168.144.68.2

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

## IP Intelligence Briefing: 168.144.68.2/32

Classification: Cloud Infrastructure Host | Risk Level: Low | Risk Score: 25

Executive Summary

IP 168.144.68.2 is a DigitalOcean cloud compute instance operating from Bengaluru, Karnataka, India. The IP maintains a low-risk profile (25/100) with minimal threat indicators. One DNSBL listing detected among eight queried sources. Neighborhood analysis indicates the /24 subnet is mostly clean with single threat sibling.

Ownership and Infrastructure

Provider: DigitalOcean, LLC (ASN 14061)
Infrastructure Type: Cloud Computing / Hosting
Geolocation: Bengaluru, Karnataka, India (IN)
BGP Prefix: 168.144.64.0/20
Route Stability: Unstable (route changes detected in 30-day window)

Services and Fingerprinting

Open Ports: 80/tcp (HTTP), 22/tcp (SSH)
Web Server: nginx/1.24.0 (Ubuntu)
HTTP Version: 1.1
Response Time: ~456ms TTFB
Security Headers: None detected (no HSTS, CSP, referrer policy, or permissions policy)

Threat Indicators

Abuse Confidence: Not elevated
Known Attacker: No
Tor Exit Node: No
Spam Source: No
Blacklist Count: 1 (of 8 DNSBL lists)
Campaign Associations: None detected
Threat Persistence: 0 days (not persistently malicious)

Historical Activity

Analysis of 22 observations reveals consistent HTTP service patterns with nginx/1.24.0 fingerprint. One signal flagged proxy/VPN activity (risk score 66) from proxycheck-io. No persistent malicious behavior observed. Ownership and threat observation count remain at zero.

Network Neighborhood

Subnet: 168.144.68.0/24
Abuse Density: 1 (classified as mostly_clean)
Total Siblings: 1 active
Threat Siblings: 1
Risk Distribution: No high/medium risk neighbors detected

Recommended Actions

Firewall Rules:

Allow inbound HTTP (port 80) and SSH (port 22) only if authorized
Monitor DNSBL listing for reputation impact
No immediate block recommended due to low overall risk

Monitoring Priorities:

Track route stability changes for BGP anomalies
Monitor for escalation in DNSBL listings
Watch for proxy/VPN signal recurrence in observation history

Conclusion

This IP represents a standard cloud hosting instance with low-risk characteristics. No immediate threat action warranted. Standard cloud infrastructure monitoring and DNSBL monitoring recommended.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇮🇳 India
Region	Karnataka
City	Bengaluru
Timezone	—
Latitude	12.98
Longitude	77.59

🏢 Ownership & Registration

Organization	DigitalOcean, LLC
ASN	AS14061
Network Name	—
CIDR Block	—
RIR	ARIN
Country	—
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR Record	No PTR
Forward Confirmed	No — PTR hostname does not resolve back to this IP (weak signal)

🔐 DNS Hygiene

Hygiene Score	20% (Poor)
SPF	Not configured
DMARC	Not configured
FCrDNS	Not verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Multi-Service Host
Network Tier	Hosting — Infrastructure provider without advanced routing

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
80	http	tcp	—
22	ssh	tcp	SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16
Closed Ports	25, 443, 3389, 8080, 8443 (2 open / 7 scanned)

Server	nginx/1.24.0 (Ubuntu)
HTTP Title	—
SSH Version	SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16

🔐 TLS Certificate

🔒

No certificate

Issued by —

N/A

SANs	None
Valid From	—
Valid Until	—

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	27%	2	4
routing	8%	1	1
services	30%	2	3
ownership	24%	2	3
reputation	26%	1	3
geolocation	25%	2	2
Overall	23%	10	16

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (50%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-14 23:35:02 UTC
Last Seen	2026-06-28 01:40:21 UTC
Profile Built	2026-06-28 20:09:15 UTC
Data Freshness	Live
Signal Types	21
Total Observations	24

🔍 21 signal types · 24 observations collected

This report is generated from 21+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

168.144.68.2📋 Copy