139.59.83.32
IP Intelligence Dossier
Your IP: 216.73.216.123
๐ค Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
## IP Intelligence Briefing: 139.59.83.32/32
Classification: Cloud Compute Infrastructure (DigitalOcean) | Risk Level: Moderate (50/100)
Executive Summary
The target IP (139.59.83.32) is a DigitalOcean cloud hosting instance located in Bengaluru, India, operating web services. The IP presents moderate risk with no active threat indicators but has been listed on 2 of 8 DNSBLs. Infrastructure shows standard web server configuration with SSH access enabled.
Technical Profile
- Ownership: DigitalOcean Inc. (AS14061), CIDR: 139.59.80.0/20
- Geolocation: Bengaluru, Karnataka, India (IN)
- Infrastructure Type: Cloud Compute (DigitalOcean)
- Services: HTTP (80/tcp), HTTPS (443/tcp), SSH (22/tcp)
- Server Fingerprint: nginx/1.18.0 (Ubuntu)
- TLS Certificate: Let's Encrypt (CN=db.milankavathiya.in)
Threat Assessment
- Risk Score: 50 (Moderate Risk)
- Abuse Confidence: Not applicable
- DNSBL Listings: 2 of 8 lists (dnsblListedCount: 2)
- Threat Indicators: None detected
- Known Campaigns: None
- Tor/Proxy: Not identified as Tor exit node or proxy
- Persistence: No persistent malicious activity observed
Subnet Neighborhood Analysis
- Subnet: 139.59.83.0/24
- Abuse Density: 0 (clean)
- Neighbor Risk: Low/Medium distribution
- Subnet Classification: Mostly clean
- Threat Siblings: 1 detected in subnet
Behavioral History
- Observation Count: 27 signals
- Last Observed: 2026-06-14
- Ownership Stability: Consistent (DigitalOcean)
- Threat Persistence: None
- HTTP Status: 401 Unauthorized detected in recent scans
- Geolocation Confidence: 28% (inferred from multi-signal analysis)
Related Entities
- Primary Association: DIGITALOCEAN-AP network (37 relationship entries)
- Certificate Subject: db.milankavathiya.in
- BGP Origin: AS14061 (139.59.80.0/20)
- Route Stability: Stable (isRouteStable: true)
Recommended Actions
Based on risk profile, the following controls are recommended:
Firewall Rules:
- iptables: `iptables -A INPUT -s 139.59.83.32 -j DROP`
- nftables: `nft add rule inet filter input ip saddr 139.59.83.32 drop`
- nginx: `deny 139.59.83.32;`
- pfSense: `139.59.83.32/32`
WAF Integration:
- Cloudflare WAF: Block IP with expression `ip.src eq 139.59.83.32`
- AWS WAF: Add IP 139.59.83.32/32 to allowed/denied rule set
Analyst Notes
This IP represents a legitimate cloud hosting environment with no active malicious behavior. The 401 status code suggests the endpoint may be configured for authentication or access control. DNSBL listings warrant monitoring but do not indicate confirmed malicious activity. No immediate threat action required; maintain standard monitoring posture.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Digital Ocean Inc administrator |
| ASN | AS14061 |
| Network Name | DIGITALOCEAN-AP |
| CIDR Block | 139.59.80.0/20 |
| RIR | ARIN |
| Country | IN |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 22 | ssh | tcp | |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | nginx/1.18.0 (Ubuntu) |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.7 |
๐ TLS Certificate
An expired certificate for
CN=db.milankavathiya.in was found on this IP. This may indicate a previously hosted website, a decommissioned service, or stale infrastructure.CN=db.milankavathiya.in
Issued by CN=R3, O=Let's Encrypt, C=US
Self-signed: No
| SANs | db.milankavathiya.in |
| Valid From | 2022-12-17T21:48:03+00:00 |
| Valid Until | 2023-03-17T21:48:02+00:00 (expired) |
| TLS Protocol | Tls12 |
| Cipher Suite | TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 |
| Signature Algorithm | sha256RSA |
| Validity Period | 89 days |
| Serial Number | 03E10EF5CC51A32D6D1538E975CDFF60DCBC |
| Thumbprint | 7CE16DC46F81FCF9A002A91F3387D58885FC3F40 |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 40% | 2 | 5 |
| routing | 27% | 2 | 3 |
| services | 26% | 2 | 4 |
| ownership | 22% | 3 | 4 |
| reputation | 28% | 1 | 3 |
| geolocation | 39% | 2 | 3 |
| Overall | 30% | 12 | 22 |
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-13 12:11:45 UTC |
| Last Seen | 2026-06-27 23:03:06 UTC |
| Profile Built | 2026-06-28 17:08:29 UTC |
| Data Freshness | Live |
| Signal Types | 26 |
| Total Observations | 31 |
๐ 26 signal types ยท 31 observations collected
This report is generated from 26+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
โน๏ธ About This Report
All data shown is publicly available network metadata โ IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.