IP Intelligence Briefing: 106.8.138.71
*Generated via IPDebrief Analysis*
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership:
- ASN: 4134
- Organization: China Telecom (Chinanet Hostmaster)
- Network: CHINANET-HE (APNIC)
- Geolocation:
- Country: China (CN)
- Region: Shanghai
- Accuracy Radius: 2,500 km (approximate)
- Network Role:
- Mobile broadband (LTE/5G)
- No public services (e.g., HTTP, TLS, DNS) detected
- Firewalled / No active services
---
**2. Threat & Behavior**
- Threat Indicators:
- No malicious indicators (no blacklists, spam, or campaigns)
- DNSSEC Valid: Yes
- Route Stability: Unstable (30-day route changes detected)
- Observation History:
- 17 signals recorded (last 30 days)
- Minimal risk profile, with no persistent malicious activity
- Geolocation data inconsistent (no precise coordinates)
---
**3. Relationships & Subnet**
- Network Relationships:
- Linked to CHINANET-HE (same network)
- No direct ties to known attackers, spam sources, or Tor nodes
- Subnet Analysis (106.8.138.0/24):
- Abuse Density: 0% (mostly clean)
- Neighbors:
- 3 siblings with risk scores of 25 (low risk)
- No high-risk IPs in the subnet
---
**4. Security Actions**
- Recommended Mitigations:
- No immediate firewall rules required due to low risk
- Monitor for unexpected service activation or geolocation anomalies
- Validate DNSSEC and route stability for network integrity
---
**5. Summary**
The IP 106.8.138.71 is associated with China Telecomβs mobile broadband network and shows no signs of malicious activity. While geolocation data is approximate and route stability is inconsistent, there are no active threats, known campaigns, or malicious indicators. The subnet is largely clean, but ongoing monitoring is advised to detect any emerging risks.
Next Steps:
- Verify if the IP is part of a legitimate userβs mobile device.
- Correlate with internal logs for unusual traffic patterns.
- Reassess if subnet abuse density changes over time.
*End of Briefing*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Chinanet Hostmaster |
| ASN | AS4134 |
| Network Name | CHINANET-HE |
| CIDR Block | 106.8.0.0/15 |
| RIR | APNIC |
| Country | CN |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 35% | 2 | 3 |
| Overall | 22% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-14 07:12:45 UTC |
| Last Seen | 2026-06-07 03:02:03 UTC |
| Profile Built | 2026-06-07 03:04:29 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 19 |
Full dossier details are available via our API.