192.227.210.218
IP Intelligence Briefing: 192.227.210.218
Date: 2026-05-29
---
**1. Core Profile**
- Risk Rating: Low Risk (Risk Score: 0 / Provider Score: 0 / Authority Score: 0)
- Ownership: Registered to CENTRIOHOST-LLC (ARIN) with abuse contact available.
- Geolocation: Buffalo, NY, USA (42.89°N, -78.88°W). Confirmed via MaxMind geolocation.
- Network Role: Single-service host (SSH on port 22). No CDN, cloud, or residential indicators.
- Control Plane: Minimal operator risk (score: 0.2174). DNSSEC valid, CAA records present.
---
**2. Threat Indicators**
- No malicious activity detected: No threat feeds, blacklists, or campaign associations.
- Scans: Detected scanning activity (ports 22, 80, 443, etc.) but no exploitation or C2 signs.
- DNS: No resolvable PTR records or DNS associations.
---
**3. Observation History**
- Latest Activity:
- Geolocation confirmed in Buffalo, NY (2026-05-29).
- Network scan detected (SSH open, no HTTP/TLS services).
- Historical Data:
- Conflicting geolocation data (Bangladesh, confidence: 0.95) and low-confidence network scans (2026-05-22).
- No persistent threats or abuse reports.
---
**4. Network Relationships**
- Linked Entities:
- Same network: CENTRIOHOST-LTD (AS-192.227.210.192/27).
- DNS associations failed (timed out errors).
- Subnet Abuse Density: 0% (no malicious neighbors).
---
**5. Neighborhood Analysis**
- Subnet: 192.227.210.218/24.
- Neighbors:
- 192.227.210.106 (Risk Score: 25 / Authority Score: 50 β Medium Risk).
- Abuse Density: Low (no high-risk siblings).
---
**6. Recommendations**
- Monitor Neighbor: 192.227.210.106 shows medium risk; investigate potential association.
- Secure SSH: Ensure SSH access is restricted (e.g., key-based auth, rate limiting).
- Verify Geolocation: Discrepancies in location data may indicate misconfiguration or spoofing.
- Baseline Scans: No exploitation detected, but monitor for unexpected network activity.
Conclusion: 192.227.210.218 is a low-risk host with no direct malicious indicators. Focus on the neighboring IP (192.227.210.106) and ensure SSH security. No immediate mitigation required for this IP.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | CENTRIOHOST-LLC. |
| ASN | AS36352 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 192-227-210-218-host.colocrossing.com |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | 192-227-210-218-host.colocrossing.com |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Single-Service Host |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | β |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 2 |
| routing | 19% | 1 | 2 |
| services | 35% | 2 | 3 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 13% | 1 | 1 |
| Overall | 22% | 9 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-15 14:45:44 UTC |
| Last Seen | 2026-06-07 14:08:05 UTC |
| Profile Built | 2026-06-07 14:15:57 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 22 |
Full dossier details are available via our API.