37.221.136.100
IP Intelligence Briefing: 37.221.136.100
*Generated via IPDebrief Analysis*
---
**1. Core Profile**
- Risk Score: Moderate (55/100)
- Ownership: Radio Service Ltd. (ASN 62384, RIPE)
- Geolocation: Lviv, Ukraine (50.45°N, 30.53°E)
- Network Role: Firewalled / No Services (no open ports, no TLS/HTTP indicators)
- Threat Status: No malicious indicators (no blacklists, Tor, or spam associations).
---
**2. Observation History**
- Stability: No recent changes in risk score (55) or ownership.
- Threat Persistence: Zero threat observations in 30-day history.
- Geolocation Consistency: Plausible (matches registered IP range).
---
**3. Network Relationships**
- Shared Network: Part of RADIOSERVICE-201712 (37.221.128.0/20) with Radio Service Ltd.
- Subnet Abuse Density: 0.333 (3 high-risk, 6 medium-risk neighbors in /24).
- Notable Neighbors:
- 37.221.136.174 (80 risk), 37.221.136.181 (80 risk), 37.221.136.236 (80 risk).
- Siblings show mixed risk levels, but no direct malicious ties.
---
**4. Threat Context**
- No Direct Malicious Activity: No DNS, TLS, or service indicators.
- Subnet Risks: While the IP itself is clean, its subnet contains higher-risk IPs. Monitor for potential lateral movement or shared infrastructure risks.
- Provider/ASN: Radio Service Ltd. (RIPE) has no abuse reports, but the subnetβs abuse density suggests cautious monitoring.
---
**5. Recommended Actions**
- SOC Analyst:
- Monitor traffic to/from this subnet for anomalies, especially given the presence of higher-risk neighbors.
- Verify if the network is part of a larger infrastructure (e.g., CDN, cloud) that could be compromised.
- Check for DNSSEC validation and BGP stability (IP is DNSSEC-valid but has no BGP route stability).
- Firewall: Consider blocking or rate-limiting traffic from high-risk siblings (e.g., 37.221.136.174/181/236) if they are not authorized.
---
Conclusion: 37.221.136.100 is a low-risk IP with no direct malicious activity, but its subnet contains higher-risk peers. No immediate action is required, but ongoing monitoring is advised due to the subnetβs abuse density.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Radio Service Ltd. |
| ASN | AS62384 |
| Network Name | RADIOSERVICE-201712 |
| CIDR Block | 37.221.128.0/20 |
| RIR | RIPE |
| Country | UA |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 35% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 15% | 6 | 7 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-20 11:46:39 UTC |
| Last Seen | 2026-06-09 03:38:20 UTC |
| Profile Built | 2026-06-09 04:11:16 UTC |
| Data Freshness | Live |
| Signal Types | 15 |
| Total Observations | 15 |
Full dossier details are available via our API.