138.199.15.175
# IPDEBRIEF INTELLIGENCE BRIEFING
Target IP: 138.199.15.175/32
Classification: Low Risk / Legitimate Infrastructure
Report Generated: Current
Analyst Assessment: No immediate action required
---
## EXECUTIVE SUMMARY
IP address 138.199.15.175 is a low-risk infrastructure endpoint operated by CDN77 (Datacamp Limited). The address shows no malicious indicators and functions as a firewalled network resource with no active services. Geographic location data indicates Marseille, France with infrastructure belonging to CDN77's European network operations.
---
## INFRASTRUCTURE PROFILE
Ownership & Network:
- ASN: 60068 (CDN77 - Datacamp Limited)
- Network: 138.199.14.0/23 (origin BGP prefix)
- Organization: DATACAMP-MNT
- RIR: ARIN / RIPE (multi-registry)
- Registration: 1990-05-23
Geolocation:
- Country: France (FR)
- City: Marseille
- Region: PAC
- Accuracy Radius: 750km
- RTT: 104-111ms (minimum possible: 20.4ms)
Network Classification:
- Service Purpose: Firewalled / No Services
- Not identified as: CDN, VPN, Proxy, Tor, Hosting, Mobile, or Residential
- DNS: unn-138-199-15-175.datapacket.com
---
## THREAT ANALYSIS
Risk Assessment:
- Overall Risk Score: 25/100 (Low Risk)
- Abuse Confidence Score: Not applicable
- Known Attacker Status: Negative
- Spam Source Status: Negative
- Tor Exit Node: Negative
Threat Indicators:
- Blacklist Count: 0
- Known Campaigns: None
- Threat Feeds: Empty
- Pulsedive Risk: Not applicable
Behavioral Analysis:
- Honeypot Hits: 0
- Enumeration Strikes: 0
- Threat Persistence Days: 0
- Persistently Malicious: False
- Threat Observation Count: 0
DNS Reputation:
- DNSBL Listed: 1/8 lists (minimal impact)
- DNSSEC Valid: True
- Operator Score: 0.1304 (Minimal)
---
## NEIGHBORHOOD CONTEXT
Subnet Analysis (138.199.15.0/24):
- Abuse Density: 0%
- Classification: Clean
- Total Siblings: 4
- Active Siblings: 1
- Threat Siblings: 0
Adjacent IP Risk Scores:
- 138.199.15.147: 25 (Low Risk)
- 138.199.15.159: 25 (Low Risk)
- 138.199.15.177: 25 (Low Risk)
Conclusion: The /24 subnet exhibits minimal abuse activity with consistent low-risk profiles across all observed addresses.
---
## OBSERVATION HISTORY
Historical Trend Analysis:
- Total Observations: 20
- Recent Activity: June 5, 2026 (latest)
- Ownership Changes: 0
- Geographic Consistency: Stable (Marseille, FR)
- ASN Consistency: ASN 60068 maintained across observations
Network Stability:
- Route Stability: False (minor fluctuations)
- Route Changes (30d): 0
- MoAS Status: False
---
## RELATIONSHIP MAPPING
Network Relationships:
- 15+ connections to CDN77-MRS (Marseille) network segment
DNS Relationships:
- Primary hostname: unn-138-199-15-175.datapacket.com
- 15+ DNS association records
- Forward resolution confirmed
Campaign Correlation:
- Cert Matches: 0
- Banner Matches: 0
- Correlated IPs: 0
---
## ACTIONABLE INTELLIGENCE
Recommended Actions:
1. Classification: Monitor as legitimate CDN77 infrastructure
2. Firewall Rules: No blocking required
3. Threat Hunting: No immediate threat indicators warrant investigation
4. Geofencing: No geographic restrictions indicated
SOC Guidance:
- This IP represents standard CDN77 network infrastructure
- No evidence of malicious activity or abuse
- Normal operation expected for network operations
- Continue monitoring via existing SIEM rules
---
## CONCLUSION
IP 138.199.15.175 is a low-risk infrastructure endpoint with no malicious indicators. The address belongs to CDN77's European network in Marseille, France, and shows consistent operational characteristics. No threat intelligence warrants SOC intervention or additional investigation at this time.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | DATACAMP-MNT |
| ASN | AS60068 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | unn-138-199-15-175.datapacket.com |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | unn-138-199-15-175.datapacket.com |
๐ DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 24% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 27% | 2 | 3 |
| Overall | 19% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-09 17:41:06 UTC |
| Last Seen | 2026-06-25 18:00:28 UTC |
| Profile Built | 2026-06-25 18:09:16 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 21 |
Full dossier details are available via our API.