110.25.114.8
IP Intelligence Briefing: 110.25.114.8
Date: 2026-06-16
---
**Risk Assessment**
- Risk Score: 80 (High Risk)
- Threat Indicators: No direct malicious indicators (no blacklists, campaigns, or spam).
- Network Role: Web server (HTTP/HTTPS services, lighttpd/1.4.45).
- Geolocation: Taipei, Taiwan (23.7°N, 120.96°E).
---
**Ownership & Infrastructure**
- ASN: 9674 (Jeff Ho, FEG-MPLS-NETWORK-NET).
- Subnet: 110.25.114.8/24 (abuse density: 1/1, high-risk neighbor detected).
- DNS: Resolves to `110-25-114-8.adsl.fetnet.net` (fetnet.net).
- Services: Open ports 80 (HTTP), 443 (HTTPS). TLS certificate self-signed, no HSTS/CSP.
---
**Historical Observations**
- Recent Activity (2026-06-16):
- HTTP/1.1 response with server banner "Httpd v1.0 05may2008".
- TLS 1.2 handshake with AES-256-GCM encryption.
- Past Scans (2026-06-02):
- No active threats detected.
- Subnet geolocation inferred with 52% confidence.
---
**Relationships & Network Context**
- Linked Entities:
- DNS: `fetnet.net` (no email auth records).
- Same subnet: 1 high-risk neighbor (110.25.114.7).
- BGP: Route stability unknown; ASN 9674 (apnic) has no RPKI validation.
---
**Actionable Recommendations**
1. Monitor Traffic: Due to high-risk subnet and self-signed TLS, monitor outbound connections.
2. Block Neighbor: Consider blocking 110.25.114.7 if it persists in high-risk activity.
3. Verify DNS: Investigate `fetnet.net` for potential spoofing or misconfigurations.
4. Update Policies: Adjust firewall rules to restrict access to this IP unless explicitly required.
Note: No immediate mitigation required, but continuous monitoring is advised due to network instability and high-risk neighbors.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Jeff Ho |
| ASN | AS9674 |
| Network Name | FEG-MPLS-NETWORK-NET |
| CIDR Block | 110.25.0.0/16 |
| RIR | APNIC |
| Country | TW |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR | 110-25-114-8.adsl.fetnet.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 110-25-114-8.adsl.fetnet.net |
๐ DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Web Server |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| Closed Ports | 22, 25, 3389, 8080, 8443 (2 open / 7 scanned) | ||
| Server | Httpd v1.0 05may2008 |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | 2024-06-12T06:22:12+00:00 |
| Valid Until | 2034-06-10T06:22:12+00:00 |
| TLS Protocol | Tls12 |
| Cipher Suite | TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 |
| Signature Algorithm | sha256RSA |
| Validity Period | 3650 days |
| Serial Number | 00E4D2C3E9C3243152 |
| Thumbprint | 2D679D0F91DDD3260F6560E967F218B3788C7076 |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 32% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 30% | 2 | 3 |
| ownership | 19% | 2 | 2 |
| reputation | 17% | 1 | 2 |
| geolocation | 21% | 2 | 2 |
| Overall | 22% | 10 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Fresh
| First Seen | 2026-05-07 23:03:30 UTC |
| Last Seen | 2026-06-26 18:10:22 UTC |
| Profile Built | 2026-06-27 00:36:52 UTC |
| Data Freshness | Fresh |
| Signal Types | 22 |
| Total Observations | 22 |
Full dossier details are available via our API.