IPDebrief

185.15.171.21

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

Threat Intelligence Briefing: IP 185.15.171.21/32

Summary:

IP address 185.15.171.21/32 was observed engaging in activities that prompted further analysis. This IP is associated with a range of behaviors and entities that warrant attention from security operations center (SOC) teams. The following narrative provides a comprehensive overview of its profile, observation history, relationships, and neighborhood data.

Profile Overview:

Observation History:

Relationships:

Neighborhood Data:

Actionable Recommendations:

1. Monitoring and Blocking: Implement network monitoring to detect any traffic originating from or directed to this IP. Consider adding it to blocklists to prevent access to known malicious sites.

2. Phishing Awareness: Enhance user awareness and training programs to recognize phishing attempts originating from domains associated with this IP.

3. Incident Response Preparedness: Prepare incident response teams to handle potential breaches or intrusions linked to this IP, ensuring rapid containment and remediation.

4. Collaboration with Threat Intelligence Providers: Engage with external threat intelligence providers for real-time updates on any changes in the behavior or status of this IP.

This briefing provides a detailed understanding of the threat landscape associated with IP 185.15.171.21/32, enabling SOC analysts to take informed, proactive measures to mitigate risks.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ฎ๐Ÿ‡น Italy
Region77
CityPicerno
TimezoneEurope/Rome
Latitude40.58
Longitude15.67

๐Ÿข Ownership & Registration

OrganizationDONATO CONTE
ASNAS57558
Network Nameโ€”
CIDR Block185.15.168.0/22
RIRRIPE
Countryโ€”
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTRhost021-171-015-185.retemetis.net
Forward ConfirmedYes โ€” FCrDNS verified
Forward Hostnameshost021-171-015-185.retemetis.net

๐Ÿ” DNS Hygiene

Hygiene Score40% (Fair)
SPFNot configured
DMARCNot configured
FCrDNSVerified
DNSSECValid
CAANot configured

โ˜๏ธ Network Classification

InfrastructureUnknown
Service PurposeWeb Server
Network TierTier 3 โ€” Basic operator with some routing infrastructure
No specific classification

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
80httptcpโ€”
443httpstcpโ€”
Closed Ports22, 25, 3389, 8080, 8443 (2 open / 7 scanned)
Serverlighttpd/1.4.39
HTTP Titleโ€”

๐Ÿ” TLS Certificate

๐Ÿ”’
No certificate
Issued by โ€”
N/A
SANsNone
Valid Fromโ€”
Valid Untilโ€”

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
26%
24
routing
15%
22
services
26%
23
ownership
24%
23
reputation
21%
13
geolocation
21%
22
Overall22%1117
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-05-07 23:04:00 UTC
Last Seen2026-06-23 00:35:37 UTC
Profile Built2026-06-23 00:40:12 UTC
Data FreshnessLive
Signal Types25
Total Observations26
๐Ÿ” 25 signal types ยท 26 observations collected
This report is generated from 25+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.