# IP INTELLIGENCE BRIEFING: 159.65.226.164/32
Classification: Low Risk | Date: 2026-06-20
---
## Executive Summary
The target IP 159.65.226.164 is a DigitalOcean cloud compute instance located in North Bergen, NJ with a risk score of 25 (Low Risk). The IP exhibits minimal threat indicators and is classified as "Firewalled / No Services." The subnet (159.65.226.0/24) shows 33.33% abuse density with one threat sibling identified.
---
## Ownership & Infrastructure
- Provider: DigitalOcean, LLC (ASN 14061)
- Infrastructure Type: CloudCompute
- Geolocation: United States, North Bergen, NJ
- BGP Prefix: 159.65.224.0/20
- Origin ASN: 14061
- Route Stability: False (route changes detected)
---
## Threat Assessment
- Risk Score: 25 (Low Risk)
- Abuse Confidence Score: Not applicable
- Blacklist Count: 0
- Known Attacker: False
- Tor Exit Node: False
- Spam Source: False
- Threat Indicators: None detected
- Campaign Correlation: None observed
Control Plane Status:
- DNSBL Listed: 1 of 8 total lists
- Operator Score: 0.1304 (Minimal)
- RPKI State: Not evaluated
- IRR Consistency: Not evaluated
---
## Network Behavior
- Open Ports: None detected
- Services: No open services identified
- DNS Resolution: Forward resolution not confirmed
- Hosted Domains: 0
- Email Authentication: No SPF/DMARC records found
- TLS Certificate: Not present
Behavioral Indicators:
- Honeypot Hits: 0
- Enumeration Strikes: 0
- WAF Violations: 0
---
## Neighborhood Analysis (159.65.226.0/24)
- Subnet Classification: mostly_clean
- Abuse Density: 33.33%
- Total Siblings: 3
- Active Siblings: 2
- Threat Siblings: 1
- Inherited Risk: 2
Neighbor Profiles:
| IP Address | Risk Score | Authority Score |
|---|---|---|
| 159.65.226.119 | 25 | 50 |
| 159.65.226.156 | 25 | 60 |
---
## Historical Signals
Twenty observations recorded through 2026-06-20:
- Operator score signals observed
- Routing, services, ownership, reputation, and geolocation dimensions assessed
- No persistent malicious behavior detected
- Single threat observation recorded
- Ownership stability: No changes
---
## Recommended Actions
No specific firewall rules or remediation actions generated based on current risk profile. The IP presents minimal threat to defensive networks.
SOC Analyst Guidance:
- Monitor for changes in risk score or service exposure
- Review neighborhood context when analyzing related traffic
- No immediate blocking or allow-listing required
- Combine with additional context before taking action (per IPDebrief probabilistic recommendations)
---
Intelligence Source: IPDebrief | Classification: Defensive Security
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 29% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 31% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 23% | 10 | 16 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-21 20:59:25 UTC |
| Last Seen | 2026-06-28 15:33:22 UTC |
| Profile Built | 2026-06-29 09:38:26 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 23 |
Full dossier details are available via our API.