73.31.85.4
THREAT INTELLIGENCE BRIEFING: 73.31.85.4/32
EXECUTIVE SUMMARY
IP 73.31.85.4 is a residential Comcast cable connection from Bluefield, WV (US) classified as low risk. The IP is currently firewalled with no active services and presents no immediate threat indicators. Historical observation indicates residential infrastructure with minimal abuse activity.
OWNERSHIP & GEOLOCATION
- Provider: Comcast IP Services, L.L.C. (ASN 7922)
- Network: RICHMOND-34 (73.31.0.0/16)
- Geolocation: United States, West Virginia (Bluefield)
- Infrastructure Type: Residential cable connection
- Registration: ARIN
RISK ASSESSMENT
- Overall Risk Score: 25/100 (Low Risk)
- Abuse Confidence: None
- Threat Indicators: 0 blacklists, 0 known campaigns
- Classification: Not malicious, not hosting, not proxy/VPN/Tor
NETWORK STATE
- Service Status: Firewalled / No Services Detected
- Open Ports: None
- DNS Resolution: Forward confirmed (c-73-31-85-4.hsd1.wv.comcast.net)
- PTR Record: c-73-31-85-4.hsd1.wv.comcast.net
THREAT HISTORY (Last 30 Days)
- Observations: 21 total signals
- Threat Persistence: 1 observation, not persistently malicious
- Subnet Context: 73.31.85.0/24 neighborhood shows "mostly_clean" classification with 1 threat sibling
- Recent Activity: Last signal observed 2026-06-25T21:38:28 UTC
RELATIONSHIP ANALYSIS
- DNS Associations: Multiple entries to c-73-31-85-4.hsd1.wv.comcast.net
- Network Affiliations: RICHMOND-34 network block
- No Correlated Campaigns: 0 cert matches, 0 banner matches
NEIGHBORHOOD CONTEXT
- Subnet: 73.31.85.0/24
- Abuse Density: 0 (low)
- Risk Distribution: All sibling IPs classified as low risk
- Active Threat Siblings: 1 (minimal neighborhood risk)
RECOMMENDED ACTIONS
- No firewall rules recommended β IP presents low risk
- Monitoring: Standard traffic monitoring acceptable
- Blocking: Not advised based on current risk profile
- Investigation Priority: Low
NOTES FOR SOC ANALYST
This IP represents a typical residential Comcast cable connection. The single threat observation in neighborhood context suggests isolated activity rather than coordinated campaign behavior. No immediate defensive actions required. Monitor for changes in threat indicators or network role classification.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Comcast IP Services, L.L.C. |
| ASN | AS7922 |
| Network Name | RICHMOND-34 |
| CIDR Block | 73.31.0.0/16 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | β |
π DNS Intelligence
| PTR | c-73-31-85-4.hsd1.wv.comcast.net |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | c-73-31-85-4.hsd1.wv.comcast.net |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Residential |
| Service Purpose | Residential Endpoint |
| Network Tier | End-User β Residential ISP endpoint |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 24% | 2 | 3 |
| routing | 8% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 22% | 1 | 3 |
| geolocation | 27% | 2 | 3 |
| Overall | 18% | 9 | 13 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Moderate (55%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-09 22:11:27 UTC |
| Last Seen | 2026-06-25 21:37:54 UTC |
| Profile Built | 2026-06-25 21:43:15 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 19 |
Full dossier details are available via our API.