IPDebrief

165.227.55.4

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

Threat Intelligence Briefing: IP Address 165.227.55.4/32

Overview:

The IP address 165.227.55.4 is associated with a hosting provider commonly linked to residential and small business web hosting services. The analysis of available data indicates that this IP address is utilized for hosting a variety of websites, including those that may not adhere to best security practices.

Provider and Services:

Observation History:

Relationships:

Neighborhood Data:

Threat Analysis:

- Regularly scan hosted websites for vulnerabilities and apply security patches.

- Implement robust access controls and monitoring to detect and respond to suspicious activities.

- Educate clients on best security practices to ensure their hosted content does not become a vector for attacks.

Conclusion:

While IP 165.227.55.4/32 is not directly associated with malicious activities, its role as a hosting provider means it is crucial to maintain vigilant security practices. Continuous monitoring and proactive security measures are recommended to mitigate potential risks associated with hosting vulnerable websites.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡ΊπŸ‡Έ United States
RegionCA
CitySanta Clara
Timezoneβ€”
Latitude37.35
Longitude-121.97

🏒 Ownership & Registration

OrganizationDigitalOcean, LLC
ASNAS14061
Network Nameβ€”
CIDR Block165.227.48.0/20
RIRARIN
Countryβ€”
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTRkiwi.census.shodan.io
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnameskiwi.census.shodan.io

πŸ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAANot configured

☁️ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeSingle-Service Host
Network TierTier 3 β€” Basic operator with some routing infrastructure
CloudHosting

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
22sshtcp
Closed Ports25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned)
Serverβ€”
HTTP Titleβ€”
SSH VersionSSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.13

πŸ” TLS Certificate

πŸ”’
No certificate
Issued by β€”
N/A
SANsNone
Valid Fromβ€”
Valid Untilβ€”

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
27%
24
routing
27%
23
services
24%
23
ownership
37%
36
reputation
26%
13
geolocation
33%
23
Overall29%1222
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceMostly Consistent (80%) β€” 1 contradiction(s)
AttributionModerate (55%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid
⚠ Claimed geolocation contradicts RTT physics measurement

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-05-17 03:07:44 UTC
Last Seen2026-06-28 04:19:07 UTC
Profile Built2026-06-28 22:24:53 UTC
Data FreshnessLive
Signal Types26
Total Observations33
πŸ” 26 signal types Β· 33 observations collected
This report is generated from 26+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.