103.207.5.46
IP Intelligence Dossier
Your IP: 216.73.216.123
๐ค Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 103.207.5.46/32
Date: 2026-06-05
---
**1. Risk Profile**
- Risk Score: 70 (High Risk)
- Ownership: Managed by ASN 134863 ("Manager Admin") in India (APNIC).
- Geolocation: India (IN), inferred with 1500km accuracy radius.
- Threat Indicators: No direct malicious activity detected (no spam, known attackers, or DNSBL listings).
---
**2. Network Behavior**
- Firewalled/No Services: No open ports or services detected (HTTP, TLS, etc.).
- DNS Associations: Linked to `5.207.103.in-addr.spit.co.in` (potential misconfiguration or spoofing).
- Subnet Context:
- /24 Subnet: 103.207.5.0/24
- Abuse Density: 1 (high risk), with 1 active risky neighbor (103.207.5.196, risk score 80).
- Classification: "Mostly clean" but flagged due to high-risk neighbors.
---
**3. Temporal Observations**
- Geolocation Consistency: India (IN) with 2 sources, but no city/region data.
- Ownership Stability: No changes in ownership over time.
- Threat Persistence: No persistent malicious activity observed.
---
**4. Relationships**
- Network: Part of "SPINTER" network (ASN 134863).
- DNS: Multiple DNS records tied to `spit.co.in` (potential spoofing or misconfigured domain).
- Neighbors: 1 high-risk neighbor in same subnet (103.207.5.196).
---
**5. Recommendations**
- Monitor Subnet: High abuse density in 103.207.5.0/24; investigate neighbor 103.207.5.196.
- Block IP: Consider blocking 103.207.5.46 if itโs part of a larger threat cluster.
- DNS Validation: Verify DNS records for `spit.co.in` for spoofing or misconfiguration.
- Geolocation Verification: Cross-check with additional geolocation sources due to limited precision.
Note: No direct malicious activity detected, but contextual risks from neighbors and network ties warrant further investigation.
---
*Generated via IPDebrief threat intelligence analysis.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Manager Admin |
| ASN | AS134863 |
| Network Name | SPINTER |
| CIDR Block | 103.207.4.0/22 |
| RIR | APNIC |
| Country | IN |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 5.207.103.in-addr.spit.co.in |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | 5.207.103.in-addr.spit.co.in |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
No certificate
Issued by โ
N/A
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 19% | 2 | 2 |
| Overall | 19% | 10 | 13 |
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-12 09:39:32 UTC |
| Last Seen | 2026-06-26 15:52:02 UTC |
| Profile Built | 2026-06-26 15:55:40 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 21 |
๐ 20 signal types ยท 21 observations collected
This report is generated from 20+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
โน๏ธ About This Report
All data shown is publicly available network metadata โ IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.