37.151.243.2
IP Intelligence Briefing: 37.151.243.2
Date: 2026-06-07
---
**1. IP Profile**
- Risk Score: 80 (High Risk)
- Ownership:
- ASN: 9198
- Organization: KNIC-MNT (Kazakhstan)
- Geolocation: Astana, Kazakhstan (51.19°N, 71.45°E)
- Threat Indicators:
- No direct malicious activity detected (no malware, phishing, or C2 indicators).
- No known attacker associations or spam sources.
- Network Role:
- Classified as "Firewalled / No Services" with no open ports or TLS certificates.
- BGP prefix: 37.151.240.0/21 (ASN 9198).
- DNS PTR record: 37.151.243.2.dynamic.telecom.kz (linked to telecom.kz).
---
**2. Observation History**
- Activity Trends:
- 17 observations over 6 days, with low-to-moderate confidence.
- No significant changes in risk or threat signals.
- DNSSEC validation confirmed, but no TLS or HTTP services detected.
- Notable Data:
- Operator score: 0.2609 (Basic risk label).
- No route stability issues or DNSBL listings.
---
**3. Relationships**
- DNS Associations:
- Linked to telecom.kz (SPF/DMArc records present).
- Network Connections:
- Same network: GPON_FTTH_SERVICES_KT (likely a Kazakhstan ISP subnet).
- No External Threat Links:
- No correlated IPs, campaigns, or certificates detected.
---
**4. Neighborhood Analysis**
- Subnet: 37.151.243.2/24
- Neighbor Data:
- No neighboring IPs found (0 active siblings).
- Subnet abuse density: 0% (no malicious activity in the range).
---
**5. Actionable Insights**
- Risk Context:
- High risk score may stem from provider classification or network configuration, not direct malicious activity.
- Monitor for unexpected DNS changes or service activation (e.g., TLS/HTTP).
- Recommendations:
- Investigate DNS records for legitimate use (telecom.kz is a valid domain).
- Check for subnet-level anomalies in routing or traffic patterns.
- No immediate firewall rules required based on threat indicators.
---
Summary: This IP is associated with a Kazakh ISP but shows no direct malicious behavior. The high risk score likely reflects network configuration or provider context. Further monitoring is advised for unusual activity.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | KNIC-MNT |
| ASN | AS9198 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 37.151.243.2.dynamic.telecom.kz |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 37.151.243.2.dynamic.telecom.kz |
๐ DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 13% | 1 | 1 |
| Overall | 19% | 8 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Fresh
| First Seen | 2026-05-16 02:55:24 UTC |
| Last Seen | 2026-06-26 18:11:15 UTC |
| Profile Built | 2026-06-17 14:29:30 UTC |
| Data Freshness | Fresh |
| Signal Types | 17 |
| Total Observations | 17 |
Full dossier details are available via our API.