39.37.182.135
INTELLIGENCE BRIEFING: IP 39.37.182.135
Classification: LOW RISK / PASSIVE INFRASTRUCTURE
Date: 2024-01-15
---
EXECUTIVE SUMMARY
IP address 39.37.182.135 is classified as low risk with a risk score of 0. The address shows no active threat indicators, is not blacklisted, and operates with no open services or exposed ports. Historical observations indicate minimal malicious activity. The IP belongs to ASN 17557 (PTCLBB-PK / Pakistan Telecommunication Company Limited) but has been geographically resolved to both Pakistan (PK) and France (FR), indicating routing diversity or potential multi-location deployment.
---
OWNERSHIP & CONTROL PLANE
- ASN: 17557 (PKTELECOM-AS-PK / PTCLBB-PK)
- Organization: Pakistan Telecommunication Company Limited (PK)
- RIR: APNIC
- CIDR Block: 39.37.128.0/18
- Geolocation: Marseille, FR (per latest profile) / Pakistan (per historical routing data)
- Control Plane: Route stable, 30-day route changes: 0, RPKI state: null
- BGP Path: 6939 โ 17557
---
THREAT ASSESSMENT
- Overall Risk Score: 0 (Low Risk)
- Abuse Confidence Score: None
- Blacklist Status: 0/8 DNSBL lists
- Known Attacker: False
- Spam Source: False
- Tor Exit Node: False
- Campaign Correlation: 0 cert matches, 0 correlated IPs
- Threat Persistence Days: 0
- Is Persistently Malicious: False
---
NETWORK SERVICES & PORTS
- Open Ports: None detected
- Service Purpose: Firewalled / No Services
- TLS Certificate: None
- HTTP Title: None
- Email Authentication: SPF: False, DMARC: False
- Forward DNS: Not confirmed, 0 forward hostnames
- Hosted Domains: 0
---
NETWORK NEIGHBORHOOD ANALYSIS
- Subnet: 39.37.182.135/24
- Abuse Density: 1 (mostly_clean classification)
- Inherited Risk: 2
- Total Siblings: 1
- Active Siblings: 1
- Threat Siblings: 1
- Neighbor Count: 0 (no sibling IPs returned)
- Risk Distribution: High: 0, Medium: 0, Low: 0
---
OBSERVATION HISTORY (25 Records)
Historical signals observed between 2026-06-05 and 2026-06-25 indicate:
- Early Observation (2026-06-05): ASN 17557 routing via Pakistan (PK), prefix 39.37.128.0/18
- Recent Observations (2026-06-25): Minimal signals, confidence 0.20-0.85
- Threat Observations: 1 total threat observation recorded
- Signal Trend: Stable/declining threat profile, no escalation detected
- Operator Score: 0.2609 (Basic classification)
---
NETWORK RELATIONSHIPS
- Same Network: 25 relationships identified to PTCLBB-PK (Pakistan Telecommunication Company Limited)
- Network Classification: PTCLBB-PK appears consistently across relationship graph
- No Hostname/Certificate Relationships: No associated hostnames, organizations, or certificates identified
---
TRACE ROUTE ANALYSIS
- Hop Count: 30
- First Hop RTT: 0.2ms
- Last Hop RTT: 207.8ms
- Timed Out Hops: 22
- Transit Networks: Comcast (US)
---
RECOMMENDED ACTIONS
- Firewall Classification: PASS / ALLOW (low risk)
- Monitoring: Standard monitoring recommended; no immediate blocking required
- Geolocation Verification: Note inconsistent geo-resolutions (PK vs FR) - may warrant additional verification if IP is observed in unexpected context
- Threat Indicators: None detected; standard baseline monitoring applies
---
CONCLUSION
IP 39.37.182.135 represents passive infrastructure with no active threat indicators. The address is properly classified under PTCLBB-PK (Pakistan Telecommunication Company Limited) with historical geolocation to both Pakistan and France. With zero open ports, no blacklist presence, and minimal historical threat activity, the IP does not require defensive action beyond standard network monitoring.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Munir Ahmed |
| ASN | AS17557 |
| Network Name | โ |
| CIDR Block | 39.37.128.0/18 |
| RIR | APNIC |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 4 |
| routing | 20% | 2 | 3 |
| services | 15% | 2 | 2 |
| ownership | 22% | 3 | 4 |
| reputation | 19% | 1 | 3 |
| geolocation | 13% | 1 | 1 |
| Overall | 20% | 11 | 17 |
| Data Coherence | Mostly Consistent (80%) โ 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-09 05:26:08 UTC |
| Last Seen | 2026-06-25 13:49:51 UTC |
| Profile Built | 2026-06-25 13:58:10 UTC |
| Data Freshness | Live |
| Signal Types | 24 |
| Total Observations | 25 |
Full dossier details are available via our API.