185.15.171.158
IP Intelligence Briefing: 185.15.171.158
Date: 2026-06-06
---
**1. Core Profile**
- Risk Score: 55 (Moderate Risk)
- Ownership:
- ASN: 57558 (DONATO CONTE, Italy)
- Network: METIS-V4-NET-2 (185.15.168.0/22)
- Geolocation:
- Country: Italy (IT)
- Region: Basilicate
- City: Tito
- Coordinates: Unresolved
- Threat Indicators:
- No active malware, phishing, or spam campaigns detected.
- DNSBL Listings: 2 entries (high severity) in 8 DNSBLs.
---
**2. Network Behavior**
- Subnet: 185.15.171.158/24
- Neighbor Risk:
- Abuse Density: 26.4% (10 high-risk neighbors in 87 total).
- Top Risks: 23 IPs flagged for abuse (e.g., 185.15.171.4 with 80 risk score).
- Network Role:
- Firewalled / No services exposed.
- No CDN, cloud, or residential indicators.
---
**3. Relationships & Dependencies**
- DNS Associations:
- Linked to `host158-171-015-185.retemetis.net` (retemetis.net domain).
- No email auth (SPF/DKIM) or TLS certificate data.
- Network Peers:
- Shares subnet with 86 sibling IPs, 22 active, 23 flagged for abuse.
- ASN 57558 (DONATO CONTE) shows 0.26 operator score (Basic trust).
---
**4. Temporal & Behavioral Signals**
- Observation History:
- First noted on 2026-06-06 with DNSBL listings and network metadata.
- No prior threat activity or persistent malicious patterns.
- Geolocation Validity:
- Plausibility score: False (distance/RTT data missing).
---
**5. Recommendations**
1. Monitor Subnet: Track high-risk neighbors (e.g., 185.15.171.4) for lateral movement.
2. Investigate DNS: Analyze `retemetis.net` for associated domains or malicious activity.
3. Verify Ownership: Contact DONATO CONTE via RDAP to confirm legitimate use.
4. Firewall Rules: Block IP via iptables/nftables with rule:
```bash
iptables -A INPUT -s 185.15.171.158 -j DROP
```
5. Subnet Analysis: Prioritize scanning 185.15.171.0/24 for hidden threats.
---
Note: No immediate action required for the IP itself, but contextualize within the subnetโs abuse density and DNS associations.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | DONATO CONTE |
| ASN | AS57558 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | host158-171-015-185.retemetis.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | host158-171-015-185.retemetis.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 31% | 2 | 3 |
| reputation | 13% | 1 | 2 |
| geolocation | 23% | 2 | 2 |
| Overall | 21% | 10 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-11 08:58:06 UTC |
| Last Seen | 2026-06-26 08:22:42 UTC |
| Profile Built | 2026-06-06 02:28:47 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 22 |
Full dossier details are available via our API.