27.150.170.101
IP Intelligence Briefing: 27.150.170.101
Date: 2026-06-08
---
**1. Core Profile**
- Risk Score: 50 (Moderate Risk)
- Ownership: Owned by IRT-CHINANET-CN (APNIC registry, ASN 133774).
- Geolocation: Located in China (CN) with a 2500 km accuracy radius.
- Network Role: Firewalled / No Services (no open ports, TLS, or HTTP detected).
- Threat Indicators: No malicious activity detected (no indicators, blacklists, or campaigns).
---
**2. Observation History**
- Recent Activity (2026-06-08):
- Minimal risk inferred via DNSSEC and CAA records.
- Subnet abuse density: 1/10 (low risk).
- No significant changes in geolocation or threat signals.
- Historical Trends:
- 14 observations over 30 days, with consistent low-risk scores.
- No persistence or campaign correlations.
---
**3. Relationships**
- Linked Entities:
- Part of CHINANET-FJ network (Fujian province, China).
- No direct links to known malicious organizations, domains, or certificates.
- Network Context:
- Classified as "mostly_clean" with inherited risk score of 2/10.
---
**4. Neighborhood Analysis**
- Subnet: 27.150.170.101/24.
- Neighbor Activity:
- 0 active neighbors detected (no sibling IPs in the subnet).
- Subnet abuse density: 1/10 (low risk).
---
**5. Recommendations**
- Monitor: Track changes in network behavior (e.g., open ports, DNS activity).
- Verify: Confirm legitimacy of IRT-CHINANET-CN ownership and network segmentation.
- Isolate: Maintain firewall rules to restrict traffic to this IP due to its firewalled nature.
Conclusion: This IP exhibits moderate risk but shows no direct malicious activity. Its association with a Chinese ISP and isolated subnet suggest it may be a legitimate but poorly configured system. Continuous monitoring is advised.
---
*Generated by IPDebrief threat intelligence platform.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | IRT-CHINANET-CN |
| ASN | AS133774 |
| Network Name | โ |
| CIDR Block | 27.150.168.0/21 |
| RIR | APNIC |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 36% | 2 | 5 |
| routing | 13% | 1 | 1 |
| services | 24% | 2 | 3 |
| ownership | 20% | 2 | 3 |
| reputation | 21% | 1 | 3 |
| geolocation | 32% | 2 | 3 |
| Overall | 24% | 10 | 18 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:04:15 UTC |
| Last Seen | 2026-06-26 02:15:24 UTC |
| Profile Built | 2026-06-23 09:44:42 UTC |
| Data Freshness | Live |
| Signal Types | 25 |
| Total Observations | 27 |
Full dossier details are available via our API.