185.15.171.198
IP Intelligence Briefing: 185.15.171.198/32
Date: June 11, 2026
---
**1. Core Profile**
- Risk Score: 80 (High Risk)
- Owner: DONATO CONTE (ASN 57558, RIR: RIPE)
- Geolocation: Italy (Basilicate region, Tito), coordinates 40.58°N, 15.67°E (inferred with 52% confidence).
- Network: Part of METIS-V4-NET-2 (185.15.170.0/23).
- Threat Indicators: No direct malicious activity detected.
- Network Role: Firewalled / No Services (no open ports, no TLS/HTTP services).
---
**2. Observation History**
- Recent Signals (June 11, 2026):
- Geolocation inferred with 52% confidence (coordinates 41.87°N, 12.57°E).
- DNS listings across 8 sources (3 high-severity threats).
- Operator score: 0.26 (Basic risk label).
- No persistent malicious activity or campaign correlations.
---
**3. Relationships**
- DNS Associations:
- Linked to host198-171-015-185.retemetis.net (multiple DNS records).
- Network: Shares subnet with METIS-V4-NET-2 (185.15.170.0/23).
- No Known Threat Connections: No subnets, organizations, or certificates tied to malicious campaigns.
---
**4. Neighborhood Analysis**
- Subnet: 185.15.171.198/24 (87 total IPs).
- Risk Distribution:
- 18 high-risk, 62 medium-risk, 7 low-risk IPs.
- Abuse density: 20.7% (moderate risk).
- Notable Neighbors:
- 185.15.171.2, 185.15.171.4: High-risk (80/100 score).
- 185.15.171.1, 185.15.171.7: Medium-risk (55/100 score).
---
**5. Recommendations**
- Monitor: Track DNS activity for retemetis.net and subnet peers.
- Block High-Risk Neighbors: Consider blocking IPs with high-risk scores (e.g., 185.15.171.2, 185.15.171.4).
- Verify Geolocation: Discrepancy in coordinates (40.58°N vs. 41.87°N) may indicate spoofing or inaccurate data.
- Network Segmentation: Isolate this subnet to limit lateral movement risks.
Note: No direct malicious indicators found, but the combination of high-risk neighbors and DNS activity warrants closer scrutiny.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | DONATO CONTE |
| ASN | AS57558 |
| Network Name | METIS-V4-NET-2 |
| CIDR Block | 185.15.170.0/23 |
| RIR | RIPE |
| Country | IT |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | host198-171-015-185.retemetis.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | host198-171-015-185.retemetis.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 13% | 6 | 7 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-27 01:07:11 UTC |
| Last Seen | 2026-06-11 07:35:00 UTC |
| Profile Built | 2026-06-11 07:46:14 UTC |
| Data Freshness | Live |
| Signal Types | 17 |
| Total Observations | 17 |
Full dossier details are available via our API.