81.56.89.96
IP Intelligence Briefing: 81.56.89.96/32
Date: 2026-06-10
---
**1. Profile Summary**
- Risk Score: Moderate (50/100)
- Ownership: Registered to *ProXad* (AS29447, France).
- Geolocation: Confirmed as Newark, NJ, USA, but inconsistent with routing data (France/Italy sightings).
- Threat Indicators: No malicious activity detected (no blacklists, spam, or campaigns).
- Network Role: Firewalled / No Services; no open ports or TLS certificates.
---
**2. Observation History**
- Recent Activity (Last 30 Days):
- 16 observations logged, primarily from 2026-06-10.
- Mixed geolocation data: France (via BGP) and Italy (via geolocation probes).
- No persistent threats or abuse patterns.
---
**3. Network Relationships**
- Linked Entities:
- BGP prefix: `81.56.0.0/16` (ProXad, France).
- DNS: `gen92-2_migr-81-56-89-96.fbx.proxad.net` (ProXad domain).
- No connections to known malicious networks or C2 servers.
---
**4. Subnet Neighbors**
- Subnet: `81.56.89.96/24`
- Neighbor Analysis:
- 0 active IPs in the subnet.
- No abuse density or risky siblings detected.
---
**5. Recommended Actions**
- Firewall Rules (Sample):
```bash
iptables -A INPUT -s 81.56.89.96 -j DROP
nft add rule inet filter input ip saddr 81.56.89.96 drop
```
- Monitoring:
- Track geolocation discrepancies (France/Italy vs. claimed US location).
- Monitor for unexpected DNS activity or port openings.
---
Conclusion:
This IP exhibits low-to-moderate risk with no direct malicious indicators. The geolocation inconsistencies and ProXad ownership suggest a residential/business ISP IP. While no immediate threats are detected, continued monitoring is advised due to routing anomalies.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Administrative Contact for ProXad |
| ASN | AS29447 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | gen92-2_migr-81-56-89-96.fbx.proxad.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | gen92-2_migr-81-56-89-96.fbx.proxad.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 17% | 1 | 1 |
| Overall | 14% | 6 | 7 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-23 00:22:26 UTC |
| Last Seen | 2026-06-26 18:11:37 UTC |
| Profile Built | 2026-06-10 05:26:44 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 24 |
Full dossier details are available via our API.