123.200.15.208

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 123.200.15.208/32

Date: 2026-06-22

Classification: Low Risk

Risk Score: 25/100

## Executive Summary

IP address 123.200.15.208 belongs to Link3 Technologies Ltd (ASN 23688) and is classified as a low-risk single-service host. The IP exhibits minimal threat indicators but shows one DNSBL listing and route instability. No active malicious campaigns or persistent malicious behavior detected.

## Network Profile

Organization: Link3 Technologies Ltd (BD)
ASN: 23688 (LINK3-TECH-AS-BD-AP)
Geolocation: London, GB (profile) / Bangladesh, BD (ASN registry) — geoConsensus: false
CIDR Block: 123.200.0.0/19
Registration Date: 2007-01-11 (APNIC RIR)
Network Role: Single-Service Host

## Threat Indicators

Risk Score: 25 (Low)
Abuse Confidence Score: Not available
DNSBL Status: Listed on 1 of 8 total blacklists
Tor Exit Node: No
Known Attacker: No
Spam Source: No
Threat Feeds: None detected
Known Campaigns: None

## Network Services

Open Ports: 22/TCP (SSH)
DNS PTR Hostname: 15.208.aries.link3.net
Forward Resolution: 15.208.aries.link3.net
Email Auth: SPF and DMARC records present
TLS Certificate: None observed

## Control Plane Analysis

Route Stability: Unstable
RPKI State: Not validated
IRR Consistency: Not verified
Route Changes (30d): 0
BGP Prefix: 123.200.0.0/19
Operator Score: 0.1304 (Minimal)

## Observation History (22 Signals)

Recent observations indicate:

Subnet classification: "mostly_clean"
Abuse density: 1 (neighborhood)
Threat persistence: 0 days
No persistent malicious activity
ASN data consistently shows 123.200.15.0/24 prefix

## Network Relationships

Related Entities: 41 relationships total
Same Network: Multiple links to Link3-Technologies-Ltd
Subnet Classification: mostly_clean

## Neighborhood Analysis (123.200.15.0/24)

Abuse Density: 0–1 (varies by signal)
Inherited Risk: 2
Active Siblings: 1
Threat Siblings: 1

## Recommended Actions

Based on the low-risk profile and single DNSBL listing, the following actions are recommended for SOC teams:

1. Monitor Route Stability: The BGP route is marked as unstable; continue monitoring for route changes.

2. DNSBL Review: Investigate the single DNSBL listing to determine if it requires action.

3. SSH Exposure: The open SSH port (22) is typical for infrastructure hosts; ensure no unauthorized access attempts.

4. Geolocation Verification: Address the discrepancy between GB profile data and BD ASN registry.

5. Continue Passive Monitoring: No immediate blocking required; maintain observation.

## Conclusion

IP 123.200.15.208 is a low-risk infrastructure asset belonging to Link3 Technologies Ltd. The IP shows minimal threat indicators with one DNSBL listing and route instability as primary concerns. No evidence of malicious activity or persistent threats detected. Standard monitoring and passive observation are recommended.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇬🇧 United Kingdom
Region	—
City	London
Timezone	Europe/London
Latitude	23.70
Longitude	90.37

🏢 Ownership & Registration

Organization	Sajjid Pasha
ASN	AS23688
Network Name	—
CIDR Block	—
RIR	APNIC
Country	—
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR	15.208.aries.link3.net
Forward Confirmed	No — PTR hostname does not resolve back to this IP (weak signal)
Forward Hostnames	`15.208.aries.link3.net`

🔐 DNS Hygiene

Hygiene Score	60% (Good)
SPF	Present
DMARC	Present
FCrDNS	Not verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Unknown
Service Purpose	Single-Service Host
Network Tier	Unknown — Insufficient routing data to classify

No specific classification

🔌 Services & Open Ports

Port	Service	Protocol	Banner
22	ssh	tcp	—
Closed Ports	25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned)

Server	—
HTTP Title	—

🔐 TLS Certificate

🔒

No certificate

Issued by —

N/A

SANs	None
Valid From	—
Valid Until	—

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	40%	2	4
routing	25%	1	1
services	18%	2	2
ownership	26%	2	3
reputation	32%	1	3
geolocation	13%	1	1
Overall	26%	9	14

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Mostly Consistent (80%) — 1 contradiction(s)
Attribution	Low (35%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

⚠ Geo sources disagree on country: BD, GB

📅 Observation Timeline 🔄 Live

First Seen	2026-05-07 23:03:37 UTC
Last Seen	2026-06-22 12:36:30 UTC
Profile Built	2026-06-22 12:43:20 UTC
Data Freshness	Live
Signal Types	24
Total Observations	28

🔍 24 signal types · 28 observations collected

This report is generated from 24+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

123.200.15.208📋 Copy