91.14.146.72
IP Intelligence Briefing: 91.14.146.72
Date: 2026-06-11
---
**1. Core Profile**
- Risk Score: 25 (Low Risk)
- Provider: DTAG-NIC (German ISP, ASN 3320)
- Geolocation:
- Primary: US-NY (New York, USA)
- Secondary Inferred: Germany (latitude 51.17, longitude 10.45)
- Network Role: Mobile broadband (Deutsche Telekom, LTE/5G)
- DNS:
- PTR hostname: `p5b0e9248.dip0.t-ipconnect.de`
- TIPConnect.de (German ISP)
---
**2. Threat Indicators**
- No malicious activity detected:
- No blacklists, known attackers, or spam sources.
- Zero threat feeds or campaigns linked.
- DNSSEC Valid: No CAA records detected.
---
**3. Observation History**
- Geolocation Discrepancy:
- Conflicting geolocation data (US vs. Germany).
- Inferred Germany location via multi-signal analysis (accuracy ~400km).
- Stability:
- BGP route stability: Unstable (route changes in last 30 days).
- No persistent malicious activity.
---
**4. Network Relationships**
- DNS Associations:
- Repeated links to `p5b0e9248.dip0.t-ipconnect.de` (likely a single host).
- Network Subnet:
- Part of DTAG's `DTAG-DIAL22` network (`91.0.0.0/12`).
- No neighboring IPs in the subnet (abuse density: 0%).
---
**5. Recommendations**
- Monitor Geolocation Anomalies: Investigate the conflicting location data.
- Check DNS Hostname Activity: Validate `p5b0e9248.dip0.t-ipconnect.de` for malicious ties.
- Network Segmentation: Ensure isolation of mobile IPs to prevent lateral movement.
- BGP Stability: Monitor route stability for potential network disruptions.
---
Conclusion:
91.14.146.72 is a low-risk mobile IP registered to a German ISP but geolocated in the US. No direct threats detected, but conflicting geolocation data and unstable BGP routes warrant further investigation. Use DNS and network monitoring tools to validate its legitimacy and detect anomalies.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | DTAG-NIC |
| ASN | AS3320 |
| Network Name | DTAG-DIAL22 |
| CIDR Block | 91.0.0.0/12 |
| RIR | RIPE |
| Country | DE |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | p5b0e9248.dip0.t-ipconnect.de |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | p5b0e9248.dip0.t-ipconnect.de |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 13% | 6 | 7 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-28 00:17:12 UTC |
| Last Seen | 2026-06-11 13:49:54 UTC |
| Profile Built | 2026-06-11 14:23:49 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 23 |
Full dossier details are available via our API.