IP Intelligence Briefing: 91.249.93.208
Date: 2026-06-10
---
**1. Core Profile**
- Risk Score: Moderate (50/100)
- Ownership:
- ASN: 9145 (EWE TEL Hostmaster)
- Location: Germany (Lower Saxony, Uplengen)
- Network: `EWETEL-DYNDSL-POOL22` (Dynamic DSL pool)
- Geolocation:
- Latitude: 53.3, Longitude: 7.75 (Berlin time zone)
- Plausibility: Low confidence (accuracy radius unspecified)
- Threat Indicators:
- No malicious activity detected (no blacklists, spam, or campaigns).
- DNS: Resolves to `dyndsl-091-249-093-208.ewe-ip-backbone.de` (no abuse reports).
---
**2. Network Behavior**
- Services:
- No open ports or TLS services detected.
- Firewalled / no active services (likely a server or protected host).
- BGP:
- Prefix: `91.248.0.0/15` (assigned to EWE TEL GmbH, Germany).
- Route Stability: Unstable (route changes in last 30 days).
- DNSSEC: Validated.
---
**3. Observation History**
- Recent Activity (Last 7 Days):
- 18 observations, with low confidence in geolocation (0.52).
- No persistent threats or malicious campaigns.
- DNS Listings: 1 high-severity listing (confidence 0.85), but no actionable indicators.
---
**4. Relationships**
- DNS Associations:
- Repeatedly resolves to `dyndsl-091-249-093-208.ewe-ip-backbone.de` (no abuse reports).
- Network:
- Part of `EWETEL-DYNDSL-POOL22` (dynamic DSL pool).
- No linked subnets or organizations.
---
**5. Neighborhood Analysis**
- Subnet: `91.249.93.208/24`
- Neighbor Risk:
- 0 active neighbors detected.
- Subnet abuse density: 0% (low risk).
---
**6. Recommendations**
- Monitoring:
- Track geolocation accuracy improvements (current confidence is low).
- Monitor DNS records for unexpected changes.
- Security Actions:
- No immediate mitigation required; no malicious indicators.
- Consider firewall rules to block traffic to this IP if itβs not a trusted source.
Conclusion:
The IP exhibits no active malicious behavior. It is part of a legitimate network (EWE TEL) with no abuse reports. However, low geolocation confidence and lack of network diversity suggest further verification may be needed. No urgent action required.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | EWE TEL Hostmaster |
| ASN | AS9145 |
| Network Name | EWETEL-DYNDSL-POOL22 |
| CIDR Block | 91.248.185.0/24 |
| RIR | RIPE |
| Country | DE |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | dyndsl-091-249-093-208.ewe-ip-backbone.de |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | dyndsl-091-249-093-208.ewe-ip-backbone.de |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Unknown |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 30% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 14% | 6 | 7 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-24 12:36:02 UTC |
| Last Seen | 2026-06-10 16:35:25 UTC |
| Profile Built | 2026-06-10 16:42:03 UTC |
| Data Freshness | Live |
| Signal Types | 19 |
| Total Observations | 20 |
Full dossier details are available via our API.