216.73.162.20
IP Intelligence Briefing: 216.73.162.20
Date: 2026-06-06
---
**1. Risk Profile**
- Overall Risk Score: 25 (Low Risk)
- Provider Score: 0
- Authority Score: 0
- Stability Score: 0
- Threat Indicators: None detected (no malware, phishing, or malicious activity).
- Geolocation: Registered to Prefixx, Inc. (US, Ontario, Toronto). Coordinates and timezone are unverified.
---
**2. Network & Ownership**
- ASN: 206092 (Prefixx, Inc.)
- Network: PFX-EXPRESSVPN (arin registry)
- Subnet: 216.73.162.0/24
- Subnet Abuse Density: 14.89% (mostly clean, 7 high-risk neighbors in 47 total).
- Services: No open ports, no TLS certificates, no HTTP services.
- Network Role: Firewalled / No Services (not CDN, VPN, proxy, or residential).
---
**3. Threat & Behavioral Observations**
- Historical Activity:
- 19 observations since 2026-05-29, with minimal confidence in most.
- No DNSSEC violations, no honeypot hits, no WAF violations.
- Threat Feeds: Not listed in any blacklists or threat repositories.
- Routing: Stable BGP prefix (216.73.162.0/24) with no recent route changes.
---
**4. Relationships & Neighbors**
- Connected Entities:
- Same network as PFX-EXPRESSVPN (Prefixx, Inc.).
- No direct relationships to organizations, domains, or certificates.
- Subnet Neighbors:
- 47 total IPs in 216.73.162.0/24.
- 7 high-risk neighbors (abuse density 14.89%), but the IP itself has no risk score.
- Example neighbors: 216.73.162.46, 216.73.162.75 (risk scores 0β50).
---
**5. Security Recommendations**
- Firewall Rules: No recommendations due to low risk.
- Monitoring: Track subnet neighbors with higher abuse density for anomalies.
- Geolocation Verification: Confirm coordinates and timezone for accurate threat modeling.
---
Conclusion: 216.73.162.20 is a low-risk IP associated with a legitimate network (Prefixx, Inc.) and no malicious activity. While the subnet contains some high-risk neighbors, the IP itself shows no signs of compromise. SOC teams should focus on monitoring the broader subnet for potential threats.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Prefixx, Inc. |
| ASN | AS206092 |
| Network Name | PFX-EXPRESSVPN |
| CIDR Block | 216.73.160.0/22 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 19% | 1 | 2 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 19% | 2 | 2 |
| Overall | 18% | 9 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-13 19:04:57 UTC |
| Last Seen | 2026-06-06 23:52:50 UTC |
| Profile Built | 2026-06-06 23:58:10 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 18 |
Full dossier details are available via our API.