{"ip":"108.62.62.41","overview":{"reputation":"High Risk","riskScore":80,"providerScore":0,"authorityScore":0,"stabilityScore":0,"stabilityLabel":null,"riskBreakdown":null},"ownership":{"asn":396190,"orgName":"LeaseWeb USA, Inc. Seattle","netname":null,"abuseContact":"Available via RDAP","rir":"arin","registrationDate":null,"cidrBlock":null},"geolocation":{"country":"US","countryCode":"US","region":"WA","city":"Seattle","latitude":47.45,"longitude":-122.31,"timezone":"America/Los_Angeles","accuracyRadiusKm":75,"geoSourceCount":2,"geoConsensus":true,"geoPlausible":true},"threat":{"indicators":[],"reputationSources":[],"abuseConfidenceScore":null,"isTorExit":false,"isKnownAttacker":false,"isSpamSource":false,"blacklistCount":0,"pulsediveRisk":null,"knownCampaigns":[],"threatFeeds":[]},"networkRole":{"provider":null,"infrastructureType":null,"connectionType":null,"isCloud":false,"isCdn":false,"isVpn":false,"isProxy":false,"isTor":false,"isHosting":false,"isMobile":false,"isResidential":false,"isBogon":false,"isAnycast":false,"servicePurpose":"Firewalled / No Services"},"mobileCarrier":null,"dns":{"ptrHostnames":["v525.er01.sea.as15003.net"],"forwardConfirmed":false,"domain":"as15003.net","hostedDomains":[],"hostedDomainCount":0,"emailAuth":{"hasSPF":false,"hasDMARC":false,"spfRecord":null,"dmarcRecord":null,"txtRecordCount":0,"domain":null},"forwardResolutionCount":1,"forwardHostnames":["v525.er01.sea.as15003.net"]},"services":{"openPorts":[],"tlsCert":null,"httpTitle":null,"serverBanner":null,"certificates":null},"actions":{"recommendations":[]},"evidence":{"sources":[]},"controlPlane":{"originAsn":396190,"bgpPrefix":"108.62.56.0/21","asPath":"3257 396190","rpkiState":null,"irrConsistency":null,"routeChanges30d":0,"isRouteStable":true,"isMoas":false,"dnssecValid":true,"hasCaa":false,"dnsblListedCount":4,"dnsblTotalLists":8,"operatorScore":0.2609,"operatorLabel":"Basic","delegationAgeDays":3344,"rirRegistry":"arin"},"temporal":{"ownershipChanges":0,"avgOwnershipDays":null,"threatPersistenceDays":0,"threatObservationCount":0,"isPersistentlyMalicious":false},"neighborhood":{"subnet":"108.62.62.41/24","abuseDensity":0.5664,"classification":"high_abuse","inheritedRisk":22,"totalSiblings":256,"activeSiblings":143,"threatSiblings":145},"campaign":{"likelihood":"none","certMatches":0,"bannerMatches":0,"correlatedIps":0,"certSubjects":[]},"geoValidation":{"geoPlausible":true,"distanceKm":3865.3,"minRttMs":null,"avgRttMs":null,"probeCount":0,"violation":"ICMP blocked - unable to validate","minimumPossibleRttMs":77.3},"fingerprint":{"server":null,"statusCode":null,"hasHsts":false,"hasCsp":false,"hasHttp2":false,"faviconHash":null,"bodyHash":null,"poweredBy":null,"generator":null,"ttfbMs":null,"httpVersion":null,"hasReferrerPolicy":false,"hasPermissionsPolicy":false,"headerOrder":[]},"emailReputation":{"reputation":null,"hasScore":false,"senderScore":null},"traceroute":{"hopCount":30,"firstHopRttMs":0.2,"lastHopRttMs":81.1,"timedOutHops":23,"transitNetworks":["Comcast","Lumen"]},"behavioral":{"honeypotHits":0,"enumerationStrikes":0,"wafViolations":0,"totalIncidents":0,"categories":[],"autoBanned":false,"isActiveAttacker":false},"confidence":{"overall":0.2457,"dataSufficiency":1,"coveredDimensions":6,"totalDimensions":6,"label":"Very Low"},"attribution":{"confidence":50,"label":"Moderate","hasOwnership":true,"hasFcrDns":false,"geoConsensus":true,"geoPlausible":true,"hasRpkiValid":false,"hasIrrMatch":false},"dataFreshness":{"newestObservation":"2026-06-26T23:34:27.2731250+00:00","oldestSignalAge":"2026-05-13T11:18:17.7169690+00:00","signalTypesPresent":26,"totalObservations":30,"freshnessLabel":"Live"},"contradictions":[],"intent":{"classification":"Unknown Intent","reason":"Insufficient data to classify intent"},"recommendation":{"action":"Block","severity":"critical","reason":"High risk score with strong threat evidence","firewallRules":[{"format":"iptables","rule":"iptables -A INPUT -s {ip} -j DROP  # IPDebrief: Block — High risk score with strong threat evidence"},{"format":"nginx","rule":"deny {ip};  # IPDebrief: Block — High risk score with strong threat evidence"},{"format":"pf","rule":"block in quick on egress from {ip}  # IPDebrief: Block — High risk score with strong threat evidence"}]},"dnsHygiene":{"score":20,"label":"Poor","components":{"spf":false,"dmarc":false,"fcrDns":false,"dnssec":true,"caa":false}},"coherence":{"score":100,"label":"Consistent","contradictionCount":0},"networkTier":{"tier":"Tier 3","reason":"Basic operator with some routing infrastructure","operatorScore":0.2609,"hasRpki":false,"hasIrr":false,"ixpCount":0},"threatActor":{"type":"Blacklisted Host","reason":"Listed on 4 DNS blocklists","tags":["blacklisted"]},"narrative":null,"meta":{"firstSeen":"2026-05-07T23:04:59.206295+00:00","lastSeen":"2026-06-26T18:11:58.373925+00:00","profileComputed":"2026-06-26T23:35:00.177444+00:00","product":"IPDebrief","copyright":"Copyright © 2026 Jason Alberino. All rights reserved."}}