178.230.64.120
IP Intelligence Briefing: 178.230.64.120
Date: 2026-06-09
---
**1. Core Profile**
- Risk Score: 50 (Moderate Risk)
- Ownership: ASN 31615 (Odido-Netherlands, RIPE)
- Geolocation: Den Haag, South Holland, Netherlands (51.92°N, 4.48°E)
- Threat Indicators: No direct malicious activity detected.
- Network Role: Firewalled / No Services (no open ports, TLS, or HTTP signatures).
- Control Plane: BGP prefix 178.230.0.0/16, DNSSEC valid, no RPKI violations.
---
**2. Observation History**
- DNSBL Listings:
- Listed in 8 DNSBLs (2 high-severity threats, 6 medium).
- Last listed: 2026-06-09 (confidence 0.85).
- ICMP Validation:
- ICMP blocked; traceroute failed (likely firewalled).
- BGP Stability:
- Route stable (no recent changes).
- Temporal Trends:
- No persistent malicious activity; 0 threat observations in 30 days.
---
**3. Relationships**
- Network Affiliation:
- Linked to "Odido-Netherlands" (ASN 31615).
- No connections to known malicious organizations or subnets.
- DNS:
- No PTR records or domain associations.
- No email authentication (SPF/DKIM) detected.
---
**4. Neighborhood Analysis**
- Subnet: 178.230.64.0/24
- Abuse Density: 0% (no malicious neighbors).
- Active Siblings: 0 (no neighboring IPs reported).
---
**5. Threat Assessment**
- Likelihood of Attack: Low.
- Indicators:
- DNSBL listings suggest potential spam or abuse, but no confirmed campaigns.
- ICMP blocking indicates active firewall rules.
- Recommendations:
- Monitor DNSBL status for persistent listings.
- Validate DNSSEC and BGP configurations for potential spoofing risks.
- No immediate mitigation required for this IP.
---
Conclusion:
178.230.64.120 is a firewalled IP with moderate risk due to DNSBL associations, but no direct malicious activity is observed. The subnet shows no abuse patterns, and the IPโs network role suggests limited exposure. SOC teams should focus on monitoring DNSBL status and ensuring BGP/DNSSEC integrity.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Access & transport |
| ASN | AS31615 |
| Network Name | Odido-Netherlands |
| CIDR Block | 178.228.0.0/14 |
| RIR | RIPE |
| Country | NL |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 30% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 14% | 6 | 7 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-21 20:59:37 UTC |
| Last Seen | 2026-06-09 14:26:04 UTC |
| Profile Built | 2026-06-09 14:35:15 UTC |
| Data Freshness | Live |
| Signal Types | 16 |
| Total Observations | 16 |
Full dossier details are available via our API.