165.154.244.32
IP Intelligence Briefing: 165.154.244.32
Date: 2026-06-06
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Ownership: Scloud Pte Ltd (AS142002, Singapore)
- Geolocation:
- Country: Singapore (SG)
- City: Hong Kong (latitude 1.35, longitude 103.82)
- ISP: Scloud Pte Ltd (ARIN-regulated)
- Network Role: Single-service host (SSH on port 22).
- Threat Indicators: No malicious activity detected (no DNS/IP indicators, blacklist entries, or campaign ties).
---
**2. Observation History**
- Recent Activity (Last 30 Days):
- 17 observations, with 12 unique signals.
- Geolocation Consistency: Confirmed as Hong Kong (SG) via MaxMind.
- Network Stability: BGP route stability score: 0.13 (minimal risk).
- Service Exposure: SSH service (SSH-2.0-OpenSSH_9.6p1) active.
---
**3. Relationships & Network Context**
- Subnet: 165.154.244.0/24
- Neighboring IPs (24-bit subnet):
- 165.154.244.26: Low risk (25/100).
- 165.154.244.122: Medium risk (50/100).
- Abuse Density: 0.67 (mostly clean, but 2/3 neighbors show risk).
- Network Affiliation:
- Linked to SCLOUDPTELTD-SG (Scloud Pte Ltd).
- No ties to Tor, CDN, or malicious infrastructure.
---
**4. Threat & Risk Analysis**
- No Active Threats:
- No DNSBL listings, spam, or campaign associations.
- Zero honeypot hits or suspicious behavioral patterns.
- Subnet Risk:
- Abuse Density: 0.67 (moderate risk due to 2/3 neighbors).
- Inherited Risk: 5 (low impact from neighboring IPs).
---
**5. Recommended Actions**
- Monitor SSH Service:
- Ensure SSH access is restricted to trusted sources.
- Check for unauthorized configuration changes.
- Watch Neighbors:
- 165.154.244.122 shows medium risk; investigate potential lateral movement.
- Geolocation Discrepancy:
- Verify if IP is legitimately hosted in Hong Kong or misconfigured.
---
Conclusion:
The IP is low-risk but resides in a subnet with mixed neighbor risk. No direct malicious activity detected, but proactive monitoring of SSH and subnet neighbors is advised. No immediate mitigation required, but contextualize within broader network behavior.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Scloud Pte Ltd |
| ASN | AS142002 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Single-Service Host |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 20% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-12 03:42:55 UTC |
| Last Seen | 2026-06-26 14:46:21 UTC |
| Profile Built | 2026-06-26 14:54:46 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 18 |
Full dossier details are available via our API.