IP Intelligence Briefing: 160.251.185.41
Date: 2026-06-07
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Registered to Japan Network Information Center (JPNIC) (ASN 58791).
- Geolocation: Japan (JP), inferred via multi-signal geolocation with 600km accuracy radius.
- Network Role: Firewalled / No Services (no open ports, no TLS/HTTP services detected).
- Threat Indicators: No malicious indicators, blacklists, or campaigns linked.
---
**2. Observation History**
- Recent Activity:
- ICMP Validation: Failed due to ICMP blocking, suggesting potential network filtering.
- Geolocation Inference: Consistent with Japan (36.2°N, 138.25°E) over 30 days.
- Network Stability: Stable ownership with no recent transfers.
- Risk Trends: No persistent malicious activity; threat observation count is 1.
---
**3. Relationships & Network Context**
- Linked Entities:
- Part of CNODE-C3J1 network (same network).
- No direct links to known malicious organizations, domains, or certificates.
- Subnet Analysis:
- 160.251.185.0/24 subnet: 1 active neighbor (160.251.185.39) with a risk score of 50 (Medium Risk).
- Subnet abuse density: 0% (mostly clean).
---
**4. Actionable Insights**
- No Immediate Threat: The IP itself is low risk, but monitor the subnet for anomalies.
- Neighbor Alert: The neighbor 160.251.185.39 (risk score 50) may require further investigation.
- Network Configuration: Confirm firewalled status and ensure no unintended service exposure.
---
Recommendation:
- Add 160.251.185.39 to monitoring lists for further analysis.
- Verify network segmentation to isolate low-risk assets from potential threats.
- No firewall rules or actions recommended for this IP based on current data.
Source: IPDebrief Threat Intelligence Platform
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Japan Network Information Center |
| ASN | AS58791 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | v160-251-185-41.snh9.static.cnode.jp |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | v160-251-185-41.snh9.static.cnode.jp |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Web Server |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 22 | ssh | tcp | |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | nginx/1.24.0 (Ubuntu) |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16 |
๐ TLS Certificate
| SANs | contract.zgsw.co.jp |
| Valid From | 2026-05-02T10:31:10+00:00 |
| Valid Until | 2026-07-31T10:31:09+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha384ECDSA |
| Validity Period | 89 days |
| Serial Number | 06F4D86481294E3F4ABA81154B49B7863FBA |
| Thumbprint | 56E7077C41BB53555591610CB905DC88D1EDC036 |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 19% | 2 | 2 |
| services | 13% | 1 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 33% | 2 | 4 |
| Overall | 23% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | High (85%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-15 08:43:18 UTC |
| Last Seen | 2026-06-07 12:07:16 UTC |
| Profile Built | 2026-06-07 12:29:04 UTC |
| Data Freshness | Live |
| Signal Types | 24 |
| Total Observations | 28 |
Full dossier details are available via our API.