115.190.173.110
IP Intelligence Briefing: 115.190.173.110
Date: 2026-06-06
---
**1. Threat Profile**
- Risk Score: 50 (Moderate Risk)
- Network Classification: Firewalled / No Services (no open ports or active services detected).
- Ownership:
- ASN: 137718
- Organization: IRT-VOLCANO-ENGINE-CN (APNIC registered).
- Geolocation: China (CN), no city/latitude/longitude specified.
- Threat Indicators:
- No direct malicious activity detected (no known campaigns, spam, or blacklists).
- One observation flagged "has threats" (confidence: 75%) with unspecified indicators.
---
**2. Observation History**
- Recent Activity (Last 30 Days):
- 15 observations, including:
- Threat Signal: Confirmed "has threats" (5 pulse matches, 75% confidence).
- Geolocation: Consistent with China (CN), 2500km accuracy radius.
- Network Stability: Route stability issues (isRouteStable: false).
- Trend: No persistent malicious behavior (threat persistence days: 0).
---
**3. Network Relationships**
- Subnet: 115.190.173.110/24
- Neighbors:
- 1 neighbor in subnet (115.190.173.91):
- Risk Score: 40 (low risk).
- Shared Network: Linked to VOLCANO-ENGINE (ASN 137718), likely a private/controlled network.
---
**4. Neighborhood Analysis**
- Subnet Abuse Density: 1 (mostly clean).
- Risk Distribution:
- 1 neighbor with moderate risk (40).
- No high-risk siblings.
- Inherited Risk: 5 (low impact from subnet).
---
**5. Recommendations**
1. Monitor Neighbor: 115.190.173.91 (moderate risk) for potential lateral movement or shared threats.
2. Verify Threat Signals: Investigate the "has threats" observation (75% confidence) for false positives or undetected activity.
3. Network Segmentation: Ensure firewalled segmentation between this subnet and critical assets.
4. Geolocation Validation: Confirm IP's physical location in China, as geolocation data is sparse.
Conclusion: This IP poses moderate risk due to ambiguous threat signals and a low-risk neighbor. No immediate action required, but ongoing monitoring is advised.
---
*Generated by IPDebrief Threat Intelligence Platform.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | IRT-VOLCANO-ENGINE-CN |
| ASN | AS137718 |
| Network Name | VOLCANO-ENGINE |
| CIDR Block | 115.190.0.0/15 |
| RIR | APNIC |
| Country | CN |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 28% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 19% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 19% | 9 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Fresh
| First Seen | 2026-05-12 15:46:20 UTC |
| Last Seen | 2026-06-26 18:10:26 UTC |
| Profile Built | 2026-06-26 22:33:02 UTC |
| Data Freshness | Fresh |
| Signal Types | 19 |
| Total Observations | 19 |
Full dossier details are available via our API.