91.3.62.157
IP Intelligence Briefing: 91.3.62.157/32
*Generated via IPDebrief Analysis*
---
**Key Risk Indicators**
- Risk Score: 25 (Low Risk)
- Threat Observations: No malicious indicators, spam, or known attacker associations detected.
- Network Stability: Stable ownership (Deutsche Telekom AG, AS3320) with no recent changes.
- Geolocation: Germany (North Rhine-Westphalia, Arnsberg), LTE/5G mobile connection.
---
**Ownership & Infrastructure**
- Registrar: DTAG-NIC (Deutsche Telekom AG)
- ASN: AS3320 | Subnet: 91.0.0.0/10
- Mobile Carrier: Deutsche Telekom (MCC 262, MNC 01)
- Network Role: Mobile LTE/5G connection, no cloud/CDN/VPN infrastructure.
---
**Threat & Behavior Analysis**
- DNS: Resolves to `p5b033e9d.dip0.t-ipconnect.de` (no email auth records).
- Services: No open ports or TLS certificates detected.
- History:
- Observed in June 2026 with low-risk geolocation and no threats.
- Subnet abuse density classified as "mostly_clean" (1/20 IPs flagged).
- Relationships:
- Linked to `DTAG-DIAL22` network and DNS hostname `t-ipconnect.de`.
- No known malicious campaigns or certificate matches.
---
**Network Neighborhood**
- Subnet: 91.3.62.157/24
- Abuse Density: 0% (no risky neighbors detected).
- Active Siblings: 0 | Threat Siblings: 1 (isolated low-risk anomaly).
---
**SOC Recommendations**
1. Monitor: Track for unexpected DNS changes or new service exposure.
2. Verify: Confirm mobile carrier compliance with Deutsche Telekomβs security policies.
3. Baseline: Use historical data to detect anomalies in geolocation or traffic patterns.
4. Isolate: Consider segmenting mobile traffic if high-risk subnets are detected nearby.
---
*No immediate action required. Maintain standard monitoring protocols for this low-risk mobile IP.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | DTAG-NIC |
| ASN | AS3320 |
| Network Name | DTAG-DIAL22 |
| CIDR Block | 91.0.0.0/12 |
| RIR | RIPE |
| Country | DE |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | p5b033e9d.dip0.t-ipconnect.de |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | p5b033e9d.dip0.t-ipconnect.de |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 3 |
| routing | 25% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 19% | 2 | 2 |
| Overall | 22% | 9 | 13 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-13 12:13:59 UTC |
| Last Seen | 2026-06-06 22:09:47 UTC |
| Profile Built | 2026-06-06 22:39:08 UTC |
| Data Freshness | Live |
| Signal Types | 20 |
| Total Observations | 21 |
Full dossier details are available via our API.