173.239.218.236
IP Intelligence Briefing: 173.239.218.236
*Generated via IPDebrief Analysis*
---
**Overview**
- Risk Score: 25 (Low Risk)
- Ownership: Registered to Private Customer (ASN 62240, netname LOGICWEB)
- Geolocation: United States, California, Los Angeles (34.05°N, -118.24°W)
- Network Role: Unknown infrastructure type; no cloud, CDN, or mobile indicators
- Threat Indicators: No malicious activity detected (no threats, spam, or abuse reports)
---
**Key Findings**
1. Stable Ownership:
- Assigned to "Private Customer" with no recent ownership changes.
- Subnet 173.239.218.0/24 shows 0 abuse density and no persistent malicious activity.
2. Network Behavior:
- No open ports, services, or TLS certificates detected.
- DNSSEC validation is active, but no DNS-related threats observed.
- No email authentication records (SPF/DKIM) or associated domains.
3. Historical Observations:
- Geolocation and DNSSEC data consistent over 30 days.
- No spikes in risk or anomalous activity.
4. Neighbor Analysis:
- Subnet contains 51 IPs, with 9 medium-risk and 42 low-risk neighbors.
- Notable high-risk neighbors:
- 173.239.218.75, 78, 89, 92 (risk scores 40β50).
- No direct association with malicious networks.
---
**Recommendations**
- Monitor Subnet: Track high-risk neighbors (e.g., 173.239.218.75β92) for potential lateral movement.
- Verify Ownership: Confirm legitimacy of "Private Customer" ASN (AS62240) with ARIN.
- No Immediate Action: No evidence of active threats, but maintain baseline monitoring.
---
Conclusion:
173.239.218.236 appears to be a legitimate, low-risk IP with stable ownership. While the subnet contains some medium-risk neighbors, no direct malicious activity is linked to this IP. SOC teams should focus on monitoring the broader subnet for anomalies.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Private Customer |
| ASN | AS62240 |
| Network Name | LOGICWEB |
| CIDR Block | 173.239.218.0/24 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | β |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 24% | 2 | 2 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 13% | 6 | 6 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-20 11:45:42 UTC |
| Last Seen | 2026-06-09 03:06:28 UTC |
| Profile Built | 2026-06-09 03:16:17 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 21 |
Full dossier details are available via our API.