43.110.36.69
IP Intelligence Briefing: 43.110.36.69
Date: 2026-06-18
---
**1. Risk Profile**
- Overall Risk Score: 25 (Low Risk)
- Threat Indicators: No malware, phishing, or campaign activity detected.
- Network Classification: "Mostly Clean" subnet (43.110.36.69/24) with abuse density of 1.
- Geolocation: Singapore (SG), latitude 1.35, longitude 103.82.
---
**2. Ownership & Infrastructure**
- ASN: 45102 (IRT-ASEPL-SG)
- Organization: IRT-ASEPL-SG (Singapore)
- Service Role: Single-service host (SSH on port 22).
- Network Type: Not a CDN, cloud, or residential network.
---
**3. Observation History**
- Recent Activity (2026-06-18):
- Detected 25+ threat indicators (e.g., malicious pulses) with high confidence (0.95).
- SSH service active with banner "SSH-2.0-OpenSSH_8.0".
- Historical Trends:
- Subnet classification remained "mostly clean" over 30 days.
- No persistent malicious behavior or ownership changes.
---
**4. Relationships & Network Context**
- Linked Entities:
- Subnet: 43.110.36.69/24 (1 active sibling IP).
- Organization: IRT-ASEPL-SG (shared network).
- Threat Correlation: No direct links to known malicious campaigns or domains.
---
**5. Neighborhood Analysis**
- Subnet Neighbors: No active neighboring IPs reported.
- Abuse Density: Low (score 1/10), suggesting minimal risk in the subnet.
---
**6. Recommended Actions**
1. Monitor SSH Logs: Investigate unauthorized access attempts due to open port 22.
2. Verify Network Context: Confirm IRT-ASEPL-SGβs legitimacy and ensure no misconfigured infrastructure.
3. Watch Subnet: Track 43.110.36.69/24 for changes in abuse density or new activity.
---
Conclusion: This IP poses no immediate threat but requires ongoing monitoring for anomalies. The low risk score and clean subnet classification suggest it is likely a legitimate, low-impact host. However, the recent threat indicators warrant closer scrutiny of its SSH service and network relationships.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | IRT-ASEPL-SG |
| ASN | AS45102 |
| Network Name | β |
| CIDR Block | β |
| RIR | APNIC |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Single-Service Host |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_8.0 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 24% | 1 | 3 |
| geolocation | 21% | 2 | 2 |
| Overall | 21% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:04:19 UTC |
| Last Seen | 2026-06-23 12:32:30 UTC |
| Profile Built | 2026-06-23 12:37:49 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 20 |
Full dossier details are available via our API.