185.247.137.176
IP Intelligence Briefing: 185.247.137.176
*Generated via IPDebrief analysis*
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Provider: Driftnet Hostmaster (AS211298)
- Geolocation:
- Country: United Kingdom (GB)
- Region: England
- City: Manchester
- Accuracy: ±500 km (multi-signal inference)
- Network Role: Firewalled / No Services (no open ports, no TLS/HTTP services)
- Ownership:
- ASN: 211298
- RIR: RIPE
- Abuse Contact: Available via RDAP
---
**2. Threat & Abuse Indicators**
- Threat Status: No malicious indicators (no blacklists, campaigns, or spam sources).
- Subnet Abuse Density: 34.68% (mixed risk, 60 threat siblings in /24 subnet).
- DNS Associations: Linked to `r4-176-b0.monitoring.internet-measurement.com` (valid DNSSEC, SPF/DKIM configured).
---
**3. Temporal Observations (30-Day History)**
- Geolocation Stability: Inconsistent (e.g., inferred as Manchester, London).
- Ownership Changes: No recent shifts.
- Threat Persistence: No observed malicious activity over time.
---
**4. Network Relationships**
- Shared Subnet: `185.247.137.0/24` (173 total IPs, 42 active; 60 flagged as threat siblings).
- Connected Entities:
- Network: `UK-DRIFTNET-20180301` (Driftnet Hostmaster)
- DNS Hostname: `r4-176-b0.monitoring.internet-measurement.com`
---
**5. Actionable Insights**
- Monitor Subnet: The /24 subnet has moderate abuse density (34.68%). Investigate neighboring IPs with medium/high risk scores (e.g., 185.247.137.4, 185.247.137.6).
- Verify DNS: Confirm the DNS hostname `r4-176-b0.monitoring.internet-measurement.com` is legitimate, as it is the only known association.
- Geolocation Discrepancy: The IPβs geolocation varies between Manchester and London. Verify if this is intentional or indicative of spoofing.
---
Conclusion:
The IP 185.247.137.176 is low-risk but resides in a subnet with mixed threat activity. While no direct malicious indicators exist, the networkβs abuse density suggests ongoing monitoring is warranted. Focus on the associated DNS hostname and subnet neighbors for further analysis.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Driftnet Hostmaster |
| ASN | AS211298 |
| Network Name | β |
| CIDR Block | β |
| RIR | RIPE |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | r4-176-b0.monitoring.internet-measurement.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | r4-176-b0.monitoring.internet-measurement.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 35% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 31% | 2 | 2 |
| Overall | 23% | 9 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-12 21:54:32 UTC |
| Last Seen | 2026-06-06 15:10:14 UTC |
| Profile Built | 2026-06-06 15:17:10 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 18 |
Full dossier details are available via our API.