181.23.113.121
IP Intelligence Briefing: 181.23.113.121
Date: 2026-06-12
---
**1. IP Profile**
- Risk Score: Moderate (50/100)
- Ownership:
- ASN: AS22927
- Organization: Telefonica de Argentina
- Subnet: 181.20.0.0/14
- Registration: LACNIC
- Geolocation:
- Country: US (flagged as plausible, but geolocation data inconsistent with ASN origin).
- Region/City: US-NY (New York).
- Threat Indicators:
- No active malware, spam, or attacker associations.
- Listed in 2/8 DNSBLs (low-risk, but warrants monitoring).
- Network Role:
- Mobile carrier infrastructure (not residential, CDN, or cloud).
- No open ports or TLS services detected.
---
**2. Observation History**
- Latest Activity: 2026-06-12
- DNSBL Listings: 2/8 (low-severity).
- BGP Data: Associated with AS22927 (Telefonica).
- DNS Records: PTR hostname `181-23-113-121.mrse.com.ar` resolved.
- Geolocation Anomalies: RTT (175ms) inconsistent with 11,547km distance (minimum possible RTT: 230.9ms).
---
**3. Relationships**
- Network Associations:
- Subnet: `181.20.0.0/14` (Telefonica de Argentina).
- DNS hostname: `181-23-113-121.mrse.com.ar`.
- No Known Campaigns or Malicious Links detected.
---
**4. Neighborhood Analysis**
- Subnet: 181.23.113.0/24
- Abuse Density: 0% (no malicious neighbors reported).
- Active Siblings: 0 (no neighboring IPs in dataset).
---
**5. Recommendations**
1. Monitor DNSBL Listings: Verify if the IP is flagged for low-risk abuse (e.g., open proxies, spam).
2. Validate Geolocation: Investigate discrepancies between geolocation (US) and ASN origin (Argentina).
3. Check DNS Records: Ensure `181-23-113-121.mrse.com.ar` is legitimate and not associated with malicious domains.
4. Network Segmentation: Confirm isolation of this subnet to prevent lateral movement if compromised.
Conclusion: This IP is owned by a mobile carrier but shows low-risk DNSBL associations. No active threats detected, but geolocation inconsistencies and DNS anomalies require further investigation.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Telefonica de Argentina |
| ASN | AS22927 |
| Network Name | 181.20.0.0 - 181.23.255.255 |
| CIDR Block | 181.20.0.0/14 |
| RIR | LACNIC |
| Country | AR |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 181-23-113-121.mrse.com.ar |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | 181-23-113-121.mrse.com.ar |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 0% | 0 | 0 |
| routing | 0% | 0 | 0 |
| services | 0% | 0 | 0 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 25% | 2 | 2 |
| Overall | 8% | 4 | 5 |
| Data Coherence | Mostly Consistent (80%) โ 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Fresh
| First Seen | 2026-05-30 10:58:28 UTC |
| Last Seen | 2026-06-13 03:45:09 UTC |
| Profile Built | 2026-06-12 05:45:22 UTC |
| Data Freshness | Fresh |
| Signal Types | 21 |
| Total Observations | 21 |
Full dossier details are available via our API.