137.184.46.218
# IP INTELLIGENCE BRIEFING
Target: 137.184.46.218/32
Classification: Cloud Infrastructure / Web Hosting
Risk Level: LOW (Score: 30)
Report Date: 2026-06-19
---
## EXECUTIVE SUMMARY
IP 137.184.46.218 is a DigitalOcean cloud compute resource operating as a web server with low-risk characteristics. The IP hosts the domain smsp.tech and presents minimal threat indicators, though one DNSBL listing and open SSH access warrant operational awareness.
---
## NETWORK OWNERSHIP & INFRASTRUCTURE
- ASN: 14061 (DigitalOcean, LLC)
- Provider: DigitalOcean Cloud Infrastructure
- Geolocation: United States, CA region (Santa Clara coordinates)
- Network Role: Web Server / Cloud Hosting
- Infrastructure Type: CloudCompute
- IP Classification: Cloud-hosted, non-residential
---
## SERVICE PORTS & FINGERPRINTING
| Port | Protocol | Service | Details |
|---|---|---|---|
| 80 | TCP | HTTP | Web service |
| 443 | TCP | HTTPS | Encrypted web service |
| 22 | TCP | SSH | OpenSSH_8.2p1 Ubuntu-4ubuntu0.13 |
| 8443 | TCP | HTTPS | Alternate HTTPS port |
- Web Server: nginx
- TLS Certificate: Let's Encrypt (R12)
- Certificate Subject: CN=web1.web.smsp.tech
---
## DNS & DOMAIN ASSOCIATIONS
- Reverse PTR: web1.web.smsp.tech
- Forward Resolution: Confirmed
- Domain: smsp.tech
- Email Auth: SPF record present; DMARC absent
- DNSSEC: Valid
- DNSBL Status: 1 of 8 lists (dnsblListedCount: 1)
---
## THREAT INDICATOR ANALYSIS
| Indicator | Status |
|---|---|
| Blacklist Count | 0 |
| Known Attacker | No |
| Spam Source | No |
| Tor Exit Node | No |
| Campaign Matches | 0 |
| Risk Score | 30/100 |
| Reputation | Low Risk |
- Threat Indicators: None detected
- Control Plane: Route stability flag set to false; DNSSEC valid
---
## NEIGHBORHOOD ANALYSIS
- Subnet: 137.184.46.0/24
- Abuse Density: 1 (classification: mostly_clean)
- Active Siblings: 1
- Threat Siblings: 1
- Inherited Risk: 2
The subnet shows minimal abuse activity with one threat-adjacent neighbor detected.
---
## OBSERVATION HISTORY
Total Observations: 25
Key temporal patterns observed:
- Cloud infrastructure classification consistent across observations
- Geolocation inferred as US with 0.65 confidence
- No persistent malicious activity detected
- Recent signals (June 2026) maintain Basic operator classification
- Route stability flagged as false in historical data
---
## RELATIONSHIP GRAPH
Total Relationships: 44
Primary associations:
- DigitalOcean network block (DIGITALOCEAN-137-184-0-0)
- DNS hostname: web1.web.smsp.tech
- Multiple same-network associations
---
## RECOMMENDATIONS
1. Operational Awareness: Monitor SSH port 22 for unauthorized access attempts; current SSH banner indicates Ubuntu server
2. DNSBL Investigation: Investigate single DNSBL listing to determine nature of listing
3. Email Authentication: Consider implementing DMARC policy for smsp.tech domain
4. Baseline Monitoring: Establish baseline for normal traffic patterns given cloud hosting nature
5. No Immediate Action Required: Low-risk profile does not warrant blocking; continue monitoring
---
Assessment: This IP represents standard cloud web hosting infrastructure with no active threat indicators. SOC analysts should monitor rather than block, with attention to the DNSBL listing and SSH port exposure for potential exploitation scenarios.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | web1.web.smsp.tech |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | web1.web.smsp.tech |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | β |
| 443 | https | tcp | β |
| 22 | ssh | tcp | |
| 8443 | https-alt | tcp | β |
| Closed Ports | 25, 3389, 8080 (4 open / 7 scanned) | ||
| Server | nginx |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.13 |
π TLS Certificate
| SANs | web1.web.smsp.tech |
| Valid From | 2026-06-01T13:14:40+00:00 |
| Valid Until | 2026-08-30T13:14:39+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha256RSA |
| Validity Period | 89 days |
| Serial Number | 066F102F6C92D39243C3E6A8512E9D93F840 |
| Thumbprint | 3EF7A16AC767D72C0CD129349982C92FE30F1378 |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 22% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 34% | 2 | 3 |
| ownership | 24% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 31% | 2 | 3 |
| Overall | 24% | 10 | 17 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Moderate (55%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-09 17:41:06 UTC |
| Last Seen | 2026-06-27 15:55:41 UTC |
| Profile Built | 2026-06-28 10:00:06 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 28 |
Full dossier details are available via our API.