103.76.88.36
# IP INTELLIGENCE BRIEFING: 103.76.88.36/32
Date: 2026-06-22
Classification: MODERATE RISK
Analyst: IPDebrief Intelligence Team
---
## EXECUTIVE SUMMARY
IP address 103.76.88.36 is a Malaysian infrastructure host (ASN 133889 / Precision Computer Malaysia Sdn Bhd) classified as moderate risk (score: 40). The IP is a single-service host with RDP (port 3389) exposed. While no active threat indicators are present, the IP shows 2 DNSBL listings and has a neighboring IP (103.76.88.37) with elevated risk characteristics (score: 55).
---
## OWNERSHIP & GEOLOCATION
| Field | Value |
|---|---|
| **Organization** | Precision Computer Malaysia Sdn Bhd administrato |
| **Netname** | PRECISION-MY |
| **ASN** | 133889 |
| **Country** | Malaysia (MY) |
| **City** | Jalan Cheras Maju |
| **CIDR Block** | 103.76.88.0/23 |
| **RIR** | APNIC |
| **Registration** | N/A |
---
## THREAT PROFILE
- Risk Score: 40 (Moderate Risk)
- Abuse Confidence: Not elevated
- Known Attacker: No
- Spam Source: No
- Tor Exit Node: No
- Blacklist Count: 0 (current active listings)
- DNSBL Listings: 2 out of 8 total
- Threat Feeds: None detected
---
## NETWORK SERVICES & PORTS
| Port | Protocol | Service | Status |
|---|---|---|---|
| 3389 | TCP | RDP | OPEN |
Note: RDP exposure without additional hardening recommendations. No TLS certificates detected.
---
## NEIGHBORHOOD ANALYSIS
| Metric | Value |
|---|---|
| **Subnet** | 103.76.88.0/24 |
| **Abuse Density** | 0 (Clean) |
| **Total Siblings** | 2 |
| **Active Siblings** | 1 |
| **Threat Siblings** | 0 |
| **Neighbor Risk Distribution** | 1 Medium Risk (103.76.88.37) |
Neighbor IP 103.76.88.37:
- Risk Score: 55
- Authority Score: 50
- Classification: Elevated risk within otherwise clean subnet
---
## OBSERVATION HISTORY
- Total Observations: 20
- Threat Persistence: 0 days (Not persistently malicious)
- Recent Activity:
- 2026-06-22: DNSBL listing activity (8 total lists, 1 listed with medium severity)
- 2026-06-17: Geolocation confirmed as MY with 0.52 confidence
- 2026-06-17: Subnet classified as clean with 0 abuse density
Trend: Stable ownership with no significant threat escalation observed over the observation period.
---
## RELATIONSHIP GRAPH
- Primary Association: PRECISION-MY network (15 relationships)
- Network Type: Infrastructure/Hosting
- Cloud/CDN/Proxy: No indicators
---
## ACTIONABLE RECOMMENDATIONS
1. Monitor RDP Exposure: Port 3389 (RDP) is open. Recommend ingress filtering and geo-blocking if not required for legitimate remote administration.
2. Watchlist Neighbor IP: 103.76.88.37 shows elevated risk (score: 55). Correlate any activity from this neighbor with 103.76.88.36.
3. DNSBL Monitoring: While current blacklist count is 0, 2 DNSBL listings exist in historical data. Monitor for reputation degradation.
4. Subnet Context: The /24 subnet is classified as clean with minimal abuse density. Treat 103.76.88.36 as isolated threat rather than part of coordinated campaign.
5. No Immediate Block Recommended: Risk score of 40 is below typical blocking thresholds. Recommend logging and monitoring rather than outright blocking.
---
## RISK ASSESSMENT SUMMARY
| Criteria | Rating |
|---|---|
| **Immediate Threat** | Low |
| **Infrastructure Risk** | Moderate |
| **Campaign Association** | None |
| **Recommended Action** | Monitor & Log |
Status: Active monitoring recommended. No immediate containment required.
---
*Report generated by IPDebrief Intelligence Platform. Data current as of 2026-06-22.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Precision Computer Malaysia Sdn Bhd administrato |
| ASN | AS133889 |
| Network Name | PRECISION-MY |
| CIDR Block | 103.76.88.0/23 |
| RIR | APNIC |
| Country | MY |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 28% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 23% | 1 | 3 |
| geolocation | 21% | 2 | 2 |
| Overall | 21% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:03:27 UTC |
| Last Seen | 2026-06-22 07:28:27 UTC |
| Profile Built | 2026-06-22 07:46:42 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 20 |
Full dossier details are available via our API.