182.95.106.138

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 182.95.106.138/32

## Executive Summary

IP 182.95.106.138 is a high-risk mobile IP address associated with Bharti Airtel's network infrastructure in India. The address demonstrates elevated threat indicators including multiple DNSBL listings and presence within a neighborhood showing moderate abuse density. Immediate defensive monitoring is recommended.

## Threat Profile

Attribute	Value
Risk Score	80 (High Risk)
ASN	9498 (IRT-BHARTI-IN)
Organization	BHARTI-IN / Bharti Airtel Ltd.
Location	India (IN), Phase III, New
Connection Type	Mobile (Airtel LTE/5G)
Netblock	182.95.0.0/17
Classification	Single-Service Host

## Network Characteristics

Open Services: TCP/22 (SSH-2.0-OpenSSH_9.8)
DNS Resolution: None detected
Reverse DNS: Not configured
TLS/SSL: No certificates detected
Email Authentication: SPF/DMARC not configured

## Threat Indicators

DNSBL Listings: 6 out of 8 total lists
Operator Score: 0.2174 (Minimal)
Known Attacker: Not flagged
Tor Exit Node: False
Spam Source: Not flagged
Campaign Correlation: None detected

## Historical Observations

The IP has generated 22 observations across multiple signal types including operator scoring, routing analysis, service detection, ownership verification, reputation assessment, and geolocation. Recent observations indicate:

Consistent mobile carrier attribution (Airtel)
Neighborhood abuse density of 0.6
Multiple signal confidence levels ranging from 0.23 to 0.90

## Neighborhood Analysis (182.95.106.0/24)

Metric	Value
Abuse Density	0.4-0.6
Total Siblings	5
Active Siblings	4
Threat Siblings	3
Classification	Mostly Clean

High-Risk Neighbors:

182.95.106.78 (Risk Score: 80)
182.95.106.102 (Risk Score: 80)
182.95.106.130 (Risk Score: 55)

## Relationship Graph

46 relationships detected, primarily same-network associations with BHARTI-IN. No cross-network, hostname, certificate, or organizational relationships were identified.

## Security Recommendations

1. Monitor: Implement enhanced logging for this IP due to high-risk classification (80/100)

2. Block: Consider blocking at network perimeter if traffic patterns indicate malicious activity

3. Investigate: Correlate with other high-risk neighbors (182.95.106.78, 182.95.106.102) for potential coordinated activity

4. DNSBL Check: Verify against remaining 2 unlisted DNSBLs for completeness

5. Mobile Traffic: Flag as mobile-originated traffic; validate business necessity for mobile IP connections

## Intelligence Confidence

Data confidence levels vary by signal type (0.23-0.90). The high risk score (80) combined with multiple DNSBL listings and neighborhood abuse density supports a High Risk classification despite the absence of specific threat indicators.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇮🇳 India
Region	New
City	Phase III
Timezone	—
Latitude	22.00
Longitude	79.00

🏢 Ownership & Registration

Organization	IRT-BHARTI-IN
ASN	AS9498
Network Name	BHARTI-IN
CIDR Block	182.95.0.0/17
RIR	APNIC
Country	IN
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR Record	No PTR
Forward Confirmed	No — PTR hostname does not resolve back to this IP (weak signal)

🔐 DNS Hygiene

Hygiene Score	40% (Fair)
SPF	Not configured
DMARC	Not configured
FCrDNS	Not verified
DNSSEC	Valid
CAA	Present

☁️ Network Classification

Infrastructure	Mobile
Service Purpose	Single-Service Host
Network Tier	Unknown — Insufficient routing data to classify

Mobile

🔌 Services & Open Ports

Port	Service	Protocol	Banner
22	ssh	tcp	SSH-2.0-OpenSSH_9.8
Closed Ports	25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned)

Server	—
HTTP Title	—
SSH Version	SSH-2.0-OpenSSH_9.8

🔐 TLS Certificate

🔒

No certificate

Issued by —

N/A

SANs	None
Valid From	—
Valid Until	—

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	30%	2	4
routing	13%	1	1
services	26%	2	3
ownership	24%	2	3
reputation	23%	1	3
geolocation	21%	2	2
Overall	23%	10	16

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (50%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-07 23:03:59 UTC
Last Seen	2026-06-26 18:10:52 UTC
Profile Built	2026-06-22 23:51:23 UTC
Data Freshness	Live
Signal Types	20
Total Observations	22

🔍 20 signal types · 22 observations collected

This report is generated from 20+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

Metric	Value
Abuse Density	0.4-0.6
Total Siblings	5
Active Siblings	4
Threat Siblings	3
Classification	Mostly Clean

182.95.106.138📋 Copy