213.199.43.136
IP Intelligence Briefing: 213.199.43.136
*Generated via IPDebrief tools (profile, history, relationships, neighbors)*
---
**Core Profile**
- Risk Rating: Low Risk (25/100)
- Ownership: Registered to Johannes Selg (ASN 51167, Contabo)
- Geolocation: Munich, Germany (51.17°N, 10.45°E) | Country: DE | ISP: Contabo
- Network Role: CloudCompute infrastructure (hosted by Contabo, no residential/mobile flags)
- Threat Indicators: No malicious campaigns, blacklists, or DNSBL listings detected
---
**Observation History**
- Recent Activity:
- Geolocation inferred as France (Lauterbourg) on 2026-06-11, conflicting with primary Germany location.
- DNSBL listing detected (1/8 total lists) on 2026-06-11.
- No persistent threat signals; zero malicious observation counts.
---
**Relationships & Network**
- DNS Associations: Linked to vmi3313186.contaboserver.net (multiple entries).
- Subnet: Part of TT-20240306 (213.199.32.0/20) with no abuse density.
- Provider: Contabo (cloud hosting, no CDN/VPN/Tor flags).
---
**Neighbor Analysis**
- Subnet (213.199.43.136/24): 0 active neighbors identified; subnet classified as clean.
---
**Actionable Insights**
1. Monitor Geolocation Discrepancies: The conflicting France/Germany location may indicate misconfiguration or probing.
2. Verify DNSBL Listing: Investigate the 1/8 DNSBL hit to confirm legitimacy (e.g., false positive or low-risk spam).
3. Validate Hosting Provider: Ensure Contaboβs security practices align with your organizational standards.
4. Maintain Watchlist: No immediate action required, but continue monitoring for behavioral changes.
---
*No critical threats detected. This IP appears to be a legitimate cloud-hosted server with no malicious activity.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Johannes Selg |
| ASN | AS51167 |
| Network Name | TT-20240306 |
| CIDR Block | 213.199.32.0/20 |
| RIR | RIPE |
| Country | DE |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | vmi3313186.contaboserver.net |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | vmi3313186.contaboserver.net |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16 |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 27% | 2 | 3 |
| Overall | 21% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-27 19:22:23 UTC |
| Last Seen | 2026-06-29 04:39:37 UTC |
| Profile Built | 2026-06-29 04:44:15 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 24 |
Full dossier details are available via our API.