72.14.176.160
IP Intelligence Briefing: 72.14.176.160
Date: 2026-06-16
---
**1. Risk Profile**
- Overall Risk Score: Low (25/100)
- Provider Score: 0 (Linode)
- Authority Score: 0
- Stability Score: 0
- Threat Indicators: None detected (no malware, spam, or malicious activity).
---
**2. Ownership & Network**
- ISP/Provider: Linode (AS63949)
- Network: 72.14.176.0/20
- Geolocation:
- Country: US (Texas, Richardson)
- Plausibility: Invalid (RTT inconsistency: 56ms vs. expected 159.6ms for 7979km).
- Accuracy Radius: 2500km (low precision).
- Network Role: Cloud infrastructure (Linode hosting).
---
**3. Threat & Security Observations**
- DNS Associations:
- Linked to `prod-bromine-us-central-61.li.binaryedge.ninja` (hostname).
- Services: No open ports or TLS certificates detected.
- Subnet Abuse:
- Abuse Density: 0% (clean subnet).
- Neighbors: 1 IP in 72.14.176.160/24 (all low risk).
---
**4. Historical Trends**
- Signal Stability:
- No recent changes in geolocation, DNS, or threat indicators.
- Observation History: Mixed data quality (some entries truncated).
- Risk Persistence: No persistent malicious activity detected.
---
**5. Relationships & Context**
- Connected Entities:
- Network: Linode (same provider).
- Hostname: `prod-bromine-us-central-61.li.binaryedge.ninja` (potential service or application).
- No Known Campaigns or Malware Signatures.
---
**6. Recommendations**
1. Validate Geolocation: Investigate the RTT inconsistency (56ms vs. expected 159.6ms) for potential misconfiguration or spoofing.
2. Monitor DNS Hostname: Track `prod-bromine-us-central-61.li.binaryedge.ninja` for unusual activity.
3. Subnet Monitoring: Continue monitoring the 72.14.176.160/24 subnet for new IPs, though current abuse density is low.
---
Conclusion:
This IP is associated with Linode's cloud infrastructure and shows no immediate threat indicators. However, the geolocation plausibility issue and DNS association warrant further investigation to rule out anomalies or misconfigurations. No urgent action required, but ongoing monitoring is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Linode |
| ASN | AS63949 |
| Network Name | LINODE |
| CIDR Block | 72.14.176.0/20 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | prod-bromine-us-central-61.li.binaryedge.ninja |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | prod-bromine-us-central-61.li.binaryedge.ninja |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.15 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 32% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 21% | 2 | 2 |
| ownership | 30% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 27% | 2 | 3 |
| Overall | 25% | 10 | 15 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Moderate (55%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-03 12:22:23 UTC |
| Last Seen | 2026-06-21 10:34:12 UTC |
| Profile Built | 2026-06-21 10:41:29 UTC |
| Data Freshness | Live |
| Signal Types | 24 |
| Total Observations | 26 |
Full dossier details are available via our API.