45.8.17.26
IP Intelligence Briefing: 45.8.17.26/32
Date: 2026-06-13
---
**1. Core Profile**
- Risk Score: 0 (Low Risk)
- Provider/Authority Scores: 0
- Geolocation:
- Country: United States (US)
- City: Amsterdam, Netherlands (conflicting data; potential geolocation error)
- Ownership:
- ASN: AS62240 (Clouvider Limited)
- Organization: Clouvider (registered in Netherlands)
- Subnet: 45.8.17.0/24 (allocated to Clouvider, 2019-04-12)
- Threat Indicators:
- No known malicious activity, spam, or attacker associations.
- No DNS or TLS certificate anomalies.
- Firewalled network with no open services or banners.
---
**2. Observation History**
- Recent Activity (Last 30 Days):
- 11 observations (e.g., DNS records, network prefixes).
- Clouviderε ³θ: Linked to AS62240 (Clouvider Limited) and Dutch IP ranges.
- DNSSEC Valid: True for reverse DNS (45.8.17.26.in-addr.arpa).
- No Threat Signals: No malware, phishing, or botnet activity detected.
---
**3. Network Relationships**
- Subnet: 45.8.17.0/24 (145 total IPs, 29 active).
- Neighbor Risk:
- Abuse Density: 8.28% (low-risk subnet).
- Threat Siblings: 12 IPs with medium/high risk (e.g., 45.8.17.2, 45.8.17.3).
- Control Plane: Stable BGP routes (no route changes in 30 days).
---
**4. Actionable Insights**
- SOC Recommendations:
- Monitor subnet neighbors (e.g., 45.8.17.2β45.8.17.6) for suspicious activity.
- Validate geolocation discrepancy (US vs. Netherlands) via additional probes.
- Confirm ownership via WHOIS or direct contact with Clouvider.
- No immediate mitigation required for 45.8.17.26 itself.
- Firewall Rules (Example):
```bash
# Block high-risk neighbors (example IPs)
iptables -A INPUT -s 45.8.17.2/32 -j DROP
iptables -A INPUT -s 45.8.17.3/32 -j DROP
```
---
Conclusion:
45.8.17.26 is a low-risk IP associated with Clouvider Limited, registered in the Netherlands but geolocated in the US. While no direct threats are detected, the subnet contains 12 medium-risk neighbors. SOC teams should prioritize monitoring the subnet for lateral movement or shared infrastructure risks.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | PREFIXBROKER-MNT |
| ASN | AS62240 |
| Network Name | VPN-Consumer-Network |
| CIDR Block | 45.8.17.0/24 |
| RIR | ARIN |
| Country | NL |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 0% | 0 | 0 |
| routing | 0% | 0 | 0 |
| services | 0% | 0 | 0 |
| ownership | 0% | 0 | 0 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 2% | 1 | 1 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-05 07:05:44 UTC |
| Last Seen | 2026-06-13 04:54:34 UTC |
| Profile Built | 2026-06-13 05:26:40 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 19 |
Full dossier details are available via our API.