87.55.137.132
IP Intelligence Briefing: 87.55.137.132
Date: 2026-05-29
---
**Overview**
- Risk Score: 50 (Moderate Risk)
- Threat Indicators: No malicious campaigns, spam, or known attacker associations detected.
- Network Role: Firewalled with no open services (ports, TLS, or HTTP).
- Ownership: Assigned to AS3292 Staff (RIPE RIR).
- Geolocation: Denmark (Kolding), latitude 56.26, longitude 9.5.
---
**Key Findings**
1. DNS Associations
- Linked to TDC (Danish ISP) via PTR hostname: `87-55-137-132-dynamic.dk.customer.tdc.net`.
- No email authentication records (SPF/DKIM) detected.
2. Network Context
- Subnet 87.55.137.132/24 has a low abuse density (1/1000 IPs flagged).
- No neighboring IPs detected in the subnet.
- Classified as "mostly_clean" with no active threats in the subnet.
3. Threat Observations
- No malicious TLS certificates, banners, or honeypot activity.
- Historical data shows minimal risk signals (confidence: 0.3โ0.6).
4. Behavioral Anomalies
- No HTTP/HTTPS services, TLS encryption, or server fingerprints detected.
- BGP route stability: Unstable (route changes in last 30 days).
---
**Recommendations**
- Monitor DNS: Track TDC-associated subnets for unusual DNS activity or new hostnames.
- Network Segmentation: Ensure firewalled isolation for this IP, as it has no active services.
- Subnet Review: Verify subnet 87.55.137.132/24 for potential spoofing risks despite low abuse density.
- Threat Feeds: Cross-check with DNSBLs (2 listings detected) for potential false positives.
---
Conclusion:
The IP is associated with a Danish ISP and shows no immediate malicious activity. However, its limited network exposure and DNS ties warrant monitoring for anomalous behavior. No immediate mitigation actions required, but ongoing observation is advised.
Source: IPDebrief Threat Intelligence Platform.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | AS3292 Staff |
| ASN | AS3292 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 87-55-137-132-dynamic.dk.customer.tdc.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 87-55-137-132-dynamic.dk.customer.tdc.net |
๐ DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 38% | 2 | 5 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 23% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-13 06:39:12 UTC |
| Last Seen | 2026-06-06 19:32:44 UTC |
| Profile Built | 2026-06-06 19:36:43 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 22 |
Full dossier details are available via our API.