8.213.226.73
IP Intelligence Briefing: 8.213.226.73
Date: 2026-06-06
---
**1. Risk Profile**
- Risk Score: 50 (Moderate Risk)
- Provider: IRT-ASEPL-SG (AS45102)
- Geolocation:
- Reported Location: Bangkok, Thailand (latitude 13.7551, longitude 100.5057)
- Actual Registration: Singapore (AS45102 registered with ARIN)
- Consistency: Inconsistent geolocation data; potential spoofing or misconfiguration.
- Network Role: Firewalled / No Services (no open ports, no TLS/HTTP services detected).
---
**2. Threat Observations**
- No Direct Threat Indicators:
- No malware, spam, or known attacker associations.
- Zero DNSBL listings, Tor exit nodes, or campaign correlations.
- Network Signals:
- Geolocation Inference: 2 sources (confidence 0.52) suggest Singapore/Bangkok.
- DNSSEC Validity: Confirmed (no DNS tampering detected).
- BGP Stability: Route instability detected (route changes in 30 days).
---
**3. Network Relationships**
- Subnet: 8.213.224.0/19 (AS45102)
- Related Entities:
- Linked to ASEPL-SG (IRT-ASEPL-SG).
- No hostname or certificate associations.
- Subnet Abuse Density: 1/256 IPs flagged (low risk).
---
**4. Neighborhood Analysis**
- Subnet: 8.213.226.0/24
- Active IPs: 0 (no sibling IPs observed).
- Abuse Density: 0% (clean subnet).
---
**5. Recommended Actions**
- Monitor Geolocation Discrepancy: Investigate why the IP reports Thailand but is registered in Singapore.
- Check Provider Policies: Review IRT-ASEPL-SGβs network for potential misconfigurations or spoofing.
- Maintain Current Controls: No firewall rules required due to low threat indicators.
- Continuous Monitoring: Track route stability and geolocation signals for anomalies.
---
Conclusion:
The IP exhibits moderate risk due to inconsistent geolocation and BGP instability but shows no direct malicious activity. Focus on verifying the providerβs network integrity and monitoring for unexpected behavior. No immediate action required, but ongoing surveillance is advised.
Source: IPDebrief Threat Intelligence Platform.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | IRT-ASEPL-SG |
| ASN | AS45102 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Single-Service Host |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u5 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 24% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 35% | 2 | 3 |
| Overall | 21% | 9 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-11 08:59:28 UTC |
| Last Seen | 2026-06-26 09:17:14 UTC |
| Profile Built | 2026-06-26 10:10:52 UTC |
| Data Freshness | Live |
| Signal Types | 17 |
| Total Observations | 21 |
Full dossier details are available via our API.