149.102.230.118
IP Intelligence Briefing: 149.102.230.118
*Generated via IPDebrief tools: Profile, History, Relationships, Neighbors, Actions*
---
**1. Core Profile**
- Risk Score: 50 (Moderate Risk)
- Ownership: Registered to Datacamp Limited (ASN 212238, ARIN).
- Geolocation: Frankfurt am Main, Germany (plausible, 2500km accuracy radius).
- Threat Indicators: No malicious activity detected (no blacklists, campaigns, or DNS abuse).
- Network Role: Firewalled host with no exposed services (open ports, TLS, or HTTP).
---
**2. Observation History**
- Signals: 22 observations over 28 days, primarily DNSSEC validation and operator scores.
- Risk Trends: Stable low risk; no persistent malicious activity.
- Notable: DNSBL listings (2/8), but no high-severity threats.
---
**3. Relationships**
- Network: Linked to CDNEXT-FRA-CG (149.102.230.0/24).
- DNS: Resolves to `unn-149-102-230-118.datapacket.com` (SPF/DMARC configured).
- No External Threats: No connections to known malicious entities or campaigns.
---
**4. Neighborhood Analysis**
- Subnet: 149.102.230.0/24 (4 total IPs).
- Abuse Density: 75% (3/4 IPs flagged).
- Neighbors:
- 149.102.230.117 (Risk: 50)
- 149.102.230.119 (Risk: 50)
- 149.102.230.133 (Risk: 25)
- Recommendation: Monitor subnet for potential lateral movement or shared infrastructure risks.
---
**5. Security Actions**
- Firewall Rules:
- iptables: `iptables -A INPUT -s 149.102.230.118 -j DROP`
- nftables: `nft add rule inet filter input ip saddr 149.102.230.118 drop`
- Cloudflare/WAF: Block IP with description "IPDebrief risk 50".
- Notes: No immediate action required unless the IP is part of active traffic.
---
**Summary**
The IP 149.102.230.118 is owned by Datacamp Limited and appears legitimate, with no direct malicious activity. However, its subnet (149.102.230.0/24) has a high abuse density (75%), suggesting potential risks from neighboring IPs. Monitor traffic to this subnet and consider blocking the IP if it is not required for operations. No urgent action is needed, but ongoing observation is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Datacamp Limited |
| ASN | AS212238 |
| Network Name | CDNEXT-FRA-CG |
| CIDR Block | 149.102.230.0/24 |
| RIR | ARIN |
| Country | United Kingdom |
| Abuse Contact | β |
π DNS Intelligence
| PTR | unn-149-102-230-118.datapacket.com |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | unn-149-102-230-118.datapacket.com |
π DNS Hygiene
| Hygiene Score | 60% (Good) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 37% | 2 | 5 |
| routing | 13% | 1 | 1 |
| services | 20% | 2 | 3 |
| ownership | 15% | 2 | 2 |
| reputation | 21% | 1 | 3 |
| geolocation | 30% | 2 | 3 |
| Overall | 23% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Fresh
| First Seen | 2026-05-07 23:03:45 UTC |
| Last Seen | 2026-06-26 18:10:40 UTC |
| Profile Built | 2026-06-25 00:05:22 UTC |
| Data Freshness | Fresh |
| Signal Types | 21 |
| Total Observations | 22 |
Full dossier details are available via our API.