160.119.76.200
IP Intelligence Briefing: 160.119.76.200
*Generated via IPDebrief tools (June 17, 2026)*
---
**Core Profile**
- Risk Score: 40 (Moderate Risk)
- Owner: HostUS IP Administrator (ASN 49870, ARIN)
- Geolocation: South Africa (ZA), London E14 2AA (latitude -29, longitude 24)
- Network Role: Firewalled / No Services (no open ports, TLS, or HTTP indicators)
- DNS: Valid SPF/DMArc records; 1 PTR hostname (`160-119-76-200.ptr.as49870.net`)
- Threat Indicators: No malicious indicators, spam, or known attacker associations
---
**Observation History**
- Recent Activity:
- June 17, 2026: BGP prefix `160.119.64.0/20` (ASN 7489) with 0.85 confidence.
- June 2, 2026: BGP prefix `160.119.76.0/23` (ASN 49870) with minimal operator risk.
- Geo Validation: ICMP blocked, unable to confirm geolocation accuracy.
---
**Network Relationships**
- Shared Network: ORG-HSL1-AFRINIC (ARIN)
- Subnet: `160.119.76.200/24`
- Neighbor Risk: High abuse density (0.6), 14 high-risk neighbors (max 65), 7 low-risk.
---
**Key Findings**
1. Owner: HostUS IP Administrator (AS49870) is a legitimate provider with no direct malicious activity.
2. Geolocation Discrepancy: IP reports South Africa (ZA) but has a London postcode. Verify data accuracy.
3. DNSBL Listing: Detected in 1 of 8 DNSBLs (low confidence). Investigate potential false positives.
4. Subnet Risk: High abuse density in `160.119.76.0/24` subnet (14 high-risk neighbors). Monitor for lateral movement.
5. Firewalled Host: No services detected (open ports, TLS, or HTTP). Could be a server or honeypot.
---
**Recommended Actions**
- Monitor Subnet: Track high-risk neighbors for suspicious activity.
- Verify Geolocation: Cross-check with other sources (e.g., traceroute, WHOIS).
- Check DNSBL Status: Confirm if the IP is falsely listed or part of a misconfigured network.
- Validate Network Role: Confirm if firewalled behavior is intentional (e.g., internal server).
---
*End of Briefing*
*Generated by IPDebrief (© 2026)*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | HostUS IP Administrator |
| ASN | AS49870 |
| Network Name | ORG-HSL1-AFRINIC |
| CIDR Block | 160.119.64.0/20 |
| RIR | ARIN |
| Country | SC |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | 160-119-76-200.ptr.as49870.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | 160-119-76-200.ptr.as49870.net |
๐ DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 26% | 2 | 3 |
| routing | 17% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 26% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 19% | 9 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:03:50 UTC |
| Last Seen | 2026-06-22 19:09:11 UTC |
| Profile Built | 2026-06-22 19:26:47 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 25 |
Full dossier details are available via our API.