218.201.39.70
IP Intelligence Briefing: 218.201.39.70
Date: 2026-06-13
---
**1. Risk Profile**
- Overall Risk: Moderate (Risk Score: 40)
- Threat Indicators:
- No direct malicious activity detected (no known attackers, spam, or campaigns).
- DNSSEC validated but lacks CAA records.
- Listed in 2/8 DNSBLs (high-severity categories).
- Network Role: Firewalled / No Services (no open ports or TLS services detected).
- Geolocation:
- Registered to China (CN), Chongqing, under "ming chen" (ASN 9808).
- No geolocation consensus.
---
**2. Observation History**
- Latest Activity (2026-06-13):
- Associated with subnet `218.201.39.16/28` (Chongqing, China).
- DNSSEC valid but no CAA records.
- Listed in 2 high-severity DNSBLs (e.g., spam or abuse lists).
- Temporal Trends:
- No persistent malicious activity (threat persistence days: 0).
- Low risk score (0.15) with minimal data sufficiency.
---
**3. Relationships**
- Linked Entities:
- No direct relationships (subnets, hostnames, organizations, or certificates) found.
- No correlated IPs or campaign associations.
---
**4. Neighborhood Analysis**
- Subnet: `218.201.39.0/24` (abuse density: 0%).
- Neighbors:
- 218.201.39.71: Risk Score 0, Authority Score 50 (potentially benign).
- No other active or threatening siblings in the subnet.
---
**5. Recommendations**
- Monitor DNS Activity: Investigate DNSBL listings (e.g., spam or abuse sources) and ensure CAA records are configured.
- Subnet-Level Scrutiny: While the subnet has low abuse density, the presence of 2 DNSBL listings warrants closer inspection of neighboring IPs.
- Firewall Rules: Consider allowing traffic to this IP if itβs part of a legitimate network, but block traffic from high-risk neighbors (e.g., 218.201.39.71 if flagged).
Conclusion: This IP appears dormant with minimal risk, but its DNSBL associations and subnet context suggest further monitoring for potential abuse.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | ming chen |
| ASN | AS9808 |
| Network Name | CQ-CHONGQINGYIDONG |
| CIDR Block | 218.201.39.16/28 |
| RIR | APNIC |
| Country | CN |
| Abuse Contact | β |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 25% | 1 | 1 |
| routing | 25% | 1 | 1 |
| services | 25% | 1 | 1 |
| ownership | 0% | 0 | 0 |
| reputation | 0% | 0 | 0 |
| geolocation | 0% | 0 | 0 |
| Overall | 12% | 3 | 3 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-05 19:23:43 UTC |
| Last Seen | 2026-06-13 07:33:54 UTC |
| Profile Built | 2026-06-13 07:44:23 UTC |
| Data Freshness | Live |
| Signal Types | 15 |
| Total Observations | 15 |
Full dossier details are available via our API.