167.99.98.50
IP Intelligence Briefing: 167.99.98.50
Date: 2026-06-12
---
**1. IP Profile**
- Risk Score: 25 (Low Risk)
- Ownership:
- Provider: DigitalOcean, LLC (ASN 14061)
- Subnet: 167.99.0.0/16
- Geolocation: Santa Clara, California, United States (37.35°N, -121.97°W)
- Network Role:
- Cloud-hosted infrastructure (DigitalOcean)
- No open services or TLS certificates detected
- No DNS records or email authentication (SPF/DKIM) configured
---
**2. Threat Observations**
- DNSBL Listing:
- Flagged in 1 DNSBL with "high" severity (confidence: 30%).
- No confirmed malicious activity or known attacker campaigns.
- BGP Data:
- Routes originate from DigitalOceanβs ASN (14061) with stable propagation.
- No route anomalies or hijacks detected.
---
**3. Network Relationships**
- Linked Entities:
- Subnet: `DIGITALOCEAN-167-99-0-0` (167.99.0.0/16)
- No connections to other organizations, domains, or certificates.
---
**4. Subnet Analysis**
- Neighbors:
- No sibling IPs in the /24 subnet (likely a standalone /32 host).
- Abuse Density:
- Subnet has 0 abuse incidents.
---
**5. Behavioral Indicators**
- DNS:
- No reverse DNS (PTR) records or domain associations.
- DNSSEC validation is enabled.
- Traffic Patterns:
- No HTTP/HTTPS services, honeypot hits, or WAF violations detected.
- Traceroute shows 29 hops, with transit via Comcast networks.
---
**6. Recommendations**
- Monitoring:
- Track DNSBL status and verify if the listing is false positive.
- Monitor for unexpected service activation (e.g., open ports, TLS certs).
- Mitigation:
- No immediate firewall rules required due to low risk.
- Ensure DigitalOcean server configurations align with organizational security policies.
---
Conclusion: 167.99.98.50 is a low-risk DigitalOcean cloud host with no active threats. The DNSBL flag warrants further investigation, but no malicious activity is confirmed. No action required unless new threats emerge.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | DIGITALOCEAN-167-99-0-0 |
| CIDR Block | 167.99.0.0/16 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 21% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 23% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-03 18:30:55 UTC |
| Last Seen | 2026-06-21 10:40:04 UTC |
| Profile Built | 2026-06-21 10:41:28 UTC |
| Data Freshness | Live |
| Signal Types | 17 |
| Total Observations | 19 |
Full dossier details are available via our API.