41.216.215.142
IP Intelligence Briefing: 41.216.215.142
Date: 2026-06-09
---
**1. Core Profile**
- Risk Score: 70 (High Risk)
- Ownership: Registered to Tarisai Masenda (ASN 37678, Botswana) under Afrinic.
- Geolocation:
- Reported: United Kingdom (London)
- Actual ASN Registration: Botswana (BW)
- Conflict Note: Geolocation data conflicts with ownership registry.
- Network Role: Firewalled / No Services (no open ports, TLS, or HTTP services detected).
---
**2. Threat & Behavioral Indicators**
- Threat Feed: No direct malware, phishing, or exploit indicators.
- DNSSEC Validation: Minimal confidence (score 0.15) with 1 signal.
- Historical Observations:
- 2026-06-04: Geolocation linked to Botswana (BW) with coordinates (-22, 24).
- 2026-06-09: DNSSEC validation and ASN tracking.
- Behavioral Flags: No honeypot hits, enumeration strikes, or WAF violations.
---
**3. Network Relationships**
- Subnet: 41.216.214.0/23 (shared with 41.216.215.142).
- Neighbors (24-bit subnet):
- High-Risk Neighbors:
- 41.216.215.131 (Risk: 80)
- 41.216.215.133 (Risk: 70)
- 41.216.215.145 (Risk: 70)
- 41.216.215.213 (Risk: 70)
- Low-Risk Neighbors:
- 41.216.215.154 (Risk: 0)
- Abuse Density: 16.7% (moderate risk within subnet).
---
**4. Key Anomalies & Recommendations**
- Geolocation Discrepancy: IP geolocated in the UK but registered to Botswana. Investigate routing anomalies or misconfigured DNS.
- High-Risk Neighbors: Subnet contains multiple high-risk IPs (e.g., 41.216.215.131). Monitor for lateral movement or shared infrastructure.
- Firewalled Nature: No services or TLS detected. Verify if this is a honeypot or misconfigured network.
- DNSSEC Weakness: Low confidence in DNSSEC validation. Check for DNS spoofing risks.
SOC Action Plan:
1. Block high-risk neighbors (e.g., 41.216.215.131) via firewall rules.
2. Investigate geolocation conflicts and routing paths.
3. Monitor subnet for DNS anomalies or unexpected traffic.
4. Verify if the IP is part of a larger malicious infrastructure.
---
Source: IPDebrief Threat Intelligence Platform
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Tarisai Masenda |
| ASN | AS37678 |
| Network Name | 41.216.214.0 - 41.216.215.255 |
| CIDR Block | 41.216.214.0/23 |
| RIR | AFRINIC |
| Country | BW |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 21% | 2 | 2 |
| reputation | 0% | 0 | 0 |
| geolocation | 17% | 1 | 1 |
| Overall | 13% | 6 | 6 |
| Data Coherence | Mostly Consistent (80%) โ 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Aging
| First Seen | 2026-05-19 23:50:11 UTC |
| Last Seen | 2026-06-26 18:11:17 UTC |
| Profile Built | 2026-06-21 18:29:51 UTC |
| Data Freshness | Aging |
| Signal Types | 14 |
| Total Observations | 14 |
Full dossier details are available via our API.