138.197.204.242
IP Intelligence Dossier
Your IP: 216.73.216.123
π€ Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 138.197.204.242
Date: 2026-06-08
---
**1. Profile Summary**
- Risk Score: 25 (Low Risk)
- Provider: DigitalOcean, LLC (ASN 14061)
- Location: Santa Clara, CA, US (geolocation inferred with 2500km accuracy)
- Network Role: Cloud compute instance (firewalled, no services detected)
- Threat Indicators: No malicious activity, no blacklisted domains, no TLS certificates, and no open ports.
---
**2. Observation History**
- Last Scan: June 8, 2026 (04:16 UTC)
- Activity:
- Scanned for open ports, TLS, and HTTP services (no active services found).
- Geolocation inferred via multi-signal analysis (latitude 39.83, longitude -98.58).
- Traceroute failed due to ICMP blocking, limiting validation.
- Trend: No persistent threats or changes in risk profile.
---
**3. Network Relationships**
- Subnet: 138.197.204.242/24
- Associated Networks: Linked to DigitalOceanβs 138.197.0.0/20 CIDR block.
- Neighbors:
- 138.197.204.198: Risk score 50 (Medium Risk).
- Subnet abuse density: 0.5 (mostly clean, 1 threat sibling in 2 total).
---
**4. Key Findings**
- Low Risk: The IP itself is clean, with no malicious indicators or open services.
- Neighboring Risk: One subnet neighbor (138.197.204.198) shows medium risk, warranting further investigation.
- Cloud Infrastructure: Part of DigitalOceanβs cloud network; likely a virtualized server with strict firewall rules.
- Geolocation: Inferred as plausible but unverified due to ICMP blocking.
---
**5. Recommendations**
- Monitor Subnet: Track 138.197.204.198 for potential lateral movement orε ³θ activity.
- Verify Geolocation: Use alternative methods (e.g., DNS or HTTP probes) to validate the IPβs physical location.
- Maintain Firewall Rules: Retain current restrictions, as the IP shows no signs of active exploitation.
- Check for Anomalies: Monitor for unexpected traffic patterns or service changes in the DigitalOcean subnet.
---
End of Briefing
*Data sourced from IPDebrief intelligence tools.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
No certificate
Issued by β
N/A
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 36% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 25% | 10 | 16 |
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-17 03:07:23 UTC |
| Last Seen | 2026-06-28 04:09:43 UTC |
| Profile Built | 2026-06-28 22:14:33 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 24 |
π 20 signal types Β· 24 observations collected
This report is generated from 20+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
βΉοΈ About This Report
All data shown is publicly available network metadata β IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.