187.85.107.34

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing for 187.85.107.34/32

1. Basic Information:

IP Address: 187.85.107.34/32
Country: Brazil
ASN: [ASN Information] (Use your tools to retrieve the exact ASN)
ISP: [ISP Information] (Use your tools to retrieve the ISP details)

2. Ownership and Registration:

Owner: [Owner Information] (Extract from Whois database)
Registered Name: [Registered Name] (Extract from Whois database)
Contact Information: [Contact Details] (Extract from Whois database)

3. Historical Activity:

Previous Associations: [Historical Associations] (Use threat intelligence platforms to check for any past malicious activities or associations)
Past Threats: [List of Past Threats] (Use threat intelligence databases to identify any past threats associated with this IP)

4. Current Observations:

Current Activity: [Current Activity Type] (Use network monitoring tools to determine if the IP is currently involved in any suspicious activities)
Traffic Patterns: [Traffic Patterns] (Analyze traffic logs to identify any unusual patterns or behaviors)
Port Scans: [Port Scan Activity] (Check for any ongoing port scan activities associated with this IP)

5. Relationships and Connections:

Related IPs: [List of Related IPs] (Use network mapping tools to identify IPs that frequently communicate with this IP)
Known Malicious IPs: [List of Known Malicious IPs] (Check against blacklists and threat intelligence databases for any known malicious IPs associated with this IP)

6. Neighborhood Data:

Subnet Analysis: [Subnet Details] (Analyze the subnet to identify other IPs and their activities)
Neighboring IPs: [List of Neighboring IPs] (Identify IPs in the same subnet and check their activities and reputations)

7. Threat Assessment:

Risk Level: [Risk Level] (Based on the gathered data, determine the risk level associated with this IP)
Recommendations: [Actionable Recommendations] (Provide actionable recommendations for SOC teams, such as monitoring, blocking, or further investigation)

Conclusion:

The IP 187.85.107.34/32, located in Brazil and operated by [ISP], has a history of [brief summary of historical activity]. Current observations indicate [summary of current activity], with traffic patterns suggesting [summary of traffic patterns]. The IP is associated with [summary of relationships and connections], and the subnet analysis reveals [summary of neighborhood data]. Based on the data, the risk level is assessed as [Risk Level], and it is recommended that [Actionable Recommendations] be implemented to mitigate potential threats.

Disclaimer: This briefing is based on the latest available data and should be used as part of a comprehensive security strategy. Continuous monitoring and analysis are recommended to keep abreast of any changes in activity or threat landscape.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇧🇷 Brazil
Region	RS
City	Cacapava do Sul
Timezone	—
Latitude	-30.61
Longitude	-53.47

🏢 Ownership & Registration

Organization	UNIFIQUE TELECOMUNICACOES S/A
ASN	AS28343
Network Name	517703
CIDR Block	187.85.96.0/20
RIR	LACNIC
Country	BR
Abuse Contact	—

🌐 DNS Intelligence

PTR	187-85-107-34.unifique.net
Forward Confirmed	No — PTR hostname does not resolve back to this IP (weak signal)
Forward Hostnames	`187-85-107-34.unifique.net`

🔐 DNS Hygiene

Hygiene Score	40% (Fair)
SPF	Present
DMARC	Not configured
FCrDNS	Not verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Residential
Service Purpose	Single-Service Host
Network Tier	End-User — Residential ISP endpoint

Residential

🔌 Services & Open Ports

Port	Service	Protocol	Banner
8080	http-alt	tcp	—
Closed Ports	22, 25, 80, 443, 3389, 8443 (1 open / 7 scanned)

Server	lighttpd/1.4.39
HTTP Title	—

⚠ Unusual for residential — open services on a home connection may indicate self-hosting, compromise, or misconfigured networking equipment.

🔐 TLS Certificate

🔒

No certificate

Issued by —

N/A

SANs	None
Valid From	—
Valid Until	—

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	36%	2	4
routing	13%	1	1
services	24%	2	3
ownership	15%	2	2
reputation	32%	1	3
geolocation	30%	2	3
Overall	25%	10	16

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Mostly Consistent (80%) — 1 contradiction(s)
Attribution	Low (35%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

⚠ Claimed geolocation contradicts RTT physics measurement

📅 Observation Timeline 🔄 Live

First Seen	2026-05-07 23:04:02 UTC
Last Seen	2026-06-25 07:54:50 UTC
Profile Built	2026-06-23 01:50:55 UTC
Data Freshness	Live
Signal Types	20
Total Observations	24

🔍 20 signal types · 24 observations collected

This report is generated from 20+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

187.85.107.34📋 Copy