223.197.153.138
IP Intelligence Briefing: 223.197.153.138/32
*Generated via IPDebrief tools*
---
**1. Core Profile**
- Risk Score: 80 (High Risk)
- Ownership: Owned by IRT-PCCW-BIA-HK (Hong Kong) under ASN 4760.
- Geolocation: Hong Kong (HK), Latitude 22.4, Longitude 114.11.
- Network Role: Firewalled / No Services (no open ports, no TLS/HTTP detected).
- Threat Indicators: No malicious activity observed; no blacklist entries or campaign links.
---
**2. Observation History**
- Consistent Low Risk: Minimal risk signals over the past 30 days (operator score: 0.13).
- Subnet Abuse Density: 75% abuse density in the 223.197.153.0/24 subnet.
- Neighbor Risk: 3 of 4 sibling IPs in the subnet are high-risk (scores β₯80).
---
**3. Network Relationships**
- Linked Entities:
- Subnet: 223.197.153.0/24 (abuse density: 75%).
- Organization: IRT-PCCW-BIA-HK (Hong Kong ISP).
- DNS: PTR hostname 223-197-153-138.static.imsbiz.com (hosted domain: imsbiz.com).
---
**4. Neighborhood Analysis**
- Subnet: 223.197.153.0/24 (4 total IPs, 3 high-risk neighbors).
- High-Risk Neighbors:
- 223.197.153.135 (score: 80)
- 223.197.153.143 (score: 80)
- 223.197.153.206 (score: 40)
- Subnet Classification: "Mostly Clean" but inherited risk from neighbors.
---
**5. Actionable Threat Insights**
- Risk Context: While the IP itself is not malicious, its subnet has a high abuse density.
- Recommendations:
- Monitor the 223.197.153.0/24 subnet for lateral movement or compromised hosts.
- Investigate neighboring IPs (223.197.153.135, 223.197.153.143) for potentialε ³θ threats.
- Verify if the ISP (IRT-PCCW-BIA-HK) has reported any network-wide issues.
- Consider blocking high-risk neighbors if they are not authorized assets.
---
Conclusion: This IP is part of a subnet with elevated risk due to neighboring activity. Despite its own clean profile, the network environment warrants closer scrutiny.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | IRT-PCCW-BIA-HK |
| ASN | AS4760 |
| Network Name | NETVIGATOR |
| CIDR Block | 223.197.128.0/18 |
| RIR | APNIC |
| Country | HK |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | 223-197-153-138.static.imsbiz.com |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | 223-197-153-138.static.imsbiz.com |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Single-Service Host |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | β |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 39% | 2 | 5 |
| routing | 17% | 1 | 1 |
| services | 26% | 2 | 3 |
| ownership | 24% | 2 | 3 |
| reputation | 27% | 1 | 4 |
| geolocation | 21% | 2 | 2 |
| Overall | 26% | 10 | 18 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Fresh
| First Seen | 2026-05-07 23:04:14 UTC |
| Last Seen | 2026-06-26 18:11:11 UTC |
| Profile Built | 2026-06-25 09:44:01 UTC |
| Data Freshness | Fresh |
| Signal Types | 22 |
| Total Observations | 23 |
Full dossier details are available via our API.