185.15.170.107
IP Intelligence Briefing: 185.15.170.107
Date: 2026-06-13
---
**1. Core Profile**
- Risk Score: Low Risk (0/100)
- Ownership:
- ASN: 57558 (METIS-AS)
- Organization: DONATO CONTE (METIS-V4-NET-2)
- Geolocation: United States (NY), registered with RIPE.
- Threat Indicators: No malicious activity detected (no IOC matches, no spam, no Tor/VPN/proxy associations).
- Network Role: Firewalled / No Services (no open ports, no TLS certs, no HTTP services).
---
**2. Observation History**
- Recent Activity (Last 30 Days):
- 16 observations recorded, with 8% of signals flagged in threat feeds (low confidence).
- Notable:
- DNSSEC-valid reverse DNS (`host107-170-015-185.retemetis.net`).
- BGP prefix `185.15.168.0/22` linked to METIS-AS (Italy).
- No persistent malicious behavior or campaign correlations.
---
**3. Relationships**
- Network Associations:
- Linked to METIS-V4-NET-2 (same network).
- DNS hostname: `host107-170-015-185.retemetis.net`.
- No direct ties to known threat actors, C2 servers, or malicious domains.
---
**4. Subnet Neighborhood**
- Subnet: `185.15.170.0/23` (45 IPs total).
- Risk Distribution:
- High-risk IPs: 12 (26.7% of subnet).
- Medium-risk IPs: 30 (66.7%).
- Low-risk IPs: 3 (6.7%).
- Notable Neighbors:
- `185.15.170.11` (Risk: 80), `185.15.170.77` (Risk: 0), `185.15.170.221` (Risk: 55).
- Subnet abuse density is moderate; monitor for lateral movement or shared infrastructure risks.
---
**5. Recommendations**
- SOC Action:
- Monitor subnet activity for anomalies, given mixed risk levels.
- Verify DNSSEC validity for `retemetis.net` and ensure no unexpected subdomains.
- Check for service changes on this IP (no services currently detected).
- Firewall: No immediate blocking required, but consider logging traffic to the subnet for deeper analysis.
---
Conclusion:
185.15.170.107 is a low-risk IP owned by a U.S.-registered entity with no direct malicious indicators. However, its subnet contains a moderate risk of abuse, warranting closer monitoring. No immediate mitigation is required, but ongoing observation is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DONATO CONTE |
| ASN | AS57558 |
| Network Name | METIS-V4-NET-2 |
| CIDR Block | 185.15.170.0/23 |
| RIR | RIPE |
| Country | IT |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | host107-170-015-185.retemetis.net |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | host107-170-015-185.retemetis.net |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown β Insufficient routing data to classify |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 0% | 0 | 0 |
| routing | 0% | 0 | 0 |
| services | 0% | 0 | 0 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 6% | 3 | 4 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-04 12:41:41 UTC |
| Last Seen | 2026-06-13 01:40:42 UTC |
| Profile Built | 2026-06-13 01:44:35 UTC |
| Data Freshness | Live |
| Signal Types | 17 |
| Total Observations | 17 |
Full dossier details are available via our API.