190.89.136.172
IP Intelligence Briefing: 190.89.136.172
Date: 2026-06-06
---
**1. Core Risk Profile**
- Risk Score: 80 (High Risk)
- Provider/Authority Scores: 0/0
- Network Classification: Firewalled / No Services
- Ownership:
- ASN: 270368
- Organization: T. R. TELECOMUNICACOES LTDA (Brazil)
- Subnet: 190.89.136.0/23
- Geolocation:
- Country: Brazil (BR)
- Region: São Paulo
- City: Votuporanga
- Coordinates: Latitude -20.4811, Longitude -50.0146
---
**2. Threat Indicators**
- No Direct Threats Detected: No malicious indicators, spam, or known attacker associations.
- DNS & Services:
- No open ports, TLS certs, or HTTP services identified.
- DNSSEC validated, but no email authentication (SPF/DKIM) records.
---
**3. Observation History (Last 10 Days)**
- Risk Trends: Fluctuated between 0.13 (Minimal) and 0.85 (High).
- Network Role: Consistently classified as residential infrastructure.
- Geolocation Consistency: Stable Brazil-based location.
---
**4. Relationship Graph**
- Linked Entities:
- Network: 378879 (T. R. TELECOMUNICACOES LTDA)
- Subnet: 190.89.136.0/24
- No External Campaign or Certificate Associations.
---
**5. Neighborhood Analysis**
- Subnet: 190.89.136.0/24 (99 IPs)
- Abuse Density: 20.2% (20 high-risk neighbors).
- Notable Neighbors:
- 190.89.136.35: Risk score 80 (same as target IP).
- 190.89.136.32, 38, 44: Risk scores 55 (moderate risk).
- 190.89.136.40: Risk score 30 (low risk).
---
**6. Actionable Insights**
- Monitor Neighbors: Focus on high-risk neighbors (e.g., 190.89.136.35) for potential lateral movement or shared infrastructure threats.
- Verify Ownership: Confirm T. R. TELECOMUNICACOES LTDAโs network legitimacy, as the IP is part of a residential subnet with mixed abuse density.
- Check for Anomalies: Investigate if the IPโs high risk correlates with recent network changes or unexplained traffic patterns.
---
Recommendation: Flag the IP for further behavioral analysis and monitor its subnet for suspicious activity. No immediate mitigation required, but continuous observation is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | T. R. TELECOMUNICACOES LTDA |
| ASN | AS270368 |
| Network Name | 378879 |
| CIDR Block | 190.89.136.0/23 |
| RIR | LACNIC |
| Country | BR |
| Abuse Contact | โ |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Residential |
| Service Purpose | Web Server |
| Network Tier | End-User โ Residential ISP endpoint |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 22 | ssh | tcp | |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | lighttpd/1.4.39 |
| HTTP Title | โ |
| SSH Version | SSH-2.0-dropbear_2016.74 ,??2|??n???2??v7?curve25519-sha256@libssh.org,ecdh-sha2-nistp521,ecdh-sha2 |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 24% | 2 | 3 |
| routing | 27% | 2 | 3 |
| services | 8% | 1 | 1 |
| ownership | 30% | 3 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 21% | 11 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-11 22:23:25 UTC |
| Last Seen | 2026-06-26 13:49:01 UTC |
| Profile Built | 2026-06-26 13:51:55 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 21 |
Full dossier details are available via our API.