179.43.146.226
IP Intelligence Briefing: 179.43.146.226
Date: 2026-06-08
---
**1. Core Profile**
- Risk Rating: Moderate Risk (Risk Score: 40)
- Ownership: Registered to PRIVATE LAYER INC (AS: 51852, CIDR: 179.43.128.0/18)
- Geolocation: Switzerland (Zurich, Rümlang), Latitude: 47.45, Longitude: 8.53
- Network Role: Firewalled / No Services (no open ports, no TLS/http services)
- DNS: Resolves to privatelayer.com (SPF/DMARC records present)
---
**2. Threat Observations**
- No direct threat indicators (no malware, phishing, or exploit activity detected).
- Historical Activity (17 observations):
- Confirmed geolocation in Switzerland (May 30, 2026).
- Conflicting geolocation data in Panama (May 31, 2026).
- Multiple listings in high-risk threat feeds (e.g., "malicious activity" with confidence scores 0.5β0.95).
- DNSBL listings: 2/8 total lists (high-severity risk).
---
**3. Network Relationships**
- Subnet: 179.43.128.0/18 (16,384 IPs)
- Key Associations:
- Linked to PRIVATE LAYER INC (same ASN, organization).
- No direct ties to known malicious networks or campaigns.
- Neighbor IP (179.43.146.227):
- Risk Score: 65 (high risk), same subnet.
- Potential elevated risk due to neighborβs score.
---
**4. Subnet Analysis**
- Abuse Density: 0% (low risk for subnet-wide compromise).
- Total Siblings: 16,384 IPs (256 in /24 subnet).
- Active Siblings: 1 (179.43.146.227).
- Threat Siblings: 0 (no known malicious IPs in subnet).
---
**5. Recommendations**
- Monitor Neighbor IP (179.43.146.227): Higher risk score warrants closer scrutiny for potential lateral movement or shared infrastructure compromises.
- Investigate Geolocation Discrepancies: The IPβs registration (Switzerland) conflicts with historical Panama geolocation data. Verify if this indicates misconfiguration, spoofing, or misuse.
- Review DNSBL Listings: Check if the IP is flagged in threat feeds (e.g., spam, malware) despite no direct indicators.
- Block Neighbor IP (if applicable): Consider firewall rules to isolate high-risk neighbor IPs.
---
Next Steps: Cross-reference with internal threat feeds, validate geolocation anomalies, and monitor the subnet for emerging risks.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | PRIVATE LAYER INC |
| ASN | AS51852 |
| Network Name | β |
| CIDR Block | β |
| RIR | LACNIC |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | hostedby.privatelayer.com |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | hostedby.privatelayer.com |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 2 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 13% | 1 | 1 |
| Overall | 18% | 8 | 11 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-17 03:07:55 UTC |
| Last Seen | 2026-06-08 03:55:51 UTC |
| Profile Built | 2026-06-08 03:58:46 UTC |
| Data Freshness | Live |
| Signal Types | 16 |
| Total Observations | 17 |
Full dossier details are available via our API.