149.54.51.162
IP Intelligence Briefing: 149.54.51.162
Date: 2026-06-07
---
**Profile Summary**
- Risk Score: 40 (Moderate Risk)
- Ownership: Registered to Abdul Sattar Hadeed (ASN 55330, ARIN).
- Geolocation: Kabul, Afghanistan (34.53°N, 69.17°E).
- Network Role: Web server (HTTP/HTTPS/SSH).
- Services: Open ports 80 (HTTP), 443 (HTTPS), 22 (SSH). Server banner: *lighttpd/1.4.39*.
- Threat Indicators: No direct malicious activity detected.
---
**Observation History**
- Recent Signals (2026-06-07):
- DNS resolution errors (timed out).
- Geolocation confirmed as Kabul, Afghanistan.
- Low confidence in threat indicators (0.23).
- Trend: No persistent malicious activity; risk score stable.
---
**Relationships**
- Network Links:
- Linked to subnet 149.54.51.0/24 (same network).
- DNS associations failed (multiple timed-out queries).
- Organizational Context: No direct ties to known malicious entities.
---
**Neighborhood Analysis**
- Subnet: 149.54.51.0/24.
- Risk Density: 66.7% abuse density (2 high-risk, 1 medium-risk neighbors).
- High-Risk Neighbors:
- 149.54.51.42 (80 risk score).
- 149.54.51.82 (80 risk score).
- Subnet Classification: "Mostly clean" but elevated risk due to neighbors.
---
**Actionable Insights**
1. Monitor Web Services:
- The HTTP/HTTPS server (lighttpd) may be a target. Check for misconfigurations or unauthorized access attempts.
- Verify SSH access controls (port 22) to prevent brute-force attacks.
2. Investigate DNS Issues:
- Failed DNS resolution (timed-out queries) could indicate misconfigured DNS settings or network interference.
3. Subnet Risk Mitigation:
- Consider blocking high-risk neighbors (149.54.51.42, 149.54.51.82) to reduce exposure.
- Monitor the 149.54.51.0/24 subnet for suspicious activity.
4. Geolocation Anomalies:
- While geolocation matches Kabul, the IPโs low confidence in threat indicators and DNS errors warrant further validation.
---
Recommendation: Prioritize monitoring the IPโs network behavior and subnet peers. Validate DNS configurations and ensure server security controls are up to date.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Abdul Sattar Hadeed |
| ASN | AS55330 |
| Network Name | GCN-DCN |
| CIDR Block | 149.54.0.0/17 |
| RIR | ARIN |
| Country | AF |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 33% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 27% | 2 | 4 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 13% | 1 | 1 |
| Overall | 22% | 9 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-14 07:13:12 UTC |
| Last Seen | 2026-06-07 03:21:11 UTC |
| Profile Built | 2026-06-07 03:30:06 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 22 |
Full dossier details are available via our API.