146.190.81.241
# IP INTELLIGENCE BRIEFING: 146.190.81.241/32
Classification: Low Risk / Cloud Compute Infrastructure
Reporting Date: 2026-06-17
Analyst: IPDebrief Intelligence Operations
---
## EXECUTIVE SUMMARY
IP address 146.190.81.241 is a DigitalOcean cloud compute resource with a low-risk profile (Risk Score: 25). The IP is geolocated to Singapore and operates as a single-service host with SSH exposed. No active threat indicators were detected. The subnet demonstrates minimal abuse density with three sibling IPs, all maintaining low-risk classifications.
---
## OWNERSHIP & INFRASTRUCTURE
Organization: DigitalOcean, LLC
ASN: 14061
Network Block: 146.190.80.0/20
Network Identifier: DO-13
Infrastructure Type: Cloud Compute
Classification: Cloud Hosted, Single-Service Host
Hosting Status: Active
The IP operates within DigitalOcean's cloud infrastructure ecosystem, identified by network designation DO-13. Control plane analysis confirms route stability issues (isRouteStable: false) with no MOAS (Multiple Origins As Single) characteristics. RPKI validation state is null, with IRR consistency not applicable for this infrastructure type.
---
## GEOLOCATION DATA
Country: Singapore (SG)
Coordinates: 1.35°N, 103.82°E
Timezone: Asia/Singapore
Accuracy Radius: 45km
Validation Status: GeoPlausible: true
Consensus: true (1 source)
Geolocation validation confirms the Singapore assignment with acceptable accuracy margins. Network probe data indicates minimum possible RTT of 207.4ms and observed average RTT of 234.6ms across 5 probes.
---
## THREAT ASSESSMENT
Overall Risk Score: 25 (Low Risk)
Abuse Confidence Score: Not applicable
Threat Indicators: None detected
Blacklist Count: 0
DNSBL Listed: 1 of 8 total lists
Known Campaigns: None
Tor Exit Node: No
Known Attacker: No
Spam Source: No
The IP maintains a clean threat posture with no association to known malicious campaigns, spam operations, or attacker infrastructure. DNSBL listing appears minimal and does not indicate active abuse.
---
## NETWORK SERVICES
Open Ports:
- Port 22/TCP: SSH (SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16)
HTTP/HTTPS: No active web services
TLS Certificates: None detected
Email Authentication: No SPF, DMARC, or TXT records associated
Service enumeration indicates a minimal service footprint with SSH being the only exposed port. No web services or TLS infrastructure detected.
---
## NEIGHBORHOOD ANALYSIS
Subnet: 146.190.81.0/24
Abuse Density: 0 (Minimal)
Classification: Mostly Clean
Inherited Risk: 7 (Low)
Sibling IPs (3 total):
- 146.190.81.241 (Target) β Risk: 25, Authority: 50
- 146.190.81.48 β Risk: 25, Authority: 50
- 146.190.81.196 β Risk: 25, Authority: 50
All three active siblings in the /24 subnet maintain identical risk profiles, indicating consistent cloud infrastructure deployment patterns. No high-risk siblings detected in the immediate neighborhood.
---
## RELATIONSHIP MAPPING
Total Relationships: 21
Relationship Type: Same Network (DO-13)
All relationships map to the DO-13 network identifier, confirming the IP's integration within DigitalOcean's broader infrastructure. No external hostname, certificate, or organizational relationships detected beyond the network-level association.
---
## OBSERVATION HISTORY
Total Observations: 18
Recent Trend: Stable Low Risk
Threat Persistence Days: 0
Persistent Malicious: No
Historical analysis reveals 18 observations with consistent classification as "Minimal" risk. Geolocation, DNS, and ownership attributes have remained stable across observation windows. No escalation in threat indicators or behavioral changes detected.
---
## RECOMMENDED ACTIONS
Firewall Rule: No blocking recommended. Low-risk cloud infrastructure.
Monitoring: Standard traffic monitoring sufficient.
Allowlist Consideration: IP may be legitimate cloud compute resource; allowlist evaluation depends on traffic patterns.
Investigation Priority: Low
---
End of Briefing
*Generated by IPDebrief Intelligence Platform*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 25% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 27% | 1 | 3 |
| geolocation | 35% | 2 | 3 |
| Overall | 22% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:03:44 UTC |
| Last Seen | 2026-06-26 23:32:17 UTC |
| Profile Built | 2026-06-27 19:45:25 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 27 |
Full dossier details are available via our API.