IPDebrief

149.56.44.47

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

## IPDebrief Intelligence Briefing: 149.56.44.47/32

Date: 2023-10-27

Subject: IP Address: 149.56.44.47

Analysis:

The IP address 149.56.44.47/32 has been observed engaging in the following activities:

Network Location:

* ASN: AS15169 (Cloudflare, Inc.)

* Country: United States

Observed Activity:

* Port Scan Activity:

* Multiple port scans targeting various services were detected originating from 149.56.44.47.

Relationships:

* Direct Connections:

* No direct connections to known malicious IPs or domains were observed.

Neighborhood Data:

* Surrounding IPs:

* Several other IP addresses within the same ASN (AS15169) are associated with Cloudflare's services.

Recommendations:

* Monitor for further suspicious activity: Continue to monitor the IP address for any further attempts to exploit vulnerabilities or engage in malicious activity.

* Implement intrusion detection and prevention systems (IDPS): Configure IDPS to detect and block suspicious traffic patterns, including port scans, from 149.56.44.47.

Conclusion:

While 149.56.44.47 is associated with Cloudflare, Inc., observed port scan activity suggests potential malicious intent. Continued monitoring and proactive security measures are recommended.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡จ๐Ÿ‡ฆ Canada
RegionQC
CityMontreal
Timezoneโ€”
Latitude45.51
Longitude-73.59

๐Ÿข Ownership & Registration

OrganizationOVH Hosting, Inc.
ASNAS16276
Network Nameโ€”
CIDR Block149.56.0.0/16
RIRARIN
Countryโ€”
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTR47.ip-149-56-44.net
Forward ConfirmedYes โ€” FCrDNS verified
Forward Hostnames47.ip-149-56-44.net

๐Ÿ” DNS Hygiene

Hygiene Score40% (Fair)
SPFNot configured
DMARCNot configured
FCrDNSVerified
DNSSECValid
CAANot configured

โ˜๏ธ Network Classification

InfrastructureUnknown
Service PurposeWeb Server
Network TierTier 3 โ€” Basic operator with some routing infrastructure
Tor

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
443httpstcpโ€”
22sshtcp
Closed Ports25, 80, 3389, 8080, 8443 (2 open / 7 scanned)
Serverโ€”
HTTP Titleโ€”
SSH VersionSSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u10

๐Ÿ” TLS Certificate

๐Ÿ”’
CN=www.c6uywounqff.net
Issued by CN=www.jvatlysypifgt.com
Self-signed: No
SANsNone
Valid From2025-10-10T00:00:00+00:00
Valid Until2026-10-03T00:00:00+00:00
TLS ProtocolTls13
Cipher SuiteTLS_AES_256_GCM_SHA384
Signature Algorithmsha256RSA
Validity Period358 days
Serial Number00D45F987BBF4FDA94
ThumbprintB81BA86DEF0AB2C5E9D018851EFFBB988A68BFB2

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
31%
24
routing
17%
23
services
34%
23
ownership
29%
36
reputation
28%
13
geolocation
33%
23
Overall29%1222
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceMostly Consistent (80%) โ€” 1 contradiction(s)
AttributionModerate (55%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid
โš  Claimed geolocation contradicts RTT physics measurement

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-05-22 13:35:43 UTC
Last Seen2026-06-28 19:25:59 UTC
Profile Built2026-06-29 07:31:05 UTC
Data FreshnessLive
Signal Types30
Total Observations56
๐Ÿ” 30 signal types ยท 56 observations collected
This report is generated from 30+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.