182.95.185.14
IP Intelligence Briefing: 182.95.185.14
Date: 2026-06-17
---
**1. Core Profile**
- Risk Score: 80 (High Risk)
- Ownership:
- ASN: 9498
- Organization: IRT-BHARTI-IN (Bharti Airtel Ltd.)
- Region: India (IN)
- Network Role: Mobile device (LTE/5G) with no infrastructure or hosting indicators.
- Threat Indicators: No direct malicious activity detected (no malware, phishing, or known attacker associations).
---
**2. Observation History**
- Latest Activity:
- Traceroute (June 17): Geolocated to India (claimed coordinates ~21.9974°N, 79.0011°E, 6905 km from probe).
- Network Scan (June 2): Open SSH service (port 22).
- Trend: No persistent threats; last observed as low-risk in June 2.
---
**3. Network Relationships**
- Subnet: 182.95.185.0/24
- Neighbors:
- 5 high-risk IPs (80% abuse density) in the subnet.
- All neighbors share the same provider (IRT-BHARTI-IN).
- Cluster Risk: High abuse density (66.67%) with 4/6 siblings flagged as high-risk.
---
**4. Mobile Carrier Context**
- Provider: Bharti Airtel Ltd. (MCC: 404, MNC: 10)
- Technology: LTE/5G
- Risk Implication: Mobile networks are often used for botnets or data exfiltration. Monitor SSH activity and ensure device authentication controls.
---
**5. Actionable Insights**
- Threat Vector: SSH service on port 22 may be exploited; enforce strong authentication (e.g., public key, MFA).
- Subnet Risk: High abuse density in 182.95.185.0/24 suggests potential lateral movement or botnet activity. Consider blocking the subnet or monitoring traffic.
- SOC Guidance:
- Correlate with neighboring IPs (e.g., 182.95.185.30, 182.95.185.74) for potential cluster-based threats.
- Verify geolocation anomalies (e.g., spoofed coordinates) via additional probes.
---
Conclusion: This IP is part of a high-risk mobile network in India with no direct malicious indicators but elevated subnet risk. Monitor SSH activity and consider isolating the subnet due to its abuse density.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | IRT-BHARTI-IN |
| ASN | AS9498 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | APNIC |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 24% | 2 | 3 |
| ownership | 20% | 2 | 3 |
| reputation | 21% | 1 | 3 |
| geolocation | 32% | 2 | 3 |
| Overall | 23% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:03:59 UTC |
| Last Seen | 2026-06-26 18:10:52 UTC |
| Profile Built | 2026-06-23 00:17:20 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 24 |
Full dossier details are available via our API.