170.247.200.150
IP Intelligence Briefing: 170.247.200.150
Date: 2026-06-07
---
**1. Core Profile**
- Risk Score: 70/100 (High Risk)
- Ownership:
- ASN: 263256
- Organization: PIX PROVEDOR DE INTERNET LTDA - ME (Brazil)
- Subnet: 170.247.200.0/22
- Geolocation:
- Country: Brazil (BR)
- Region: Maranhão
- City: Tutóia
- Coordinates: Approx. -2.82°N, -42.35°E
---
**2. Threat & Network Activity**
- Threat Indicators:
- No direct malicious indicators (no malware, phishing, or exploit campaigns).
- DNS: No PTR records or domain associations.
- Services: No open ports or TLS certificates detected.
- Network Role:
- Classified as "Firewalled / No Services" with no CDN, cloud, or residential attributes.
- BGP: Route stability issues detected (unstable route changes).
---
**3. Historical Observations**
- Recent Activity (Last 30 Days):
- 15 observations show mixed confidence (0.20โ0.95).
- Geolocation data suggests Brazil, but coordinates vary (e.g., -14.24°N, -51.93°E).
- No persistent threat activity or ownership changes.
---
**4. Relationships & Subnet**
- Network Relationships:
- Linked to subnet 303370 (same ASN).
- No known malicious peers in the /24 subnet (abuse density: 0%).
---
**5. Recommended Actions**
- Firewall Rules:
- iptables: `iptables -A INPUT -s 170.247.200.150 -j DROP`
- Cloudflare WAF: Block IP with rule: `ip.src eq 170.247.200.150`
- AWS WAF: Add address `170.247.200.150/32` to a web ACL.
- Monitoring: Increase logging verbosity for this IP due to elevated risk score.
---
Conclusion:
This IP is owned by a Brazilian ISP and appears to be a static, non-malicious host. While no direct threats are detected, its high risk score and unstable routing suggest closer monitoring. Block the IP to mitigate potential risks.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | PIX PROVEDOR DE INTERNET LTDA - ME |
| ASN | AS263256 |
| Network Name | 303370 |
| CIDR Block | 170.247.200.0/22 |
| RIR | ARIN |
| Country | BR |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 13% | 1 | 2 |
| geolocation | 42% | 2 | 3 |
| Overall | 20% | 9 | 11 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-15 20:47:01 UTC |
| Last Seen | 2026-06-07 16:23:30 UTC |
| Profile Built | 2026-06-07 16:33:47 UTC |
| Data Freshness | Live |
| Signal Types | 15 |
| Total Observations | 16 |
Full dossier details are available via our API.