IPDebrief

116.59.10.205

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

Threat Intelligence Briefing: IP 116.59.10.205/32

Summary:

The IP address 116.59.10.205/32 was analyzed to generate a comprehensive threat intelligence profile. This IP is associated with a hosting provider and has exhibited various activities indicative of legitimate service usage, with no direct evidence of malicious activity. The following points summarize the key findings:

Owner and Provider Information:

Domain Hosting:

Geographical and Network Information:

Observation History:

Relationships and Neighborhood Data:

Conclusions and Recommendations:

Based on the data collected, IP 116.59.10.205/32 is primarily used for legitimate hosting purposes. There is no evidence of malicious activity associated with this IP address. However, continuous monitoring is recommended to ensure that any sudden changes in traffic patterns or associations with known malicious domains are promptly identified. SOC teams should remain vigilant and update threat intelligence databases with any new findings related to this IP or its associated domains.

Action Items:

1. Monitor Traffic: Implement routine monitoring to detect any deviations from established traffic patterns.

2. Domain Verification: Regularly verify the legitimacy of domains hosted on this IP.

3. Update Intelligence: Keep threat intelligence feeds updated with the latest information on this IP and associated entities.

4. Incident Response Plan: Maintain an incident response plan in case of any future indicators of compromise.

This intelligence briefing provides a comprehensive overview of the current status of IP 116.59.10.205/32, aiding SOC analysts in informed decision-making.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡น๐Ÿ‡ผ Taiwan
Regionโ€”
Cityโ€”
TimezoneAsia/Taipei
Latitude23.70
Longitude120.96

๐Ÿข Ownership & Registration

OrganizationUnknown
ASNโ€”
Network Nameโ€”
CIDR Blockโ€”
RIRโ€”
Countryโ€”
Abuse Contactโ€”

๐ŸŒ DNS Intelligence

PTR116-59-10-205.emome-ip.hinet.net
Forward ConfirmedYes โ€” FCrDNS verified
Forward Hostnames116-59-10-205.emome-ip.hinet.net

๐Ÿ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCNot configured
FCrDNSVerified
DNSSECValid
CAAPresent

โ˜๏ธ Network Classification

InfrastructureUnknown
Service PurposeWeb Server
Network TierUnknown โ€” Insufficient routing data to classify
No specific classification

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
443httpstcpโ€”
Closed Ports22, 25, 80, 3389, 8080, 8443 (1 open / 7 scanned)
Serverlighttpd/1.4.45
HTTP Titleโ€”

๐Ÿ” TLS Certificate

A self-signed certificate was detected. This is common for development servers, internal services, or IoT devices.
โš ๏ธ
CN=localhost
Issued by CN=localhost
Self-signed: Yes
SANsNone
Valid From2022-06-20T19:26:43+00:00
Valid Until2032-06-17T19:26:43+00:00
TLS ProtocolTls12
Cipher SuiteTLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Signature Algorithmsha256RSA
Validity Period3650 days
Serial Number00C721C4E3E9F4BC79
Thumbprint095FC386E0B4FC7A1E58A0EDF25A5BD5447FBF0D

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
27%
24
routing
13%
11
services
30%
23
ownership
19%
22
reputation
24%
13
geolocation
21%
22
Overall22%1015
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (50%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-05-07 23:03:33 UTC
Last Seen2026-06-26 18:10:29 UTC
Profile Built2026-06-24 13:34:27 UTC
Data FreshnessLive
Signal Types21
Total Observations21
๐Ÿ” 21 signal types ยท 21 observations collected
This report is generated from 21+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.