164.92.68.55
IP Intelligence Briefing: 164.92.68.55
Date: 2026-05-31
---
**1. Threat Assessment**
- Risk Profile:
- Overall Risk Score: 25 (Low Risk)
- Threat Indicators: No malicious activity detected (no spam, attacks, or known campaigns).
- DNS & Geolocation:
- Geolocation inferred as Santa Clara, CA, US (65% confidence via multi-signal inference).
- No associated hostnames or domains.
- Network Role:
- Cloud compute instance (DigitalOcean).
- No open ports, TLS certs, or HTTP services detected.
- Control Plane:
- BGP prefix: `164.92.64.0/19` (DigitalOcean).
- Route stability: Stable (no recent changes).
- DNSSEC and CAA records valid.
---
**2. Observation History**
- Recent Activity (May 31, 2026):
- Geolocation inferred with 65% confidence.
- Operator score: 0.2174 (Minimal risk).
- No signs of Tor, VPN, or anonymizing services.
- DNSBL listings: 1 out of 8 lists (low confidence).
---
**3. Relationships & Network Context**
- Network Affiliation:
- Subnet: `164.92.68.55/24` (DigitalOcean network DO-13).
- No malicious or suspicious IPs in subnet (abuse density: 0).
- DNS Associations:
- Timed-out DNS queries to `192.168.2.108` (likely internal or misconfigured).
---
**4. Recommendations**
- SOC Actions:
- Monitor for unexpected network changes (e.g., new open ports or DNS associations).
- Verify cloud instance configurations to ensure no unintended exposure.
- No immediate mitigation required; maintain standard security posture.
Conclusion:
This IP is a legitimate DigitalOcean cloud instance with no signs of malicious activity. No further action is needed, but ongoing monitoring is advised to ensure compliance and security.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | β |
| CIDR Block | β |
| RIR | ARIN |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Present |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 31% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 24% | 2 | 3 |
| ownership | 24% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 39% | 2 | 3 |
| Overall | 26% | 10 | 17 |
| Data Coherence | Mostly Consistent (80%) β 1 contradiction(s) |
| Attribution | Low (35%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-17 09:09:45 UTC |
| Last Seen | 2026-06-28 04:49:34 UTC |
| Profile Built | 2026-06-28 22:55:37 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 26 |
Full dossier details are available via our API.