IP Intelligence Briefing: 76.11.71.130
Date: 2026-06-18
---
**Risk Assessment**
- Risk Score: 80 (High Risk)
- Threat Indicators: No direct malicious activity detected (no malware, phishing, or C2 indicators).
- Network Role: Firewalled / No Services (no open ports, TLS, or HTTP services).
- Ownership: Owned by Eastlink HSI (ASN 11260), a Canadian ISP.
- Geolocation: Bedford, Nova Scotia, Canada (ARIN-regulated).
---
**Key Observations**
1. DNS Configuration:
- Resolves to `host-76-11-71-130.public.eastlink.ca`.
- SPF/DKIM records present, but no email-related threats detected.
- Subnet `76.11.64.0/19` shows low abuse density (1/172 IPs flagged).
2. Network Anomalies:
- Firewalled Network: No services (ports, TLS, HTTP) detected.
- Subnet Neighbors: 1 sibling IP (`76.11.71.109`) with low risk (score 0).
- BGP Analysis: Route stability issues (unstable ASN 11260).
3. Historical Trends:
- Listed in 4/8 DNSBLs (high-severity threats).
- Last observed in June 2026 with no persistent malicious activity.
---
**Actionable Intelligence**
- Monitor DNS: Verify Eastlinkβs DNS configuration for potential misconfigurations or spoofing.
- Network Segmentation: Ensure firewalled subnets (e.g., `76.11.64.0/19`) are isolated from critical assets.
- Neighbor Analysis: Investigate `76.11.71.109` for potential lateral movement or shared infrastructure risks.
- ISP Collaboration: Engage Eastlink to confirm ownership and network security practices.
Conclusion: While no direct threats are detected, the IPβs firewalled status and DNS associations warrant further investigation to rule out misconfigurations or indirect compromise vectors.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Eastlink HSI |
| ASN | AS11260 |
| Network Name | ATL-76-11-64-0-20 |
| CIDR Block | 76.11.64.0/20 |
| RIR | ARIN |
| Country | Canada |
| Abuse Contact | β |
π DNS Intelligence
| PTR | host-76-11-71-130.public.eastlink.ca |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | host-76-11-71-130.public.eastlink.ca |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 32% | 2 | 3 |
| routing | 8% | 1 | 1 |
| services | 8% | 1 | 1 |
| ownership | 19% | 2 | 2 |
| reputation | 26% | 1 | 3 |
| geolocation | 21% | 2 | 2 |
| Overall | 19% | 9 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:04:34 UTC |
| Last Seen | 2026-06-23 21:16:44 UTC |
| Profile Built | 2026-06-23 21:41:57 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 20 |
Full dossier details are available via our API.