IPDebrief

92.119.164.131

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

Threat Intelligence Briefing for IP 92.119.164.131

Date: 2026-06-13

---

**1. IP Profile**

- Open SSH (port 22) with banner: `SSH-2.0-OpenSSH_10.0p2 Debian-7+deb13u4`.

- No TLS/HTTP services detected.

---

**2. Observation History**

- Subnet abuse density: 0.5 (moderate risk in the /24 network).

- Detected as a Tor Exit Node with 15 pulse alerts (e.g., "malware," "phishing").

- SSH service scanned with no immediate threats.

---

**3. Relationships**

- Linked to LAIN (same network).

- DNS association with lain.92.119.164.131.aluy.net (potential hostname).

---

**4. Neighborhood Analysis**

---

**5. Recommendations**

Conclusion: This IP is low risk but warrants monitoring due to its Tor exit node status and a high-risk neighbor. No immediate action required, but maintain vigilance for network anomalies.

---

*Generated via IPDebrief intelligence tools.*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ณ๐Ÿ‡ฑ Netherlands
Regionโ€”
CityIsmaning
TimezoneEurope/Amsterdam
Latitude51.68
Longitude7.70

๐Ÿข Ownership & Registration

OrganizationLAIN
ASNAS211507
Network NameLAIN
CIDR Block92.119.164.0/24
RIRRIPE
CountryNL
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTRlain.92.119.164.131.aluy.net
Forward ConfirmedNo โ€” PTR hostname does not resolve back to this IP (weak signal)
Forward Hostnameslain.92.119.164.131.aluy.net

๐Ÿ” DNS Hygiene

Hygiene Score60% (Good)
SPFPresent
DMARCPresent
FCrDNSNot verified
DNSSECValid
CAANot configured

โ˜๏ธ Network Classification

InfrastructureUnknown
Service PurposeSingle-Service Host
Network TierTier 3 โ€” Basic operator with some routing infrastructure
No specific classification

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
22sshtcp
Closed Ports25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned)
Serverโ€”
HTTP Titleโ€”
SSH VersionSSH-2.0-OpenSSH_10.0p2 Debian-7+deb13u4

๐Ÿ” TLS Certificate

๐Ÿ”’
No certificate
Issued by โ€”
N/A
SANsNone
Valid Fromโ€”
Valid Untilโ€”

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
30%
24
routing
27%
23
services
19%
22
ownership
40%
36
reputation
26%
13
geolocation
27%
23
Overall28%1221
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (50%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-06-06 22:52:02 UTC
Last Seen2026-06-26 21:06:52 UTC
Profile Built2026-06-27 17:40:47 UTC
Data FreshnessLive
Signal Types27
Total Observations56
๐Ÿ” 27 signal types ยท 56 observations collected
This report is generated from 27+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.