149.118.68.211

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing: 149.118.68.211

Date: 2026-06-11

---

1. Core Profile

Risk Rating: Low Risk (Risk Score: 0 / Provider Score: 0 / Authority Score: 0)
Ownership: Owned by Oracle Corporation (ASN: ORACLE-4, ARIN registered).
Geolocation:

- Country: United States

- Region: New South Wales (likely data inconsistency, as Bungarribee is an Australian suburb).

- Coordinates: Latitude 37.75, Longitude -97.82.

Network Role: Oracle Cloud infrastructure (Hosting: True, Cloud: True, CDN/VPN/Proxy: False).

---

2. Threat Indicators

No Malicious Activity: No threat indicators, abuse confidence, or blacklist entries.
DNS & Services:

- No open ports, TLS certificates, or HTTP services detected.

- No email authentication records (SPF/DKIM/DMARC).

BGP & Routing:

- BGP prefix not observed; no route stability issues.

- Not listed in DNSBLs or RPKI invalidations.

---

3. Temporal Observations

Activity History:

- Last observed on 2026-06-11 with minimal risk signals.

- No persistent malicious activity or campaign correlations.

Ownership Stability: No changes in ownership or subnet assignment.

---

4. Network Relationships

Linked Entities:

- Repeatedly associated with ORACLE-4 network (AS15169).

- No connections to other subnets, organizations, or domains.

Subnet Context:

- Part of 149.118.68.0/24 subnet.

- No active neighbors detected (neighborCount: 0).

---

5. Neighborhood Analysis

Subnet Abuse Density: 0% (mostly clean).
Neighbor Risk: No sibling IPs observed, suggesting a sparse or isolated subnet.

---

6. Recommendations

Monitor for Anomalies: Track for unexpected service emergence or routing changes.
Verify Geolocation Discrepancy: Investigate the "New South Wales" flag, which may be an error.
No Immediate Action Required: Low-risk infrastructure IP with no malicious signals.

Conclusion: 149.118.68.211 is a legitimate Oracle Cloud IP with no signs of malicious activity. Its isolated subnet and lack of network neighbors warrant further investigation for potential misconfiguration or data accuracy issues.

---

*Generated by IPDebrief Threat Intelligence Platform*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇺🇸 United States
Region	New South Wales
City	Bungarribee
Timezone	—
Latitude	-33.80
Longitude	150.88

🏢 Ownership & Registration

Organization	Oracle Corporation
ASN	AS31898
Network Name	ORACLE-4
CIDR Block	149.118.0.0/16
RIR	ARIN
Country	United States
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR Record	No PTR
Forward Confirmed	No — PTR hostname does not resolve back to this IP (weak signal)

🔐 DNS Hygiene

Hygiene Score	20% (Poor)
SPF	Not configured
DMARC	Not configured
FCrDNS	Not verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Unknown
Service Purpose	Web Server
Network Tier	Unknown — Insufficient routing data to classify

No specific classification

🔌 Services & Open Ports

Port	Service	Protocol	Banner
443	https	tcp	—
22	ssh	tcp	SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.13
Closed Ports	25, 80, 3389, 8080, 8443 (2 open / 7 scanned)

Server	—
HTTP Title	—
SSH Version	SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.13

🔐 TLS Certificate

🔒

CN=Lucky, OU=lucky666CN, O=lucky666CN

Issued by CN=lucky666CN, OU=lucky666CN, O=lucky666CN

Self-signed: No

SANs	localhost
Valid From	2025-11-05T01:31:25+00:00
Valid Until	2028-02-05T01:31:25+00:00
TLS Protocol	Tls13
Cipher Suite	TLS_AES_128_GCM_SHA256
Signature Algorithm	sha256RSA
Validity Period	822 days
Serial Number	1EB69979FB77716268553BE27E4A2AA2
Thumbprint	CF1F13F0006EDB67218C300BC6C1BF309CB94EF6

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	33%	2	4
routing	13%	1	1
services	27%	2	3
ownership	27%	2	3
reputation	22%	1	3
geolocation	15%	2	2
Overall	23%	10	16

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (50%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-30 00:19:30 UTC
Last Seen	2026-06-29 06:53:41 UTC
Profile Built	2026-06-29 06:58:41 UTC
Data Freshness	Live
Signal Types	18
Total Observations	19

🔍 18 signal types · 19 observations collected

This report is generated from 18+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

149.118.68.211📋 Copy

**1. Core Profile**

**2. Threat Indicators**

**3. Temporal Observations**

**4. Network Relationships**

**5. Neighborhood Analysis**

**6. Recommendations**