45.146.54.117
# IPDEBRIEF INTELLIGENCE BRIEFING
Target: 45.146.54.117/32
Classification: Moderate Risk
Generated: [Current Date]
---
## EXECUTIVE SUMMARY
IP 45.146.54.117 is classified as Moderate Risk (Score: 40) with no active threat indicators. The address operates within a high-abuse density subnet (45.146.54.0/24) and shows stable ownership under ASN 206092 (SECFIREWALLAS/F.N.S. HOLDINGS LIMITED). No malicious campaigns, Tor exit status, or spam source attributes detected.
---
## NETWORK ATTRIBUTES
| Attribute | Value |
|---|---|
| **ASN** | 206092 |
| **Organization** | SECFIREWALLAS - F.N.S. HOLDINGS LIMITED |
| **Registration** | RIPE NCC, Allocated 2019-08-27 |
| **Geolocation** | San Francisco, CA, US (3750km accuracy) |
| **Network Role** | Firewalled / No Services |
| **DNS Status** | No PTR records, Forward resolution unconfirmed |
---
## THREAT ASSESSMENT
Risk Profile
- Overall Risk Score: 40/100 (Moderate)
- Abuse Confidence Score: Not reported
- Known Campaigns: None identified
- Blacklist Status: 0 lists (Pulsedive risk: null)
Service Exposure
- Open Ports: None detected
- TLS Certificates: None
- HTTP Services: None
- Connection Type: Passive (no active service signatures)
Control Plane Analysis
- Route Stability: False (route changes observed)
- RPKI State: Unknown
- DNSSEC Validation: Valid
- Route Origin: 45.146.54.0/24
---
## TEMPORAL ANALYSIS
Observation History: 20 signals tracked across observation period
- Most Recent: 2026-06-25
- Persistence: Threat observation count: 1
- Ownership Stability: No ownership changes recorded
- Threat Persistence: 0 days (not persistently malicious)
Signal Evolution:
- ASN 206092 confirmed on 2026-06-05
- Geolocation inference: US (confidence 0.28)
- Operator score: 0.1304 (Minimal)
---
## SUBNET CONTEXT (45.146.54.0/24)
| Metric | Value |
|---|---|
| **Total Neighbors** | 48 |
| **Abuse Density** | 0 (high_abuse classification) |
| **Inherited Risk** | 25 |
| **Risk Distribution** | 0 High / 9 Medium / 39 Low |
Notable High-Risk Neighbors (Score: 40):
- 45.146.54.115, .116, .118, .119, .120, .121, .122, .123, .129
The subnet exhibits clustered moderate-risk behavior among 9 neighbor IPs sharing the same risk score profile.
---
## RELATIONSHIP GRAPH
Connected Entities: 16 relationships identified
- Network Associations: 16 × "SAN-FRANCISCO-CA-USA-45-146-54-0"
- External Links: None (no organization/host/cert relationships)
The IP exists in isolation from broader network infrastructure relationships.
---
## RECOMMENDED ACTIONS
Risk-Based Mitigation: Block recommended for defensive posture
| Platform | Rule |
|---|---|
| **iptables** | `iptables -A INPUT -s 45.146.54.117 -j DROP` |
| **nftables** | `nft add rule inet filter input ip saddr 45.146.54.117 drop` |
| **nginx** | `deny 45.146.54.117;` |
| **pfSense** | `45.146.54.117/32` |
| **Cloudflare WAF** | Block (Risk Score: 40) |
| **AWS WAF** | Block (Addresses: 45.146.54.117/32) |
---
## INTELLIGENCE CONCLUSION
IP 45.146.54.117 presents a moderate-risk profile with no active malicious indicators. The subnet context suggests elevated abuse density, warranting defensive blocking. Recommend implementing the provided firewall rules and monitoring for any subsequent threat indicator emergence. No immediate escalation required; maintain standard defensive posture.
---
*Analysis based on IPDebrief intelligence platform data. Recommendations are probabilistic and should be combined with additional threat intelligence signals before enforcement.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | VPN Consumer San Francisco, United States of America |
| ASN | AS206092 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 22% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 19% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 19% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-08 11:10:36 UTC |
| Last Seen | 2026-06-25 06:31:59 UTC |
| Profile Built | 2026-06-25 06:39:17 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 20 |
Full dossier details are available via our API.