IPDebrief

216.152.252.202

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

Threat Intelligence Briefing: IP Address 216.152.252.202/32

Observation History:

The IP address 216.152.252.202/32 was observed engaging in multiple activities indicative of both legitimate and potentially malicious behavior. The historical data collected over time shows:

Relationships and Associations:

Neighborhood Data:

Actionable Recommendations:

1. Monitor Traffic: SOC teams should implement enhanced monitoring of outbound traffic from this IP, focusing on non-business hours and unusual destination IPs.

2. Inspect SSL/TLS Certificates: Regularly review SSL/TLS certificates issued to this IP to identify any anomalies or associations with known malicious entities.

3. Block Suspicious Domains: Update firewall and intrusion detection systems to block traffic to and from domains associated with this IP.

4. Conduct Regular Audits: Perform periodic audits of network logs to detect any patterns indicative of data exfiltration or unauthorized access attempts.

5. Collaborate with Hosting Provider: Engage with the hosting provider to report findings and seek their assistance in mitigating potential threats originating from their infrastructure.

This intelligence briefing provides a comprehensive overview of the activities associated with IP 216.152.252.202/32, offering actionable insights for SOC teams to enhance their defensive posture.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΊπŸ‡Έ United States
RegionAZ
CityYuma
Timezoneβ€”
Latitude32.71
Longitude-114.49

🏒 Ownership & Registration

OrganizationBeamspeed LLC
ASNAS14237
Network Nameβ€”
CIDR Blockβ€”
RIRARIN
Countryβ€”
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTRip-216-152-252-202.wireless.dyn.beamspeed.net
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnamesip-216-152-252-202.wireless.dyn.beamspeed.net

πŸ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAANot configured

☁️ Network Classification

InfrastructureUnknown
Service PurposeFirewalled / No Services
Network TierTier 3 β€” Basic operator with some routing infrastructure
No specific classification

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverβ€”
HTTP Titleβ€”

πŸ” TLS Certificate

πŸ”’
No certificate
Issued by β€”
N/A
SANsNone
Valid Fromβ€”
Valid Untilβ€”

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
28%
24
routing
13%
11
services
20%
23
ownership
20%
23
reputation
27%
13
geolocation
31%
23
Overall23%1017
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-05-07 23:05:11 UTC
Last Seen2026-06-26 18:12:08 UTC
Profile Built2026-06-27 08:23:53 UTC
Data FreshnessLive
Signal Types23
Total Observations51
πŸ” 23 signal types Β· 51 observations collected
This report is generated from 23+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.