IPDebrief

34.79.161.31

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing: 34.79.161.31

*Generated via IPDebrief Analysis*

---

**Key Findings**

- Overall Risk Score: 25 (Low Risk)

- Provider/Authority Score: 0/100 (No malicious indicators)

- Network Classification: Cloud Compute (Google Cloud)

- Geolocation: Belgium (St. Ghislain, Walloon region)

- No malicious activity detected (no known attackers, spam, or blacklists).

- TLS certificate valid (Let’s Encrypt, subject: *peppol.dimm.odoo.bside.be*).

- HTTP server: nginx/1.14.2, SSH service active (OpenSSH 7.9).

- Linked to Google LLC (ASN 396982) via Cloud infrastructure.

- DNS records resolve to googleusercontent.com (Google Cloud Storage).

- No malicious domain or subdomain associations.

- Subnet 34.79.161.31/24 has 0 abuse density (mostly clean).

- Single neighbor 34.79.161.163 with higher authority score (90/100).

- Consistent low-risk behavior over 30 days.

- No significant changes in geolocation, DNS, or threat signals.

- Detected as a "Basic" operator (DNSSEC valid, CAA records present).

---

**Actionable Insights**

1. Legitimate Infrastructure:

- The IP is part of Google Cloud’s infrastructure, hosting a business application (Odoo-related domain).

- No signs of C2, phishing, or malicious payloads.

2. Geolocation Discrepancy:

- While geolocated to St. Ghislain (Belgium), some observations associate it with Brussels. Verify if this is due to routing or misattribution.

3. Monitoring Recommendations:

- Monitor for unexpected changes in TLS certificates or server banners.

- Ensure DNSSEC and CAA records are enforced for subdomains.

4. Neighbor Analysis:

- The single neighbor (34.79.161.163) has a high authority score; investigate if it’s a trusted cloud resource.

---

Conclusion:

34.79.161.31 is a low-risk, legitimate Google Cloud IP hosting a business application. No immediate threat detected. Continue monitoring for anomalies.

*Generated by IPDebrief, a cybersecurity threat intelligence platform.*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡§πŸ‡ͺ Belgium
RegionWAL
CitySt. Ghislain
TimezoneEurope/Brussels
Latitude50.45
Longitude3.82

🏒 Ownership & Registration

OrganizationGoogle LLC
ASNAS396982
Network Nameβ€”
CIDR Block34.79.160.0/20
RIRARIN
Countryβ€”
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTR31.161.79.34.bc.googleusercontent.com
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnames31.161.79.34.bc.googleusercontent.com

πŸ” DNS Hygiene

Hygiene Score100% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAAPresent

☁️ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeWeb Server
Network TierHosting β€” Infrastructure provider without advanced routing
CloudHosting

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
80httptcpβ€”
443httpstcpβ€”
22sshtcp
Closed Ports25, 3389, 8080, 8443 (3 open / 7 scanned)
Servernginx/1.14.2
HTTP Titleβ€”
SSH VersionSSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u4

πŸ” TLS Certificate

πŸ”’
CN=peppol.dimm.odoo.bside.be
Issued by CN=R12, O=Let's Encrypt, C=US
Self-signed: No
SANspeppol.dimm.odoo.bside.be
Valid From2026-04-16T02:21:58+00:00
Valid Until2026-07-15T02:21:57+00:00
TLS ProtocolTls12
Cipher SuiteTLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
Signature Algorithmsha256RSA
Validity Period89 days
Serial Number0573E55060C852857C89B628D2D21D7FD7BB
Thumbprint1B1F01505DA0A5110607F837A7E1FD9FC052ACE5

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
26%
24
routing
24%
23
services
25%
23
ownership
35%
35
reputation
28%
13
geolocation
23%
22
Overall27%1220
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-05-09 17:41:33 UTC
Last Seen2026-06-27 16:16:20 UTC
Profile Built2026-06-28 16:21:16 UTC
Data FreshnessLive
Signal Types26
Total Observations33
πŸ” 26 signal types Β· 33 observations collected
This report is generated from 26+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.