120.76.158.232
IP Intelligence Briefing: 120.76.158.232
Date: 2026-06-13
---
**1. Risk Profile**
- Overall Risk: Moderate (Risk Score: 50)
- Ownership: Registered to ALISOFT (ASN 37963) under APNIC. Abuse contact available via RDAP.
- Geolocation: Shenzhen, Guangdong, China (22.55°N, 114.07°E).
- Network Role: Firewalled host with no open services or TLS certificates detected.
---
**2. Threat Indicators**
- No Malicious Activity: No indicators of spam, attacks, or known malicious campaigns.
- DNS/Email: No DNS records or email authentication (SPF/DKIM) found.
- Historical Observations:
- Stable ownership (no recent changes).
- Geolocation consistent over time (Shenzhen, China).
- No spikes in threat signals or abnormal network behavior.
---
**3. Network Relationships**
- Linked Entities:
- Subnet 120.76.0.0/14 (ALISOFT).
- No direct connections to known malicious networks or subnets.
---
**4. Neighborhood Analysis**
- Subnet: 120.76.158.232/24.
- Neighbor Density: No active neighbors or abuse density detected.
- Isolation: Appears as a standalone host with no nearby risky IP activity.
---
**5. Recommendations**
- Monitoring: Track for unexpected DNS or service changes, as the IP is firewalled and lacks visibility.
- Ownership Verification: Investigate ALISOFT to confirm legitimacy, as the organization name is vague.
- Geolocation Check: Confirm if Shenzhen-based infrastructure aligns with expected network activity.
---
Conclusion: This IP exhibits moderate risk but shows no immediate malicious behavior. Prioritize monitoring for anomalies while verifying the ownership details of the associated network. No urgent mitigation required at this time.
Source: IPDebrief Threat Intelligence Platform.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | security trouble |
| ASN | AS37963 |
| Network Name | ALISOFT |
| CIDR Block | 120.76.0.0/14 |
| RIR | APNIC |
| Country | CN |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 25% | 1 | 1 |
| routing | 25% | 1 | 1 |
| services | 25% | 1 | 1 |
| ownership | 0% | 0 | 0 |
| reputation | 0% | 0 | 0 |
| geolocation | 0% | 0 | 0 |
| Overall | 12% | 3 | 3 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-06-07 07:49:00 UTC |
| Last Seen | 2026-06-26 18:10:31 UTC |
| Profile Built | 2026-06-13 18:39:37 UTC |
| Data Freshness | Live |
| Signal Types | 15 |
| Total Observations | 15 |
Full dossier details are available via our API.