141.11.36.102
IP Intelligence Briefing: 141.11.36.102
Date: 2026-05-30
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Private Customer (ASN 137409, RIPE)
- Geolocation: US (Naples, Campania), inferred via multi-signal geolocation with 0.28 confidence.
- Threat Indicators: No malicious activity detected (no indicators, blacklists, or campaigns).
- Network Role: Firewalled / No Services (no open ports, TLS, or HTTP activity).
- Control Plane: BGP prefix `141.11.36.0/24` with 0.1538 abuse density (mostly clean).
---
**2. Observation History**
- Recent Activity:
- Geolocation inferred with 0.28 confidence (39.83°N, -98.58°W, ~3,750km accuracy).
- Subnet analysis shows 8 threat siblings in `141.11.36.0/24` (15.38% abuse density).
- No persistent malicious activity or ownership changes.
- Trends: Stable ownership (0 changes), no threat persistence.
---
**3. Relationships**
- Linked Entities:
- Same network: `NET-141-11-36-0-24` (private subnet).
- No external hostnames, certificates, or organizations linked.
---
**4. Neighborhood Analysis**
- Subnet: `141.11.36.0/24` (52 total IPs, 0 active siblings).
- Risk Distribution:
- 8 IPs flagged as threats (low risk score 25, authority score 50).
- 44 IPs with low risk (score 25).
- Abuse Density: 0.1538 (mostly clean, but 8 threat siblings present).
---
**5. Recommendations**
- Monitor Subnet: The `141.11.36.0/24` subnet contains 8 IPs with potential risk. Investigate these siblings for compromised hosts.
- Network Segmentation: Ensure the private subnet is isolated from critical assets to limit lateral movement risks.
- Geolocation Verification: Validate the inferred US location with additional probes, as coordinates and city data are null.
- Threat Intelligence: Cross-reference the 8 threat siblings with external feeds for further analysis.
Conclusion: 141.11.36.102 is a low-risk IP with no direct malicious activity, but its subnet contains potential threats. SOC teams should focus on monitoring and securing the broader network.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Private Customer |
| ASN | AS137409 |
| Network Name | NET-141-11-36-0-24 |
| CIDR Block | 141.11.36.0/24 |
| RIR | RIPE |
| Country | US |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 19% | 2 | 2 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 19% | 2 | 2 |
| Overall | 17% | 9 | 11 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-14 13:23:32 UTC |
| Last Seen | 2026-06-07 05:12:54 UTC |
| Profile Built | 2026-06-07 05:20:15 UTC |
| Data Freshness | Live |
| Signal Types | 17 |
| Total Observations | 17 |
Full dossier details are available via our API.