IP Intelligence Briefing: 64.225.69.26
Date: 2026-06-16
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Provider: DigitalOcean (ASN 14061)
- Geolocation: Amsterdam, North Holland, Netherlands (52.13°N, 5.29°E)
- Network Role: Cloud compute instance (DigitalOcean infrastructure)
- Ownership: Owned by DigitalOcean, part of the `DIGITALOCEAN-64-225-0-0` subnet.
---
**2. Threat & Vulnerability Analysis**
- Threat Indicators: No malicious activity detected (no malware, C2, or exploit indicators).
- Services:
- Open SSH service (`SSH-2.0-OpenSSH_9.6p1`) on port 22.
- No TLS certificates or HTTP services detected.
- DNS & Email: No DNS records or email authentication (SPF/DKIM) associated.
---
**3. Network Context**
- Subnet: 64.225.69.26/24 (DigitalOcean-managed).
- Neighborhood:
- 0 abusive neighbors in the subnet.
- Subnet abuse density: 0% (clean).
- BGP: Route origin ASN 14061 (DigitalOcean), stable for 30 days.
---
**4. Temporal Observations (Last 30 Days)**
- Scan Activity:
- SSH service detected on June 12, 2026.
- No changes in geolocation or threat signals.
- Risk Trends: Stable low-risk profile with no persistent malicious activity.
---
**5. Recommendations**
- Monitoring: No firewall rules or actions recommended due to low risk.
- Next Steps:
- Validate SSH service legitimacy (e.g., check authorized keys).
- Monitor for unexpected port opens or configuration changes.
- Leverage DigitalOceanβs control plane tools for instance management.
---
Summary: 64.225.69.26 is a legitimate DigitalOcean cloud host with no signs of compromise. No threat indicators or network anomalies detected. Maintain standard monitoring practices for cloud infrastructure.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DigitalOcean, LLC |
| ASN | AS14061 |
| Network Name | DIGITALOCEAN-64-225-0-0 |
| CIDR Block | 64.225.0.0/17 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.12 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 32% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 17% | 1 | 2 |
| geolocation | 19% | 2 | 2 |
| Overall | 21% | 10 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-03 06:16:58 UTC |
| Last Seen | 2026-06-21 10:02:53 UTC |
| Profile Built | 2026-06-21 10:20:46 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 23 |
Full dossier details are available via our API.