168.107.26.33

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 168.107.26.33/32

Classification: Oracle Cloud Infrastructure | Risk Level: Low (Score: 25/100) | Report Date: 2026-06-16

---

## Executive Summary

IP address 168.107.26.33 is an Oracle Cloud compute resource (ASN 31898) with low-risk characteristics. No active threat indicators, open services, or malicious behavior observed. The IP resides in a /24 subnet with moderate abuse density (0.5) but overall "mostly_clean" classification.

---

## Technical Profile

Ownership & Network:

Organization: Oracle Corporation
ASN: 31898
CIDR Block: 168.107.0.0/16
Network Role: Oracle Cloud infrastructure (CloudCompute)
Status: Cloud-hosted, firewalled with no services detected

Geolocation:

Country: US
Region: Gangwon-do (Chuncheon)
GeoConsensus: Validated
RTT: 237ms average (1 hop: Comcast)

Threat Indicators:

Blacklist Count: 0
Known Attacker: No
Spam Source: No
Tor Exit Node: No
Abuse Confidence Score: N/A

DNS & Services:

PTR Hostnames: None
Forward Resolution: 0 records
Open Ports: None detected
TLS Certificate: None

---

## Neighborhood Analysis

Subnet: 168.107.26.0/24

Abuse Density: 0.5 (Moderate)
Active Siblings: 0
Threat Siblings: 1
Classification: Mostly clean

Neighbor Inventory:

IP Address	Risk Score	Authority Score
168.107.26.171	25	50

---

## Historical Observations (17 signals)

Temporal Trends:

Ownership Changes: 0
Threat Persistence Days: 0
Persistently Malicious: No
Route Stability: Unstable

Recent Signal Types:

Subnet abuse density classification (0.5, mostly_clean)
Ownership stability (no changes detected)
Threat feed validation (not listed)
Geographic validation (plausible, 8,474km distance)
Operator score: 0.1304 (Minimal)

---

## Relationship Graph

Linked Entities: 9 relationships detected

All relationships point to "ORACLE-4" network
No associated hostnames, certificates, or external entities identified

---

## Recommended Actions

Firewall/Security Rules:

No blocking required for this IP at this time
Standard cloud traffic monitoring recommended
No specific WAF rules required

SOC Analyst Notes:

Low-risk Oracle Cloud resource
No immediate threat indicators present
Monitor for service discovery if previously inactive
Subnet abuse density warrants periodic review

---

Status: Clear for normal traffic | Next Review: Routine monitoring

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇺🇸 United States
Region	Gangwon-do
City	Chuncheon
Timezone	—
Latitude	37.89
Longitude	127.74

🏢 Ownership & Registration

Organization	Oracle Corporation
ASN	AS31898
Network Name	ORACLE-4
CIDR Block	168.107.0.0/16
RIR	ARIN
Country	United States
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR Record	No PTR
Forward Confirmed	No — PTR hostname does not resolve back to this IP (weak signal)

🔐 DNS Hygiene

Hygiene Score	20% (Poor)
SPF	Not configured
DMARC	Not configured
FCrDNS	Not verified
DNSSEC	Valid
CAA	Not configured

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Web Server
Network Tier	Hosting — Infrastructure provider without advanced routing

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
80	http	tcp	—
443	https	tcp	—
8443	https-alt	tcp	—
Closed Ports	22, 25, 3389, 8080 (3 open / 7 scanned)

Server	nginx/1.24.0 (Ubuntu)
HTTP Title	—

🔐 TLS Certificate

🔒

CN=cpa.uuul.de

Issued by CN=YE2, O=Let's Encrypt, C=US

Self-signed: No

SANs	cpa.uuul.desui.uuul.de
Valid From	2026-06-08T01:37:05+00:00
Valid Until	2026-09-06T01:37:04+00:00
TLS Protocol	Tls13
Cipher Suite	TLS_AES_256_GCM_SHA384
Signature Algorithm	sha384ECDSA
Validity Period	89 days
Serial Number	06652620EBCBF1F9B5037BE8CC43E2575411
Thumbprint	0429C4F99A95230FF968E4BE21A82476E3B4B779

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	40%	2	3
routing	13%	1	1
services	13%	1	1
ownership	30%	2	3
reputation	28%	1	3
geolocation	37%	2	3
Overall	27%	9	14

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (50%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Fresh

First Seen	2026-06-05 07:04:51 UTC
Last Seen	2026-06-21 12:07:43 UTC
Profile Built	2026-06-21 15:30:48 UTC
Data Freshness	Fresh
Signal Types	21
Total Observations	23

🔍 21 signal types · 23 observations collected

This report is generated from 21+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

168.107.26.33📋 Copy