119.28.89.249
IP Intelligence Dossier
Your IP: 216.73.216.123
๐ค Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 119.28.89.249
Date: 2026-06-17
---
**1. Risk Profile**
- Overall Risk Score: 25 (Low Risk)
- Threat Indicators: No malicious activity detected (no malware, phishing, or C2 indicators).
- Geolocation: Hong Kong (HK), with a validated distance of 9,173.5 km from the probe. ICMP validation failed, preventing full geographic confirmation.
- Network Ownership: Registered to TencentCloud (ASN 132203), a legitimate Chinese cloud provider.
---
**2. Network Behavior**
- Subnet: 119.28.89.249/24
- Neighbor Analysis: No active IPs detected in the subnet (neighborCount: 0). Subnet abuse density is 0%, suggesting minimal malicious activity in the broader network.
- BGP/Routing:
- Origin ASN: 132203 (TencentCloud).
- Route stability: Unstable (isRouteStable: false).
- DNSSEC validation: Enabled.
---
**3. Historical Observations**
- Last 30 Days:
- Single observation recorded (confidence: 0.24).
- No persistent threats or repeated scans detected.
- No DNS or service anomalies noted.
---
**4. Relationships & Context**
- Linked Entities:
- Directly tied to TencentCloud (AS132203).
- No linked domains, certificates, or subnets.
- Services: No open ports, TLS certificates, or HTTP services detected.
---
**5. Recommendations**
- Monitor Geolocation: Validate IPโs geographic context using alternative methods (e.g., DNS leaks, HTTP headers).
- Check Subnet Activity: Investigate why no neighbors were detected in the 119.28.89.0/24 subnet. Could indicate restricted or private network segmentation.
- Maintain Baseline: No immediate mitigation required, but continue monitoring for anomalies due to ICMP validation failures.
---
Source: IPDebrief Threat Intelligence Platform
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | James Tian |
| ASN | AS132203 |
| Network Name | TencentCloud |
| CIDR Block | 119.28.0.0/15 |
| RIR | APNIC |
| Country | HK |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
No certificate
Issued by โ
N/A
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 24% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 15% | 2 | 2 |
| reputation | 19% | 1 | 3 |
| geolocation | 27% | 2 | 3 |
| Overall | 18% | 9 | 13 |
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-19 15:27:18 UTC |
| Last Seen | 2026-06-24 12:39:57 UTC |
| Profile Built | 2026-06-24 12:49:52 UTC |
| Data Freshness | Live |
| Signal Types | 16 |
| Total Observations | 16 |
๐ 16 signal types ยท 16 observations collected
This report is generated from 16+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
โน๏ธ About This Report
All data shown is publicly available network metadata โ IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.