207.180.241.246
# IP INTELLIGENCE BRIEFING
Target: 207.180.241.246/32
Classification: Low Risk โ Cloud Infrastructure
Date: 2026-06-23
Analyst: IPDebrief Intelligence Platform
---
## EXECUTIVE SUMMARY
IP address 207.180.241.246 operates as a Contabo cloud computing infrastructure endpoint with a low risk profile (Score: 25/100). Analysis indicates legitimate hosting infrastructure with no active threat indicators, no open services, and a clean neighborhood classification. No blocking or firewall recommendations required at this time.
---
## INFRASTRUCTURE PROFILE
Ownership & Routing:
- ASN: 51167 (Contabo, RIPE NCC)
- ASN Age: 5,852 days (allocated since June 2010)
- Origin BGP Prefix: 207.180.240.0/23
- Route Stability: Stable (no changes in past 30 days)
- RPKI State: Valid delegation
Geolocation:
- Country: Germany (DE)
- Region: Grand Est
- City: Lauterbourg
- Accuracy Radius: 400 km
- Timezone: Europe/Berlin
Network Role:
- Infrastructure Type: Cloud Compute
- Provider: Contabo
- Classification: Cloud Hosting / VPS
---
## THREAT ASSESSMENT
Risk Indicators:
- Risk Score: 25 (Low Risk)
- Abuse Confidence Score: Not applicable (no active threats)
- Blacklist Count: 0
- DNSBL Listed: 1 of 8 total lists
- Known Attacker: No
- Spam Source: No
- Tor Exit Node: No
Service Analysis:
- Open Ports: None detected
- TLS Certificate: None
- HTTP Banner: None
- Classification: Firewalled / No Services
DNS Resolution:
- PTR Record: vmi3206954.contaboserver.net
- Forward Hostnames: vmi3206954.contaboserver.net
- Status: Forward confirmed
- Domain: contaboserver.net
---
## NEIGHBORHOOD ANALYSIS
Subnet: 207.180.241.0/24
- Abuse Density: 0%
- Classification: Clean
- Active Threat Siblings: 0
- Total Sibling IPs: 1
The /24 subnet shows no abuse indicators, with the target IP classified as clean with no inherited risk from neighboring addresses.
---
## OBSERVATION HISTORY
Signal Count: 27 observations tracked
Recent Activity (2026-06-23):
- DNS resolution to contaboserver.net hostnames confirmed
- ASN information consistent (51167, allocated since 2010)
- Operator score: 0.2174 (Minimal risk)
- Threat observation count: 1 (non-persistent)
Temporal Indicators:
- Ownership changes: 0
- Threat persistence: Not persistent
- Overall: Stable infrastructure with consistent characteristics
---
## RELATIONSHIP MAPPING
Network Associations: 40 relationships identified
- Primary: CONTABO network associations
- DNS: contaboserver.net hostname mappings
- Multiple Same Network: CONTABO infrastructure links
All relationships indicate legitimate cloud hosting infrastructure with no anomalous connections to malicious entities.
---
## RECOMMENDED ACTIONS
Current Risk Level: LOW
Action Required: None
Firewall Policy: No blocking recommended based on current risk profile (Score: 25). Standard allow policies may be applied pending additional context.
Monitoring: Continue standard monitoring. No escalation required.
---
## CONCLUSION
IP 207.180.241.246 represents legitimate Contabo cloud infrastructure with no malicious activity detected. The IP resolves to a standard VPS instance (vmi3206954.contaboserver.net) with no active services exposed. The subnet shows clean classification with zero abuse density. No defensive actions or blocking are warranted at this time.
Status: Cleared for normal traffic processing.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Johannes Selg |
| ASN | AS51167 |
| Network Name | โ |
| CIDR Block | 207.180.240.0/23 |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | vmi3206954.contaboserver.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | vmi3383498.contaboserver.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | 0/2 domains |
| DMARC | 0/2 domains |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
| Domains Checked | 2 domains |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 22 | ssh | tcp | |
| Closed Ports | 25, 3389, 8080, 8443 (3 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_9.9 |
๐ TLS Certificate
| SANs | ns8regenesis.agoffice.cloud |
| Valid From | 2026-06-19T10:29:45+00:00 |
| Valid Until | 2026-09-17T10:29:44+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_128_GCM_SHA256 |
| Signature Algorithm | sha256RSA |
| Validity Period | 89 days |
| Serial Number | 05A20B13866EF6749F82ACE5D3A638A100E8 |
| Thumbprint | D87FDE887E97B6B8919B7E89A21451249035C142 |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 31% | 2 | 4 |
| routing | 33% | 2 | 3 |
| services | 33% | 2 | 4 |
| ownership | 35% | 3 | 5 |
| reputation | 28% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 31% | 12 | 21 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-07 23:04:10 UTC |
| Last Seen | 2026-06-27 04:05:17 UTC |
| Profile Built | 2026-06-27 22:12:04 UTC |
| Data Freshness | Live |
| Signal Types | 26 |
| Total Observations | 33 |
Full dossier details are available via our API.