185.226.197.60
IP Intelligence Briefing: 185.226.197.60
Date: 2026-06-07
---
**1. Risk Profile**
- Risk Score: 25 (Low Risk)
- Provider: Unassigned (Abuse-C Role, RIPE)
- Geolocation: Portugal (PT), Latitude: 38.71, Longitude: -9.14
- Network Role: Firewalled / No Services (No open ports, no TLS/HTTP services)
- Threat Indicators: No known malicious activity, no blacklist entries, no Tor/VPN/CDN associations.
---
**2. Observations**
- High-Confidence Signals (0.95):
- Linked to Turkey (TR) via Alienvault-OTX, with 50+ pulses (e.g., "nested data omitted").
- Geolocation inconsistency: Portugal vs. Turkey.
- Lower-Confidence Signals (0.20โ0.30):
- No attacker/spam flags.
- BGP route stability: Unstable (routeChanges30d: 0, isRouteStable: false).
---
**3. Relationships**
- Network: Same subnet (185.226.197.0/24) with 18 neighbors.
- DNS: Associated with `zl-amsc-nl-gp6-wk118d.internet-census.org` (SPF-enabled, no DMARC).
- Shared Network: "ICG-4-ZEN-AMS" (likely a CDN or infrastructure network).
---
**4. Neighborhood Analysis**
- Subnet Abuse Density: 0% (low risk).
- Neighbor Risk Scores:
- 13 IPs with medium risk (25โ65), 4 low-risk (0โ25).
- Notable: 185.226.197.37 (65), 185.226.197.40 (65).
---
**5. Actions**
- Recommended: No firewall rules or actions required.
- Note: Monitor for geolocation discrepancies or new threat indicators.
---
Summary:
The IP 185.226.197.60 is part of a low-risk subnet with no direct malicious activity. However, its association with Turkey via Alienvault-OTX and geolocation inconsistency warrant further investigation. No immediate action is required, but continued monitoring is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Abuse-C Role |
| ASN | AS21859 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | zl-amsc-nl-gp6-wk118d.internet-census.org |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | zl-amsc-nl-gp6-wk118d.internet-census.org |
๐ DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 1 |
| geolocation | 13% | 1 | 1 |
| Overall | 16% | 7 | 8 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-16 08:56:29 UTC |
| Last Seen | 2026-06-07 20:52:13 UTC |
| Profile Built | 2026-06-07 20:56:01 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 20 |
Full dossier details are available via our API.