144.126.207.166

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

## IP INTELLIGENCE BRIEFING: 144.126.207.166

Classification: LOW RISK

Date: 2026-06-16

Analyst: IPDebrief Intelligence Division

---

EXECUTIVE SUMMARY

Target IP 144.126.207.166 was classified as Low Risk with an overall risk score of 25. The address is associated with DigitalOcean cloud infrastructure and demonstrates no active threat indicators, malicious activity, or network abuse patterns.

---

OWNERSHIP AND NETWORK ATTRIBUTES

The IP address belongs to DigitalOcean, LLC (ASN 14061) within CIDR block 144.126.192.0/18. The network role is classified as CloudCompute infrastructure with hosting capabilities. No bogon, CDN, VPN, proxy, or residential indicators were detected.

---

GEOLOCATION DATA

Geolocation data indicates the IP originates from Slough, England, GB. The geo-source count is 1 with consensus validation confirmed. Plausibility scoring validated the location with 5 probe measurements and average RTT of 96.8ms.

---

THREAT ASSESSMENT

Risk Score: 25 (Low Risk)
Threat Indicators: None observed
Known Attacker Status: Negative
Tor Exit Node: Negative
Spam Source: Negative
Blacklist Count: 0
DNSBL Listed: 1 of 8 total lists
Known Campaigns: None identified

---

NETWORK SERVICES AND DNS

No open ports were detected during service scanning. The IP shows no TLS certificate associations, HTTP title content, or server banner information. DNS analysis revealed no PTR hostnames, no forward resolution capability, and zero hosted domain associations. Email authentication records (SPF, DMARC) were not present.

---

SUBNET AND NEIGHBORHOOD ANALYSIS

The /24 subnet (144.126.207.166/24) is classified as clean with abuse density of 0. Risk distribution shows zero high-risk, medium-risk, or low-risk siblings. The neighborhood contains only 1 total sibling with 0 active siblings and 0 threat siblings.

---

OBSERVATION HISTORY

Historical analysis captured 16 observations with the most recent data point recorded on 2026-06-16. Signal observations included:

Geolocation data with 5 probe measurements
Subnet classification as clean
Operator scoring labeled as "Minimal" (score: 0.1304)
No evidence of threat persistence or ownership changes

---

RELATIONSHIP MAPPING

Four relationship entries were identified, all mapping to the same network entity: DIGITALOCEAN-144-126-192-0. No associations to external organizations, hostnames, or certificates were detected.

---

SECURITY ACTIONS

No specific firewall rules or security action recommendations were generated due to the low-risk profile. The IP does not warrant immediate blocking or mitigation measures.

---

ANALYST CONCLUSION

IP 144.126.207.166 represents standard cloud infrastructure with no observed malicious activity. The address is associated with legitimate DigitalOcean hosting services in the UK. No immediate defensive actions are required. SOC teams may monitor for changes in risk profile or emergence of threat indicators.

Status: No Action Required

Confidence Level: High (based on 16 historical observations)

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇬🇧 United Kingdom
Region	England
City	Slough
Timezone	Europe/London
Latitude	51.52
Longitude	-0.62

🏢 Ownership & Registration

Organization	DigitalOcean, LLC
ASN	AS14061
Network Name	DIGITALOCEAN-144-126-192-0
CIDR Block	144.126.192.0/18
RIR	ARIN
Country	United States
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR Record	No PTR
Forward Confirmed	No — PTR hostname does not resolve back to this IP (weak signal)

🔐 DNS Hygiene

Hygiene Score	20% (Poor)
SPF	Not configured
DMARC	Not configured
FCrDNS	Not verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Web Server
Network Tier	Hosting — Infrastructure provider without advanced routing

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
80	http	tcp	—
443	https	tcp	—
22	ssh	tcp	SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.15
Closed Ports	25, 3389, 8080, 8443 (3 open / 7 scanned)

Server	nginx/1.18.0 (Ubuntu)
HTTP Title	—
SSH Version	SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.15

🔐 TLS Certificate

🔒

CN=communityconnect.n5systems.com

Issued by CN=YR1, O=Let's Encrypt, C=US

Self-signed: No

SANs	communityconnect.n5systems.com
Valid From	2026-06-09T21:12:32+00:00
Valid Until	2026-09-07T21:12:31+00:00
TLS Protocol	Tls13
Cipher Suite	TLS_AES_256_GCM_SHA384
Signature Algorithm	sha256RSA
Validity Period	89 days
Serial Number	06E4E54801241D9C633F8A529EDFC61983B4
Thumbprint	ED6EAB9B96EE57F7F831F0830B0D9F486136BDC9

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	24%	2	2
routing	17%	1	1
services	17%	1	1
ownership	35%	2	3
reputation	17%	1	2
geolocation	35%	2	3
Overall	24%	9	12

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (50%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-06-13 09:46:09 UTC
Last Seen	2026-06-21 20:31:02 UTC
Profile Built	2026-06-21 21:16:19 UTC
Data Freshness	Live
Signal Types	19
Total Observations	23

🔍 19 signal types · 23 observations collected

This report is generated from 19+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

144.126.207.166📋 Copy