82.183.54.18

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# Intelligence Briefing: 82.183.54.18

## Executive Summary

IP 82.183.54.18 is a residential endpoint in Malmö, Sweden, operated by Ownit Broadband Registry (ASN 8434). The address carries a low risk score (25/100) with no active threat indicators. While the IP has been listed on one DNSBL, historical data shows minimal threat activity with no persistent malicious patterns observed.

## Technical Profile

Ownership & Registration:

ASN: 8434 (Ownit Broadband Registry)
RIR: RIPE
Network Type: Residential
DNS: 82-183-54-18.customers.ownit.se

Geolocation:

Country: Sweden (SE)
Region: Skåne County
City: Malmö
Timezone: Europe/Stockholm
Geo Confidence: 0.52 (multi-signal inference)

Network Classification:

Infrastructure Type: Residential Endpoint
Not identified as: CDN, cloud, VPN, proxy, Tor, hosting, or mobile
Open ports: None detected
TLS certificates: None
Service banners: None

## Threat Intelligence

Current Risk Assessment:

Risk Score: 25/100 (Low Risk)
Abuse Confidence: Not applicable
Blacklist Status: Listed on 1 of 8 DNSBLs
Known Attacker: No
Spam Source: No
Tor Exit Node: No

Threat Indicators:

Active threats: None
Known campaigns: None
Correlated IPs: None
Certificate matches: 0

Control Plane Data:

Origin ASN: 8434
BGP Prefix: 82.182.0.0/15
Route Stability: Flagged as unstable
DNSSEC Valid: Yes
DNSBL Listed: 1/8 lists

## Historical Analysis

Observation Count: 22 signals recorded

Key Historical Observations:

June 23, 2026: Listed on multiple blacklist sources (8 total lists, 1 active listing, maximum severity: high)
June 18, 2026: Multiple geolocation and operator score signals collected
No persistent malicious threat pattern identified
Single threat observation recorded (not persistently malicious)

Temporal Risk Trend:

Ownership changes: 0
Threat persistence days: 0
Threat observation count: 1
Classification: Not persistently malicious

## Network Context

Neighborhood Analysis (82.183.54.0/24):

Subnet abuse density: 1 (low)
Classification: Mostly clean
Inherited risk: 2
Active siblings: 1
Threat siblings: 1

Relationship Graph:

26 relationships identified
Primary associations: DNS hostname (82-183-54-18.customers.ownit.se)
Network associations: REF5247-OWNIT-SE (multiple instances)
No external organization or certificate relationships

Note: Discrepancy observed between profile neighborhood data (abuse density: 1, threat siblings: 1) and neighbor discovery results (abuse density: 0, neighbor count: 0). Recommend cross-referencing with community blacklist sources.

## Recommended Actions

Based on the low-risk residential classification and absence of active threat indicators, no immediate blocking is required. Standard monitoring practices apply:

1. Allow Traffic: Residential endpoint with low risk score

2. Monitor DNSBL Listings: One active listing detected; monitor for changes

3. Standard Logging: Log connection attempts for forensic purposes

4. No Blocking Required: Not classified as attacker, spam source, or Tor exit

Firewall Rules: No specific iptables/nftables rules generated due to low-risk classification.

## Intelligence Confidence

Overall Assessment Confidence: Moderate
Data Sources: 13 unique sources
Observation Confidence Ranges: 0.22-0.85
Last Updated: 2026-06-23

Conclusion: This is a legitimate residential IP with minimal threat activity. The single DNSBL listing warrants monitoring but does not indicate malicious behavior. Treat as low-priority for defensive monitoring.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇸🇪 Sweden
Region	M
City	Bunkeflostrand
Timezone	Europe/Stockholm
Latitude	55.61
Longitude	13.00

🏢 Ownership & Registration

Organization	Ownit Broadband Registry
ASN	AS8434
Network Name	—
CIDR Block	—
RIR	RIPE
Country	—
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR	82-183-54-18.customers.ownit.se
Forward Confirmed	Yes — FCrDNS verified
Forward Hostnames	`82-183-54-18.customers.ownit.se`

🔐 DNS Hygiene

Hygiene Score	80% (Excellent)
SPF	Present
DMARC	Present
FCrDNS	Verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Residential
Service Purpose	Residential Endpoint
Network Tier	End-User — Residential ISP endpoint

Residential

🔌 Services & Open Ports

Port	Service	Protocol	Banner
No open ports detected
Closed Ports	22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)

Server	—
HTTP Title	—

🔐 TLS Certificate

🔒

No certificate

Issued by —

N/A

SANs	None
Valid From	—
Valid Until	—

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	33%	2	4
routing	13%	1	1
services	15%	2	2
ownership	24%	2	3
reputation	24%	1	3
geolocation	21%	2	2
Overall	22%	10	15

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (70%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-07 23:04:36 UTC
Last Seen	2026-06-23 22:35:49 UTC
Profile Built	2026-06-23 22:51:57 UTC
Data Freshness	Live
Signal Types	23
Total Observations	26

🔍 23 signal types · 26 observations collected

This report is generated from 23+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

82.183.54.18📋 Copy