83.166.246.113
IP Intelligence Briefing: 83.166.246.113
*Last Updated: 2026-06-10*
---
**Profile Summary**
- Risk Score: Moderate (50/100)
- Provider: AS197695 (REG.RU, Russian domain registrar)
- Geolocation: Russia (RU), Moscow (vague city field)
- Network Role: Firewalled / No Services (no open ports or TLS certs detected)
- DNS: Resolves to `83-166-246-113.cloudvps.regruhosting.ru` (REG.RU hosting)
- Threat Indicators: No active malware, phishing, or spam associations.
---
**Observation History**
- Recent Activity:
- 2026-06-10: Flagged with 10 pulse threats (e.g., "malware," "exploit kits") but low confidence (0.85).
- DNSBL listings on 8/10 threat feeds (e.g., "high-severity" categories).
- Route instability detected (BGP route changes).
- Long-Term Trends: No persistent malicious activity; 0 threat observations in 30 days.
---
**Relationships**
- DNS Associations:
- Linked to `regruhosting.ru` (REG.RU subsidiary).
- No email auth (SPF/DMARC) detected.
- Network:
- Part of RU-REGRU-20040611 subnet (allocated to REG.RU).
- No direct connections to known malicious subnets.
---
**Neighborhood Analysis**
- Subnet: 83.166.246.0/24 (no active neighbors detected).
- Abuse Density: 0% (no malicious siblings).
---
**Recommended Actions**
1. Monitor DNS: Track `regruhosting.ru` for suspicious subdomains or email spoofing.
2. Check Route Stability: Verify BGP stability for this prefix (AS197695).
3. Reputation Checks: Cross-reference with DNSBLs (e.g., Spamhaus, Tor exit nodes).
4. Network Segmentation: Ensure this IP is isolated in firewalls due to firewalled nature.
---
Conclusion: This IP is registered to a Russian domain registrar and shows no active threats. However, historical DNSBL listings and route instability suggest cautious monitoring. No immediate action required, but ongoing observation is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | "Domain names registrar REG.RU", Ltd |
| ASN | AS197695 |
| Network Name | RU-REGRU-20040611 |
| CIDR Block | 83.166.244.0/22 |
| RIR | RIPE |
| Country | RU |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | 83-166-246-113.cloudvps.regruhosting.ru |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | 83-166-246-113.cloudvps.regruhosting.ru |
๐ DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 19% | 2 | 2 |
| Overall | 14% | 7 | 8 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-24 12:35:52 UTC |
| Last Seen | 2026-06-10 16:20:14 UTC |
| Profile Built | 2026-06-10 16:58:34 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 21 |
Full dossier details are available via our API.