176.103.5.132
IP Intelligence Briefing: 176.103.5.132
Date: 2026-06-10
---
**1. Core Profile**
- Risk Score: 80 (High Risk)
- Ownership:
- ASN: 56812 (DIALOGKOM-MNT)
- Organization: Dialog Kom (Ukraine)
- Geolocation: Ukraine, Kharkivska Oblast, Balakliya (49.46°N, 36.87°E)
- Threat Indicators:
- No direct malicious indicators (no malware, phishing, or exploit campaigns).
- DNSBL Listings: 5 entries (moderate abuse risk).
- Network Role:
- Firewalled / No Services (no open ports or TLS certificates detected).
- Subnet: 176.103.0.0/19 (DIALOG-NET).
---
**2. Historical Observations**
- Threat Feed Activity:
- Listed in 8 threat feeds (3 high-severity, 5 medium).
- Last observed in DNSBL listings (June 10, 2026).
- Network Stability:
- Route instability: BGP prefix (176.103.0.0/20) shows inconsistent routing.
- Operator Score: 0.13 (Minimal risk, but low confidence).
---
**3. Relationships & Neighborhood**
- Network Affiliation:
- Same network as DIALOG-NET (ASN 56812).
- Subnet Abuse Density: 8.8% (moderate risk).
- High-Risk Neighbors:
- IPs with risk scores โฅ70: 176.103.5.64, 176.103.5.65, 176.103.5.156, 176.103.5.192, 176.103.5.250, 176.103.5.253, 176.103.5.254.
---
**4. Recommendations**
- Monitoring:
- Track DNSBL listings and network routing stability.
- Investigate high-risk neighbors for potential lateral movement or shared infrastructure.
- Mitigation:
- Consider blocking the IP in firewall rules (e.g., iptables, Cloudflare WAF) due to high risk score and DNSBL activity.
- Verify network configuration for potential misconfigurations or compromised subnets.
Note: While no direct malicious activity is observed, the IPโs high risk score and association with risky neighbors warrant close scrutiny.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | DIALOGKOM-MNT |
| ASN | AS56812 |
| Network Name | DIALOG-NET |
| CIDR Block | 176.103.0.0/19 |
| RIR | RIPE |
| Country | UA |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 30% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 14% | 6 | 7 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-23 12:22:25 UTC |
| Last Seen | 2026-06-10 07:35:24 UTC |
| Profile Built | 2026-06-10 07:38:45 UTC |
| Data Freshness | Live |
| Signal Types | 14 |
| Total Observations | 14 |
Full dossier details are available via our API.