115.77.111.2
IP Intelligence Briefing: 115.77.111.2
Date: 2026-06-15
---
**1. Core Profile**
- Risk Score: 80 (High Risk)
- Owner: IRT-VNNIC-AP (Viettel, Vietnam)
- Geolocation: Ho Chi Minh City, Vietnam (APNIC registry)
- Network Role: Firewalled / No Services (no open ports, no TLS/HTTP services)
- Threat Indicators:
- 5 DNSBL listings (moderate confidence)
- No known malware campaigns, spam, or Tor activity
- Control Plane:
- ASN 7552 (Viettel)
- DNSSEC valid, no CAA records
- Low operator score (0.13)
---
**2. Observation History**
- Recent Activity (30 days):
- 17 observations, primarily DNSBL flags (8 lists) and geolocation inference.
- No new threat indicators or scans detected.
- Risk score has remained stable at 80.
---
**3. Relationships**
- Network Associations:
- Linked to Viettelβs network (AS7552) and subnet 115.77.64.0/18.
- DNS PTR records point to `adsl.viettel.vn` (Viettelβs public domain).
- Email Security:
- SPF and DMARC records present, but no email authentication data.
---
**4. Neighborhood Analysis**
- Subnet: 115.77.111.2/24
- Abuse Density: 0% (clean subnet)
- Neighbors: No active IPs detected in the subnet.
---
**5. Threat Context**
- DNSBL Listings: The IP is flagged on 5/8 DNSBLs (e.g., Spamhaus, OpenBLAST), suggesting potential spam or abuse activity.
- No Active Threats: No recent scans, malware campaigns, or reconnaissance detected.
- Viettel Infrastructure: Likely a legitimate corporate IP, but DNSBL flags warrant closer inspection.
---
**6. Recommended Actions**
- Monitor DNSBL Status: Investigate why this IP is listed and verify if itβs a false positive.
- Block Based on Risk: Consider blocking the IP due to high risk score and DNSBL flags.
- Check Subnet: Since the subnet is clean, focus on isolating this IPβs traffic.
- Validate Ownership: Confirm Viettelβs stance on the IPβs usage and verify if itβs a misconfigured or compromised asset.
---
Conclusion: This IP is owned by Viettel but is flagged on multiple DNSBLs, indicating potential misuse. While no active threats are detected, its high risk score and DNSBL listings justify further investigation and network segmentation.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | IRT-VNNIC-AP |
| ASN | AS7552 |
| Network Name | VIETTEL-VN |
| CIDR Block | 115.72.0.0/13 |
| RIR | APNIC |
| Country | VN |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | adsl.viettel.vn |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | adsl.viettel.vn |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Multi-Service Host |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | β |
| 8080 | http-alt | tcp | β |
| Closed Ports | 25, 80, 443, 3389, 8443 (2 open / 7 scanned) | ||
| Server | Webs |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 21% | 2 | 2 |
| routing | 13% | 1 | 1 |
| services | 18% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 15% | 1 | 2 |
| geolocation | 21% | 2 | 2 |
| Overall | 19% | 10 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:03:32 UTC |
| Last Seen | 2026-06-26 18:10:26 UTC |
| Profile Built | 2026-06-22 10:06:36 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 21 |
Full dossier details are available via our API.