125.19.167.58
IP Intelligence Briefing: 125.19.167.58
Date: 2026-06-17
**Risk Profile**
- Risk Score: 80 (High Risk)
- Provider: ASN 9498 (Bharti Airtel Ltd., India)
- Geolocation: Registered to Delhi, India (IN) | Latitude/Longitude: N/A
- Network Role: Mobile (LTE/5G) | Residential: False | Infrastructure: Firewalled
**Threat Indicators**
- DNSBL Listings: 5/8 DNSBLs (e.g., Spamhaus, OpenDNS) | High-severity listings detected.
- Subnet Abuse Density: 1 (mostly clean, but elevated risk).
- Historical Observations:
- 17 signals recorded (June 2โ17, 2026).
- DNSSEC validation: True | Route stability: Unstable.
- Geo-plausibility: Confirmed (Delhi, India).
**Network Relationships**
- Subnet: 125.19.167.0/24 | Owner: BTNL-DSL-3224-del (Airtel).
- Neighbors: No active IPs detected in the /24 subnet (abnormal).
- Connections: Linked to 17+ signals (DNS, routing, geolocation).
**Key Findings**
1. High DNSBL Risk: The IP is listed on 5/8 DNSBLs, indicating potential spam or malicious activity.
2. Subnet Anomalies: Zero active neighbors in the /24 subnet, despite a 1% abuse density.
3. Mobile Carrier: Airtel (India) | LTE/5G network, suggesting residential/mobile use.
4. Unstable Routing: BGP route stability score: 0.13 (minimal trust).
**Recommended Actions**
- Block/monitor: High-risk IP (125.19.167.58) in firewalls (iptables, Cloudflare WAF).
- Subnet Review: Investigate 125.19.167.0/24 for other IPs with DNSBL listings.
- Geolocation Verification: Confirm Delhi, India location via additional probes.
- Network Ownership: Validate ASN 9498 (Airtel) for suspicious activity patterns.
Note: No direct malware or campaign indicators detected, but DNSBL listings and subnet anomalies warrant further investigation.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Network Administrator |
| ASN | AS9498 |
| Network Name | BTNL-DSL-3224-del |
| CIDR Block | 125.19.167.0/24 |
| RIR | APNIC |
| Country | IN |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 24% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 20% | 9 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:03:38 UTC |
| Last Seen | 2026-06-22 12:57:26 UTC |
| Profile Built | 2026-06-22 13:01:37 UTC |
| Data Freshness | Live |
| Signal Types | 16 |
| Total Observations | 18 |
Full dossier details are available via our API.