134.209.115.17
# IP Intelligence Briefing: 134.209.115.17/32
## Executive Summary
IP address 134.209.115.17 is a DigitalOcean cloud infrastructure endpoint located in North Bergen, NJ, USA. The IP carries a low-risk score of 25, with no confirmed malicious indicators. Historical observation data indicates stable network classification with minimal threat persistence.
## Profile Assessment
Risk Profile: Low Risk (Score: 25/100)
- Provider Score: 0/100
- Authority Score: 0/100
- Stability Score: 0/100
Network Classification:
- Provider: DigitalOcean, LLC (ASN: 14061)
- Infrastructure Type: CloudCompute
- Connection Type: Cloud Hosting
- Network Role: Firewalled / No Services Detected
- CIDR Block: 134.209.112.0/20
Geolocation:
- Country: United States (US)
- Region: New Jersey (NJ)
- City: North Bergen
- Accuracy Radius: 2500km
## Threat Indicators
Malicious Activity: None Confirmed
- Is Known Attacker: False
- Is Tor Exit Node: False
- Is Spam Source: False
- Is Proxy: False
- Is Mobile: False
- Is Residential: False
Blacklist Status:
- DNSBL Listed: 1 of 8 lists
- Total Blacklist Count: 0
- Abuse Confidence Score: Not Applicable
Threat Feeds:
- Known Campaigns: None
- Pulsedive Risk: Not Available
- Threat Indicators: None
## Service Analysis
Open Ports: None Detected
- TLS Certificate: None
- HTTP Title: None
- Server Banner: None
- Certificate Data: None
The IP shows no active service signatures, indicating either:
- Properly configured firewall blocking external access
- Internal-only infrastructure
- Unresponsive host
## Network Neighborhood Analysis
Subnet: 134.209.115.17/24
- Abuse Density: 1 (Low)
- Classification: Mostly Clean
- Total Siblings: 1
- Active Siblings: 0
- Threat Siblings: 1
The surrounding /24 subnet exhibits minimal abuse activity with predominantly clean classification. One threat sibling detected but no active sibling connections currently observed.
## Historical Observations
Observation Count: 17 signals recorded
Recent Activity Timeline:
- 2026-06-19: Subnet classification recorded as "mostly_clean" with abuse density of 1
- 2026-06-15: Port scan activity detected with multiple ports probed
- 2026-06-14: Cloud infrastructure classification confirmed, geolocation inference performed
- 2026-06-14: Operator risk score calculated as "Minimal" (0.1304)
Temporal Analysis:
- Ownership Changes: 0
- Threat Persistence Days: 0
- Threat Observation Count: 1
- Persistently Malicious: False
The IP demonstrates temporal stability with no ownership changes and minimal threat observation history.
## Control Plane Data
- Origin ASN: 14061
- BGP Prefix: 134.209.112.0/20
- Route Stability: Not Stable
- RPKI State: Not Available
- DNSSEC Valid: Yes
- DNSBL Listed Count: 1
- Operator Score: 0.1304 (Label: Minimal)
## Relationship Graph
The IP maintains 17 documented relationships, all categorized as "Same Network" pointing to DIGITALOCEAN-134-209-0-0. This reflects the IP's position within DigitalOcean's cloud infrastructure routing infrastructure.
## Recommended Security Actions
Current Risk Score: 25
Action Recommendations: None Required
The low risk score (25) combined with absence of active threat indicators, no open services, and stable network classification suggests routine monitoring is sufficient. No immediate blocking or firewall rule modifications recommended.
## Intelligence Narrative
IP address 134.209.115.17 represents a standard DigitalOcean cloud compute endpoint with low-risk profile characteristics. The endpoint exhibits typical cloud infrastructure behavior with firewalled services and no active threat signatures. Historical scanning activity from mid-June 2026 indicates routine network reconnaissance but no confirmed malicious engagement. The subnet environment maintains clean classification with minimal abuse density. SOC analysts should treat this IP as low-priority infrastructure, requiring only standard monitoring protocols. Any future risk elevation would trigger automatic reclassification through ongoing observation feeds.
---
Report Generated: Current Intelligence Cycle
Classification: Standard Threat Intelligence
Recommended Handling: Monitor
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 21% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-15 08:43:01 UTC |
| Last Seen | 2026-06-28 01:57:20 UTC |
| Profile Built | 2026-06-28 20:03:31 UTC |
| Data Freshness | Live |
| Signal Types | 17 |
| Total Observations | 20 |
Full dossier details are available via our API.