217.142.189.30
IP Intelligence Briefing: 217.142.189.30
*Generated via IPDebrief tools: Profile, History, Relationships, Neighbors, Actions*
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Provider: Oracle Cloud (AS16253)
- Geolocation:
- Country: United Kingdom (GB)
- Region: AB (likely Aberdeenshire)
- City: Stenhamra (inferred via geolocation signals)
- Network Role:
- Classed as "Firewalled / No Services"
- No CDN, VPN, or proxy indicators
- BGP prefix: `217.142.184.0/21`
- Threat Indicators:
- No malicious activity, spam, or known attacker associations
- No DNSBL listings or threat feed matches
---
**2. Observation History**
- Recent Signals:
- Minimal risk signals (confidence: 0.30โ0.85)
- Geolocation inferred via multi-signal inference (latitude: 55.38, longitude: -3.44)
- No spikes in threat activity or network instability
- Temporal Trends:
- No ownership changes or persistent malicious behavior
---
**3. Relationships**
- Linked Entities:
- Same network: `SE-ORACLE-SE-20010131` (Oracle Cloud infrastructure)
- No connections to hostnames, certificates, or other IPs
---
**4. Neighborhood Analysis**
- Subnet: `217.142.189.0/24`
- Neighbor IPs:
- `217.142.189.8`, `217.142.189.18`, `217.142.189.176`
- All rated Low Risk (score: 25)
- Abuse Density: 0% (no suspicious sibling IPs)
---
**5. Security Actions**
- Recommended Rules: None (low risk profile)
- Firewall/Network: No immediate action required. Monitor for changes in risk score or network behavior.
---
**6. Summary**
The IP `217.142.189.30` is part of Oracle Cloud infrastructure, with no evidence of malicious activity. Geolocation data suggests UK-based hosting, but regional/city details are inconsistent. Neighboring IPs in the subnet are similarly low risk. No actionable threats detected; however, continuous monitoring is advised for any anomalies.
SOC Analyst Note: This IP appears legitimate, but verify against internal threat feeds and monitor for unexpected network changes.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | ORCL-MNT |
| ASN | AS31898 |
| Network Name | SE-ORACLE-SE-20010131 |
| CIDR Block | 217.142.128.0/17 |
| RIR | RIPE |
| Country | GB |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Web Server |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 22 | ssh | tcp | |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | openresty |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16 |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 32% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 30% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 13% | 1 | 1 |
| Overall | 21% | 8 | 12 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-06-06 19:46:03 UTC |
| Last Seen | 2026-06-21 13:24:29 UTC |
| Profile Built | 2026-06-21 13:50:20 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 23 |
Full dossier details are available via our API.