146.190.83.75
IP Intelligence Briefing: 146.190.83.75
*Generated via IPDebrief tools: Profile, History, Relationships, Neighbors*
---
**Core Profile**
- Risk Score: 25 (Low Risk)
- Provider: DigitalOcean (CloudCompute)
- Geolocation: Singapore (SG), inferred via ARIN records.
- Network Role: Firewalled cloud instance; no open services detected.
- Threat Indicators: No malicious signals, spam, or known attacker associations.
---
**Observation History (Last 30 Days)**
- Key Signal: One threat indicator from AlienVault OTX (confidence 75%) with a pulse count of 1.
- Geolocation Consistency: Mixed results (ARIN records vs. Singapore IP).
- Operator Score: Minimal risk (0.13), suggesting stable, non-abusive infrastructure.
---
**Relationships**
- No Linked Entities: No subnets, hostnames, or organizations associated with the IP.
---
**Neighborhood Analysis**
- Subnet: 146.190.83.0/24
- Neighbor Risk: 146.190.83.66 (risk score 50, Medium Risk).
- Subnet Abuse Density: 0% (low risk for sibling IPs).
---
**Actionable Insights**
1. Monitor Neighbor IP: 146.190.83.66 shows higher risk; investigate potential lateral movement or shared infrastructure.
2. Verify Geolocation Discrepancy: Cross-check ARIN records (US-based) with Singapore IP to confirm legitimate cloud deployment.
3. Maintain Cloud Security: Ensure DigitalOcean instance has strict firewall rules, as itβs a firewalled cloud compute node.
4. Watch for Threat Trends: The single OTX pulse may indicate emerging activity; re-evaluate in 7β14 days.
---
*No immediate mitigation required. Focus on contextualizing the neighbor IP and verifying geolocation anomalies.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | DO-13 |
| CIDR Block | 146.190.0.0/16 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | β |
| 443 | https | tcp | β |
| 22 | ssh | tcp | |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | nginx/1.18.0 (Ubuntu) |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.15 |
π TLS Certificate
CN=dev.erpsys.top was found on this IP. This may indicate a previously hosted website, a decommissioned service, or stale infrastructure.| SANs | dev.erpsys.top |
| Valid From | 2025-12-30T21:13:37+00:00 |
| Valid Until | 2026-03-30T21:13:36+00:00 (expired) |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha384ECDSA |
| Validity Period | 89 days |
| Serial Number | 0599EEE11FE67D66FD8CDAEE97C281F939D1 |
| Thumbprint | 562D7321243C65896881B972AC5B15CD2D897AF7 |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 35% | 2 | 3 |
| routing | 17% | 1 | 1 |
| services | 35% | 2 | 3 |
| ownership | 35% | 2 | 3 |
| reputation | 17% | 1 | 2 |
| geolocation | 17% | 1 | 1 |
| Overall | 26% | 9 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-14 17:36:17 UTC |
| Last Seen | 2026-06-21 22:14:51 UTC |
| Profile Built | 2026-06-21 22:23:05 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 21 |
Full dossier details are available via our API.