profile Built | 2026-06-09 09:37:41 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 19 |
Full dossier details are available via our API.