134.209.30.57
# IP INTELLIGENCE BRIEFING
Subject: 134.209.30.57/32
Classification: Low Risk / Cloud Infrastructure
Date: 2026-06-21
Source: IPDebrief Intelligence Platform
---
## EXECUTIVE SUMMARY
IP 134.209.30.57 is a DigitalOcean cloud computing endpoint classified as low risk (risk score: 25). The IP operates as a web hosting service in Slough, England, with standard web server functionality. No active malicious indicators were observed. The IP maintains a stable cloud infrastructure profile with minimal threat persistence.
---
## OWNERSHIP & INFRASTRUCTURE
| Attribute | Value |
|---|---|
| **Organization** | DigitalOcean, LLC |
| **ASN** | 14061 |
| **Network Range** | 134.209.0.0/16 |
| **Infrastructure Type** | CloudCompute |
| **Classification** | Cloud Hosting |
| **Country** | GB (England, Slough) |
| **Registration** | ARIN |
---
## NETWORK SERVICES
| Port | Protocol | Service | Status |
|---|---|---|---|
| 80 | TCP | HTTP | Open |
| 443 | TCP | HTTPS | Open |
| 22 | TCP | SSH | Open |
SSH Banner: SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u10
---
## THREAT ASSESSMENT
Risk Score: 25 (Low Risk)
| Indicator | Status |
|---|---|
| **Known Attacker** | No |
| **Tor Exit Node** | No |
| **Spam Source** | No |
| **Blacklist Count** | 0 |
| **DNSBL Listed** | 1 of 8 total lists |
| **Threat Indicators** | None |
| **Known Campaigns** | None |
Control Plane Signals:
- DNSSEC Valid: Yes
- Operator Score: 0.1304 (Minimal)
- Route Stability: Unstable
- Route Changes (30d): 0
---
## OBSERVATION HISTORY
Total Observations: 19
Recent Activity:
- 2026-06-21: Cloud infrastructure classification confirmed
- 2026-06-16: Connection failure attempts, subnet analysis, operator score evaluation
Temporal Indicators:
- Threat Persistence: 0 days
- Is Persistently Malicious: No
- Ownership Changes: 0
---
## NETWORK RELATIONSHIPS
Same Network Relationships: 13 instances linked to DIGITALOCEAN-134-209-0-0 network
No cross-network associations detected.
---
## SUBNET ANALYSIS (134.209.30.0/24)
| Metric | Value |
|---|---|
| **Abuse Density** | 0 |
| **Classification** | Mostly Clean |
| **Total Siblings** | 1 |
| **Active Siblings** | 1 |
| **Threat Siblings** | 1 |
| **High Risk Neighbors** | 0 |
---
## SECURITY ACTIONS
Recommended Actions: None
Firewall Rules: Not required at this time
Assessment: No blocking or filtering actions recommended. IP maintains low-risk profile consistent with legitimate cloud hosting operations.
---
## INTELLIGENCE NARRATIVE
The IP address 134.209.30.57 represents a standard DigitalOcean cloud computing endpoint operating as a web server infrastructure component. The endpoint maintains a low-risk profile (score: 25) with no malicious indicators. Historical observations indicate consistent cloud infrastructure classification without persistent malicious activity.
The IP was observed on 2026-06-21 with confirmed cloud hosting classification. Previous observations from 2026-06-16 showed some connection failure attempts but no sustained threat behavior. The IP maintains standard web services (HTTP/HTTPS) with SSH access enabled.
Network relationships show only same-network associations to the DigitalOcean 134.209.0.0/16 block, with no cross-organization or cross-network threat associations. The /24 subnet (134.209.30.0/24) is classified as "mostly clean" with minimal abuse density.
Recommendation: Monitor as normal cloud infrastructure traffic. No blocking or filtering required.
---
END OF BRIEFING
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | DIGITALOCEAN-134-209-0-0 |
| CIDR Block | 134.209.0.0/16 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 22 | ssh | tcp | |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u10 |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 27% | 2 | 3 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 15% | 2 | 2 |
| Overall | 22% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-30 00:19:23 UTC |
| Last Seen | 2026-06-29 06:49:50 UTC |
| Profile Built | 2026-06-29 06:55:18 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 19 |
Full dossier details are available via our API.