157.173.121.232
IP Intelligence Dossier
Your IP: 216.73.216.123
๐ค Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 157.173.121.232
*Generated via IPDebrief tools: Profile, History, Relationships, & Neighbors*
---
**1. Risk Assessment**
- Risk Score: 25 (Low Risk)
- Provider Score: 0 (No provider risk indicators)
- Authority Score: 0 (Not a known authoritative IP)
- Stability: Unstable (route stability score: 0.26)
- Threat Indicators: No malicious activity detected (0 indicators, 0 blacklists, 0 campaigns).
---
**2. Ownership & Geolocation**
- Owner: Johannes Selg (ASN 51167, Contabo)
- Location: Germany (DE), Grand Est region, Lauterbourg (latitude 51.17, longitude 10.45).
- Network Role: CloudCompute hosting (Contabo infrastructure).
- Subnet: 157.173.121.232/24 (clean, 0 abuse density).
---
**3. Threat & Network Activity**
- DNS: Resolves to `vmi3306208.contaboserver.net` (no email auth records).
- Services: No open ports or TLS certs detected.
- BGP: Route stability flagged as "Basic" (operator score 0.26).
- Geolocation Validation: ICMP blocked, limiting geo-validation accuracy.
---
**4. Observation History (30-Day Trend)**
- Signals: 21 observations (last 30 days).
- Key Trends:
- No persistent threats or malicious campaigns.
- Route stability fluctuated but remains low-risk.
- DNSSEC valid, no CAA records.
- ICMP Validation: Consistently blocked, preventing full network path verification.
---
**5. Relationships & Network Context**
- Connected Entities:
- DNS hostname: `vmi3306208.contaboserver.net` (repeatedly associated).
- Subnet: 157.173.112.0/20 (TT-20240614).
- Neighbors: No active siblings in /24 subnet (0 threat siblings).
---
**6. Recommendations**
- Monitoring: Track route stability and DNS resolution patterns.
- Firewall: No immediate blocking required; monitor for anomalous traffic.
- Validation: Use alternative geolocation methods due to ICMP blocking.
---
Conclusion: This IP is a low-risk cloud-hosted server with no malicious indicators. No actionable threats detected, but ongoing monitoring is advised for network stability and DNS behavior.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Johannes Selg |
| ASN | AS51167 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | vmi3306208.contaboserver.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | vmi3306208.contaboserver.net |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
No certificate
Issued by โ
N/A
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 31% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 18% | 1 | 2 |
| geolocation | 33% | 2 | 3 |
| Overall | 22% | 10 | 15 |
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-19 21:39:17 UTC |
| Last Seen | 2026-06-28 09:39:59 UTC |
| Profile Built | 2026-06-29 03:45:50 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 25 |
๐ 21 signal types ยท 25 observations collected
This report is generated from 21+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
โน๏ธ About This Report
All data shown is publicly available network metadata โ IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.