178.128.146.134
# IP Intelligence Briefing: 178.128.146.134
Classification: LOW RISK / Cloud Infrastructure
Date: 2026-06-17
Analysis Period: 19 observations (2026-06-14 to 2026-06-17)
---
## Executive Summary
IP address 178.128.146.134 is a DigitalOcean cloud compute instance classified as low-risk. The IP shows no active threat indicators, no open services, and operates within a mostly clean subnet. The one DNSBL listing observed suggests the IP may have been listed on one of eight threat feed lists, though the overall risk profile remains minimal.
---
## Technical Profile
| Attribute | Value |
|---|---|
| **IP Address** | 178.128.146.134/32 |
| **Risk Score** | 25 / 100 |
| **Provider** | DigitalOcean (ASN 14061) |
| **Infrastructure** | CloudCompute / Hosting |
| **Location** | United States, North Bergen, NJ |
| **CIDR Block** | 178.128.144.0/20 |
| **Route Stability** | Unstable |
---
## Network Characteristics
- Infrastructure Type: Cloud compute infrastructure (DigitalOcean)
- Open Ports: None detected
- HTTP Services: None active
- TLS Certificates: None
- DNS Resolution: No PTR records, no forward resolution
- Reverse DNS: Not configured
- Email Reputation: Not scored
---
## Threat Indicators
| Indicator | Status |
|---|---|
| Tor Exit Node | No |
| Known Attacker | No |
| Spam Source | No |
| Blacklist Count | 0 |
| DNSBL Listed | 1 of 8 lists |
| Known Campaigns | None |
| Honeypot Hits | 0 |
| Enumeration Strikes | 0 |
---
## Neighborhood Analysis
Subnet: 178.128.146.134/24
| Metric | Value |
|---|---|
| Abuse Density | 1 (Low) |
| Subnet Classification | Mostly Clean |
| Active Siblings | 1 |
| Threat Siblings | 1 |
| High-Risk Neighbors | 0 |
The IP resides in a subnet with minimal abuse activity, consistent with cloud infrastructure patterns.
---
## Observation History
Total Observations: 19 signals
Key Observations:
- 2026-06-17: Operator score 0.1304 (Minimal risk), DNSSEC validated
- 2026-06-14: Geographic signals confirmed US location (North Bergen, NJ), Cloud infrastructure confirmed
- Risk Trend: Stable low-risk profile with no escalation in threat indicators
Persistence Metrics:
- Threat Persistence Days: 0
- Is Persistently Malicious: No
- Ownership Changes: 0
---
## Relationship Graph
Related Entities: 22 relationships identified
- Network Affiliation: All 22 relationships map to DIGITALOCEAN network
- Network Type: Same Network classifications (cloud provider infrastructure)
---
## Recommended Actions
| Action | Priority | Rationale |
|---|---|---|
| **Monitor DNSBL Listing** | LOW | One of eight threat feed lists flagged; investigate if source list is active |
| **Traffic Baseline** | LOW | Cloud instance with no active services; establish baseline for anomaly detection |
| **Route Change Monitoring** | MEDIUM | Route stability flagged as unstable; monitor for BGP announcements |
Firewall Recommendations: No immediate blocking required. IP classified as cloud infrastructure with minimal risk profile.
---
## Analyst Notes
The IP 178.128.146.134 represents standard cloud compute infrastructure from DigitalOcean. The single DNSBL listing warrants awareness but does not indicate active malicious behavior. The IP shows no services, no open ports, and no threat indicators. Network activity should be evaluated in context of known DigitalOcean customer traffic patterns.
Recommendation: No immediate action required. Continue passive monitoring.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | digitalocean |
| ASN | AS14061 |
| Network Name | β |
| CIDR Block | β |
| RIR | RIPE |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 24% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 35% | 2 | 3 |
| Overall | 21% | 10 | 16 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-07 23:03:56 UTC |
| Last Seen | 2026-06-27 02:22:03 UTC |
| Profile Built | 2026-06-27 20:28:27 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 24 |
Full dossier details are available via our API.