193.37.32.109
IP Intelligence Briefing: 193.37.32.109
Date: 2026-06-17
1. Core Profile
- Risk Score: 50 (Moderate Risk)
- Ownership: Registered to *VPN Consumer Singapore, Republic of Singapore* (ASN 206092).
- Geolocation: Singapore (1.35°N, 103.82°E), with DNSSEC validation and plausible geolocation accuracy.
- Network Role: Firewalled / No Services (no open ports, TLS, or HTTP services detected).
- Threat Indicators: No direct malicious activity detected (no spam, attacks, or known campaigns).
2. Observation History
- Recent Activity (2026-06-02 to 2026-06-17):
- Minimal risk score (0.13) with low confidence (0.23).
- DNSBL listings (8 total) with 2 high-severity matches, though no active threats observed.
- Geolocation inferred via multi-signal inference (2 evidence sources).
- Stability: Route changes last 30 days: 0; route stability: false.
3. Network Relationships
- Subnet: 193.37.32.0/24 (mixed risk, abuse density: 0.37).
- Neighbors: 209 total IPs in subnet (70 active, 78 flagged as threats).
- Key Links:
- Same network: *SINGAPORE-193-37-32-0*.
- DNSSEC validation confirmed.
4. Threat Context
- No Direct Malicious Activity: No indicators of spam, attacks, or known malicious campaigns.
- Subnet Risk: Moderate abuse density (37% of neighbors flagged). 29 medium-risk and 71 low-risk IPs in the subnet.
- Provider Context: Registered to a Singapore-based entity with no historical abuse reports.
5. Recommendations
- Monitor Subnet: Given the 37% abuse density, prioritize monitoring adjacent IPs (e.g., 193.37.32.1β5) for anomalous behavior.
- Verify DNSBL Listings: Investigate the 8 DNSBL entries (e.g., Spamhaus, SURBL) to confirm potential false positives or emerging threats.
- Maintain Firewalled Status: No active services detected, but ensure firewall rules block unnecessary traffic to/from this subnet.
- Geolocation Verification: Cross-check geolocation data with internal logs to confirm Singapore origin.
Conclusion:
193.37.32.109 shows no direct malicious activity but resides in a subnet with moderate abuse density. While the IP itself is not a known threat, the surrounding network warrants closer scrutiny. SOC teams should focus on subnet-level monitoring and validate DNSBL findings.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | VPN Consumer Singapore, Republic of Singapore |
| ASN | AS206092 |
| Network Name | β |
| CIDR Block | β |
| RIR | RIPE |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 43% | 2 | 5 |
| routing | 13% | 1 | 1 |
| services | 18% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 26% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:04:04 UTC |
| Last Seen | 2026-06-23 03:03:21 UTC |
| Profile Built | 2026-06-23 03:10:06 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 21 |
Full dossier details are available via our API.