200.217.235.104
IP Intelligence Briefing: 200.217.235.104
Date: 2026-06-09
---
**1. Risk Profile**
- Risk Score: Moderate (50/100)
- Provider/Authority Scores: Unavailable (likely non-publicly listed)
- Geolocation: Brazil (BR), Pernambuco, Olinda (latitude -22.83, longitude -43.22).
- Ownership: Registered to V tal (ASN 7738), with CIDR block 200.217.128.0/17.
- Threat Indicators: No direct malicious activity detected (no known attackers, spam, or Tor exit nodes).
---
**2. Network Behavior**
- Services: No open ports or TLS/HTTP services detected.
- DNS Associations: Linked to 200-217-235-104.user3p.vtal.net.br (multiple DNS records).
- Network Role: Unknown infrastructure type; no cloud, CDN, or mobile carrier indicators.
- BGP Data: Route originates from AS7738 (V tal), with prefix 200.217.192.0/18. Route stability is flagged as unstable.
---
**3. Observation History**
- Recent Activity (2026-06-09):
- Threat Pulse: Detected as associated with telemar norte leste s.a. (Brazil) and flagged in 1 threat feed.
- DNSSEC Validity: Confirmed valid.
- Operator Score: Basic risk rating (0.26).
- DNSBL Listings: Listed in 1 of 8 DNSBLs (low severity).
---
**4. Relationships & Neighborhood**
- Linked Entities:
- DNS Hostname: 200-217-235-104.user3p.vtal.net.br.
- Network: Subnet 200.217.128.0/17 (same ASN).
- Subnet Abuse Density: 0% (no malicious neighbors detected).
- Neighbor Count: 0 active IPs in the /24 subnet.
---
**5. Recommendations**
- Monitor DNS Activity: Investigate the 200-217-235-104.user3p.vtal.net.br hostname for potential spoofing or phishing attempts.
- Check Route Stability: Verify BGP route stability for AS7738 due to flagged instability.
- Enhance DNS Filtering: Block or monitor traffic to DNSBL-listed domains associated with this IP.
- Geolocation Verification: Confirm if the IPโs location aligns with expected traffic patterns (Brazil).
---
Conclusion:
This IP exhibits low immediate risk but shows mixed signals in DNS and network behavior. While no direct malicious activity is detected, the association with a Brazilian ISP and DNSBL listing warrants further monitoring. No urgent mitigation is required, but continued observation is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | V tal |
| ASN | AS7738 |
| Network Name | 516377 |
| CIDR Block | 200.217.128.0/17 |
| RIR | LACNIC |
| Country | BR |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | 200-217-235-104.user3p.vtal.net.br |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 200-217-235-104.user3p.vtal.net.br |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 1 | 2 |
| routing | 19% | 1 | 2 |
| services | 13% | 1 | 1 |
| ownership | 21% | 2 | 2 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 14% | 6 | 8 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-21 08:55:09 UTC |
| Last Seen | 2026-06-09 09:02:58 UTC |
| Profile Built | 2026-06-09 09:09:47 UTC |
| Data Freshness | Live |
| Signal Types | 16 |
| Total Observations | 16 |
Full dossier details are available via our API.