89.147.110.82
IP Intelligence Briefing: 89.147.110.82
Date: 2026-06-09
---
**1. Core Risk Profile**
- Risk Score: 70 (High Risk)
- Threat Indicators:
- Tor exit node activity detected
- Listed in 1 blacklist
- Network Role: Tor exit node (provider: Tor Exit Nodes)
- Ownership:
- ASN: 44925
- Organization: Mordur Aslaugarson
- RIR: RIPE
- Geolocation:
- Country: US (Boston, MA)
- Coordinates: Unresolved
---
**2. Threat Observations**
- Historical Signals:
- Recent observations (June 9, 2026) show minimal risk (operator score: 0.13) but flagged as a Tor exit node.
- DNS resolution confirms `vps-89-147-110-82.1984.is` with SPF/DMArc records.
- Services: No open ports or TLS certificates detected.
- Behavioral Flags:
- No HTTP banners or TLS fingerprints identified.
- Traceroute shows transit through Comcast/Zayo networks.
---
**3. Network Relationships**
- Linked Entities:
- Same network: `IS-1984-20060213` (ASN 44925)
- DNS domain: `1984.is` (hostedDomains: 0)
- Control Plane:
- BGP prefix: `89.147.108.0/22`
- RPKI state: Unverified
- Route stability: Unstable (routeChanges30d: 0, isRouteStable: false)
---
**4. Neighborhood Analysis**
- Subnet: `89.147.110.82/24`
- Neighbor Risk Distribution:
- 2 IPs with medium risk (40β60)
- 2 IPs with low risk (0β50)
- Notable: `89.147.110.251` (riskScore: 70, authorityScore: 60)
- Abuse Density: Clean subnet (abuseDensity: 0)
---
**5. Actionable Insights**
- SOC Recommendations:
- Monitor Tor exit node traffic for anomalous behavior (e.g., data exfiltration, C2 communications).
- Investigate `89.147.110.251` due to elevated risk score.
- Validate DNS records for `1984.is` to confirm legitimacy.
- Consider blocking Tor exit nodes in firewall rules (e.g., iptables, Cloudflare WAF).
---
Note: This IP is associated with a Tor exit node, which may be used for anonymity or malicious activities. Further analysis of linked entities and network behavior is recommended.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Mordur Aslaugarson |
| ASN | AS44925 |
| Network Name | β |
| CIDR Block | β |
| RIR | RIPE |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | vps-89-147-110-82.1984.is |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | vps-89-147-110-82.1984.is |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 34% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 24% | 2 | 3 |
| reputation | 30% | 1 | 3 |
| geolocation | 13% | 1 | 1 |
| Overall | 20% | 8 | 12 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-22 13:35:40 UTC |
| Last Seen | 2026-06-26 21:06:48 UTC |
| Profile Built | 2026-06-27 17:56:54 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 47 |
Full dossier details are available via our API.