158.173.77.156
IP Intelligence Briefing: 158.173.77.156
*Generated via IPDebrief Threat Intelligence Platform*
---
**1. Core Profile**
- Risk Score: 0 (Low Risk)
- Ownership: Registered to "VPN Consumer Milan, Italy" (ARIN).
- Geolocation:
- Country: US (New York, NY)
- Discrepancy: Ownership in Italy vs. geolocation in the US.
- Network Role: Firewalled / No Services (no open ports, no TLS/HTTP activity).
- Threat Indicators: No malicious activity, no known campaigns, no blacklist entries.
---
**2. Observation History (Last 30 Days)**
- Minimal Activity: 0 threat observations, 0 abuse signals.
- Traceroute:
- Routed through Comcast (US) with 13 hops.
- Final hop: `be-32031-cs03.newyork.ny.ibone.comcast.net` (New York, NY).
- Geolocation Plausibility: Low confidence due to mismatch between ownership (Italy) and geolocation (US).
---
**3. Network Relationships**
- Subnet: 158.173.77.0/24
- Neighbors:
- 41 IPs in subnet, 40% classified as low risk.
- 2 IPs with elevated authority scores (50), but no malicious indicators.
- Shared Network: Linked to "MILAN-IT-158-173-77-0" (ARIN).
---
**4. Neighborhood Analysis**
- Abuse Density: 0% (clean subnet).
- Threat Siblings: 0 IPs with active threats.
- Notable Neighbors:
- 158.173.77.9, 158.173.77.34, and 158.173.77.129 show moderate authority scores (50), but no malicious activity.
---
**5. Recommendations**
- Monitor Geolocation Discrepancy: Investigate why an Italian-owned IP is geolocated in the US. Could indicate misconfiguration or routing anomalies.
- Subnet-Wide Monitoring: Track the 158.173.77.0/24 subnet for unexpected traffic patterns.
- Verify Ownership: Confirm if the "VPN Consumer Milan" entity is legitimate to avoid false positives.
Conclusion: This IP appears to be a legitimate, low-risk residential/business IP with no immediate threat indicators. The geolocation inconsistency warrants further investigation, but no actionable threats are detected at this time.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | VPN Consumer Milan, Italy |
| ASN | AS206092 |
| Network Name | MILAN-IT-158-173-77-0 |
| CIDR Block | 158.173.77.0/24 |
| RIR | ARIN |
| Country | IT |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 0% | 0 | 0 |
| routing | 0% | 0 | 0 |
| services | 0% | 0 | 0 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 6% | 3 | 4 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-06-02 12:03:20 UTC |
| Last Seen | 2026-06-12 16:01:17 UTC |
| Profile Built | 2026-06-12 16:49:05 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 18 |
Full dossier details are available via our API.