221.211.106.162
IP Intelligence Dossier
Your IP: 216.73.216.123
π€ Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 221.211.106.162
Date: 2026-06-08
1. Core Profile
- Risk Score: 80 (High Risk)
- Ownership: Registered to *ChinaUnicom Hostmaster* (ASN 4837, APNIC)
- Geolocation: China (P.R. China), coordinates 34.77°N, 113.72°E (Asia/Shanghai timezone)
- Network Role: Mobile carrier infrastructure (LTE/5G), no public services or hosting
2. Threat Indicators
- No active malicious indicators (no DNS, TLS, or service anomalies).
- No known abuse, spam, or campaign associations.
- No Tor exit nodes or blacklisted entries.
3. Historical Observations
- Recent signals (June 8, 2026) show minimal risk (score 0.15) with no threat persistence.
- Ownership stability: No changes detected in 30 days.
- BGP stability: Route instability flagged (routeChanges30d = 0, stabilityScore = 0).
4. Network Relationships
- Linked to *UNICOM-HL* network (same subnet/ASN).
- No direct connections to other IPs or domains.
5. Neighborhood Analysis
- Subnet *221.211.106.162/24* has 0 active neighbors.
- Subnet abuse density: 0% (no malicious siblings).
6. Recommendations
- Monitor for BGP route stability changes, as the IP shows unstable routing.
- Track network role changes, as mobile carrier infrastructure may shift.
- No immediate mitigation required due to lack of direct threats.
Conclusion:
This IP is part of China Unicomβs mobile carrier network, registered to a legitimate provider with no direct malicious activity. While flagged as high-risk due to carrier infrastructure, it currently shows no active threats. Focus on BGP stability and network role monitoring.
*Generated via IPDebrief threat intelligence tools.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | ChinaUnicom Hostmaster |
| ASN | AS4837 |
| Network Name | UNICOM-HL |
| CIDR Block | 221.212.0.0/16 |
| RIR | APNIC |
| Country | CN |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
No certificate
Issued by β
N/A
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 35% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 15% | 6 | 7 |
Coverage: 5/6 dimensions Β· Data sufficiency: partial
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-18 09:24:29 UTC |
| Last Seen | 2026-06-08 13:06:26 UTC |
| Profile Built | 2026-06-08 13:47:38 UTC |
| Data Freshness | Live |
| Signal Types | 17 |
| Total Observations | 18 |
π 17 signal types Β· 18 observations collected
This report is generated from 17+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
βΉοΈ About This Report
All data shown is publicly available network metadata β IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.