118.107.44.123
Threat Intelligence Briefing: IP 118.107.44.123/32
Date: 2026-06-17
---
**Summary**
The IP 118.107.44.123/32 is associated with a Moderate Risk profile (risk score: 50) and is geolocated to Hong Kong (HK), though its city is listed as Singapore (potential data inconsistency). Owned by IRT-CTG-HK (ASN 152194), the IP is firewalled with no active services or domains detected.
---
**Key Findings**
1. Threat Indicators:
- No direct malicious activity detected (no indicators in threat feeds, spam, or known attacker lists).
- High abuse density in its /24 subnet (118.107.44.0/24), with 7 neighbors showing medium risk (40 average score).
2. Network Behavior:
- Firewalled: No open ports, TLS certificates, or HTTP services observed.
- BGP/Control Plane: Routable via BGP prefix 118.107.44.0/24. DNSSEC validated, but no CAA records.
- Subnet Risk: Subnet classified as high_abuse with inherited risk of 20%.
3. Historical Observations:
- Detected in a high-risk narrative (June 2, 2026) with potential security concerns, though no actionable threats confirmed.
4. Relationships:
- Linked to CTG107-40-HK network, suggesting potential organizational ties.
---
**Recommended Actions**
- Monitor Subnet: Track activity in 118.107.44.0/24 for anomalies, given high abuse density.
- Verify Geolocation: Cross-check IP location with additional sources (e.g., WHOIS, geolocation tools).
- Block Neighbors: Consider blocking neighboring IPs (e.g., 118.107.44.76, 118.107.44.122) if they exhibit risky behavior.
- Check for Enumeration: Investigate if the IP is part of a larger campaign or network compromise.
---
Note: No immediate mitigation required, but increased monitoring is advised due to subnet risk and historical context.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | IRT-CTG-HK |
| ASN | AS152194 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | APNIC |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 18% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 24% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 23% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:03:34 UTC |
| Last Seen | 2026-06-22 10:45:03 UTC |
| Profile Built | 2026-06-22 10:46:16 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 22 |
Full dossier details are available via our API.