185.207.250.100
IP Intelligence Briefing: 185.207.250.100
*Generated via IPDebrief tools: Profile, History, Relationships, & Neighbors*
---
**1. IP Profile**
- Risk Score: 25 (Low Risk)
- Provider: Contabo (CloudCompute infrastructure)
- Ownership: Registered to Johannes Selg (ASN 51167, RIPE)
- Geolocation: Lauterbourg, Grand Est, Germany (51.17°N, 10.45°E)
- Network Role: Cloud-hosted virtual server (no residential/mobile indicators)
- Threat Indicators: No malicious activity detected; no known campaigns, spam, or abuse.
- DNS: Resolves to `vmi3047135.contaboserver.net` (no email auth records).
- Services: No open ports or TLS certificates detected.
---
**2. Observation History**
- Recent Signals (30d):
- Confirmed geolocation in Germany (400km accuracy radius).
- Consistent network role as a Contabo CloudCompute instance.
- One conflicting signal (Los Angeles, US) likely a misattribution or error.
- No escalation in risk or threat indicators.
---
**3. Relationships**
- DNS Associations:
- Linked to `vmi3047135.contaboserver.net` (repeated across 10+ relationships).
- Network Connections:
- Part of subnet `185.207.250.0/24` (no other IPs identified in neighbors).
- No known malicious relationships or shared threats.
---
**4. Neighborhood Analysis**
- Subnet: `185.207.250.0/24`
- Abuse Density: 0% (clean classification).
- Neighbors: No sibling IPs detected (zero neighbors returned).
---
**5. Key Findings & Recommendations**
- Legitimacy: Likely a legitimate Contabo-hosted server with no malicious activity.
- Anomalies:
- Conflicting geolocation data (Germany vs. Los Angeles).
- Zero neighbors in the subnet (possible data gap or isolated instance).
- SOC Actions:
- Monitor for unexpected DNS changes or new service exposure.
- Validate geolocation accuracy and ensure no misconfigured cloud instances.
- No immediate mitigation required due to low risk profile.
Conclusion: 185.207.250.100 is a clean, cloud-hosted IP with no threat indicators. Investigate anomalies for data accuracy, but no actionable risks identified.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Johannes Selg |
| ASN | AS51167 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | vmi3047135.contaboserver.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | vmi3341169.contaboserver.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 20% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 20% | 2 | 3 |
| ownership | 20% | 2 | 3 |
| reputation | 18% | 1 | 2 |
| geolocation | 39% | 2 | 3 |
| Overall | 22% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-19 15:38:17 UTC |
| Last Seen | 2026-06-28 09:06:43 UTC |
| Profile Built | 2026-06-29 03:11:38 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 25 |
Full dossier details are available via our API.