198.135.55.65
IP Intelligence Briefing: 198.135.55.65
*Generated using IPDebrief tools: Profile, History, Relationships, Neighbors*
---
**Key Threat Indicators**
- Risk Profile: Moderate Risk (Risk Score: 50). No direct malicious indicators (e.g., no known attackers, spam, or Tor exit nodes).
- DNSBL Listings: Observed in 8 DNSBLs with high severity (June 10, 2026).
- Network Role: Colocation Hosting provider (Majestic Hosting Solutions, LLC, ASN 396073).
- Geolocation: United States (TX), with DNSSEC validation but no precise city/latency data.
- Subnet Abuse: Subnet 198.135.55.0/24 has 1 sibling IP (198.135.55.106) with a risk score of 40.
---
**Recent Observations (Last 30 Days)**
- DNSBL Activity: Listed in 8 blacklists (high severity) on June 10, 2026.
- Network Stability: BGP prefix 198.135.52.0/22 shows minimal route changes (0 changes in 30 days).
- Operator Score: Minimal risk (0.13), but DNSBL listings suggest potential abuse.
---
**Relationships & Network Context**
- Same Network: Linked to MHSL-5 (ASN 396073, Majestic Hosting).
- Neighbor IP: 198.135.55.106 (risk score 40, moderate risk).
- Hosting Infrastructure: Colocation hosting, no CDN/VPN/mobile indicators.
---
**Recommended Actions**
1. Monitor DNSBL Listings: Investigate why this IP is listed in 8 DNSBLs. Check for false positives or abuse patterns.
2. Block Neighbor IP: 198.135.55.106 has a moderate risk score; consider blocking it if itβs part of a larger threat cluster.
3. Verify Hosting Provider: Confirm Majestic Hosting Solutionsβ security practices and check for any reported abuse.
4. Enhance Geolocation Accuracy: Use active probes to validate the IPβs geographic location (current data is approximate).
---
Summary: This IP is a hosting provider with moderate risk, but recent DNSBL listings suggest potential misuse. The associated subnet includes a sibling IP with moderate risk. SOC teams should monitor for suspicious activity and validate the hosting providerβs security posture.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Majestic Hosting Solutions, LLC |
| ASN | AS396073 |
| Network Name | MHSL-5 |
| CIDR Block | 198.135.48.0/20 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 3389 | rdp | tcp | β |
| Closed Ports | 22, 25, 80, 443, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 30% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 14% | 6 | 7 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-23 18:29:32 UTC |
| Last Seen | 2026-06-10 10:40:12 UTC |
| Profile Built | 2026-06-10 10:51:24 UTC |
| Data Freshness | Live |
| Signal Types | 14 |
| Total Observations | 14 |
Full dossier details are available via our API.