IP Intelligence Briefing: 103.163.220.44
*Generated via IPDebrief Threat Intelligence Platform*
---
**Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Owned by XS Usenet (ASN 206092, APNIC registry).
- Geolocation:
- Country: Netherlands (NL)
- Latitude: 52.13, Longitude: 5.29 (note: "Tokyo" listed in region/city may be an error).
- Threat Indicators: No malicious activity detected (no indicators, blacklist entries, or campaigns).
- Network Role: Unknown infrastructure type; no open ports/services detected.
---
**Observation History**
- Geolocation Inference: Confirmed Netherlands location with 150km accuracy radius.
- Traceroute: Average RTT of 186ms, 9215km distance from probe (consistent with NL).
- Subnet Abuse: 103.163.220.0/24 subnet has 0.0634 abuse density (mostly clean).
- DNSBL Listings: Listed in 1 of 8 DNSBLs (low-severity risk).
---
**Relationships**
- Network Affiliation: Linked to XSUSENETBV-AP (APNIC netname).
- No External Threat Links: No correlated IPs, domains, or certificates detected.
---
**Neighborhood Analysis**
- Subnet: 103.163.220.0/24 (142 total IPs, 24 active).
- Risk Distribution:
- 25 IPs with medium risk (50 avg score).
- 75 IPs with low risk (0β25 avg score).
- Abuse Density: 0.0634 (mostly clean).
---
**Actionable Insights**
1. Monitor DNSBL Listings: Investigate the single DNSBL listing (e.g., Spamhaus, OpenBL) for potential false positives or emerging threats.
2. Verify Geolocation Accuracy: Discrepancy between "NL" and "Tokyo" in region/city may indicate data inconsistency.
3. Subnet Surveillance: Track the 103.163.220.0/24 subnet for changes in abuse density or new malicious activity.
4. Ownership Context: XS Usenetβs infrastructure appears benign, but validate against known service providers.
---
Conclusion: 103.163.220.44 is a low-risk IP with no direct malicious indicators. However, its DNSBL listing and ambiguous geolocation data warrant further investigation. No immediate defensive action is required, but continued monitoring of the subnet and ownership is recommended.
*Generated by IPDebrief β Cyber Threat Intelligence Platform*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | XS Usenet |
| ASN | AS206092 |
| Network Name | XSUSENETBV-AP |
| CIDR Block | 103.163.220.0/23 |
| RIR | APNIC |
| Country | NL |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 30% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 14% | 6 | 7 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-21 20:58:32 UTC |
| Last Seen | 2026-06-26 18:10:13 UTC |
| Profile Built | 2026-06-09 13:17:24 UTC |
| Data Freshness | Live |
| Signal Types | 15 |
| Total Observations | 15 |
Full dossier details are available via our API.