IPDebrief

45.67.217.1

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON πŸ”§ Full Actions API
πŸ€– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing: 45.67.217.1

*Last Updated: 2026-06-14*

---

**Core Profile**

- HTTP/HTTPS (ports 80/443) with Nginx 1.24.0.

- SSH (port 22) with OpenSSH 9.6.

- Valid TLS certificate (Let’s Encrypt) for magaziner.md.

---

**Threat Indicators**

---

**Observation History**

- DNS resolution for magaziner.md and contaboserver.net (June 14, 2026).

- Network classification as "mostly_clean" with stable infrastructure.

---

**Relationships**

---

**Recommendations**

1. Monitor Subnet: Track neighbor IP 45.67.217.113 for potential lateral movement.

2. Validate DNS: Confirm ownership of contaboserver.net to ensure no spoofing.

3. SSL/TLS: Verify Let’s Encrypt certificate validity for magaziner.md.

4. Network Segmentation: Isolate cloud instances to limit potential exposure.

---

Conclusion: This IP is associated with a legitimate Contabo cloud server, showing no immediate malicious behavior. However, its subnet contains a sibling IP with similar risk scores, warranting further investigation. Standard security practices should be applied to ensure DNS and network integrity.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

CountryπŸ‡©πŸ‡ͺ Germany
RegionGrand Est
CityLauterbourg
TimezoneEurope/Berlin
Latitude51.17
Longitude10.45

🏒 Ownership & Registration

OrganizationJohannes Selg
ASNAS51167
Network Nameβ€”
CIDR Blockβ€”
RIRARIN
Countryβ€”
Abuse ContactAvailable via RDAP

🌐 DNS Intelligence

PTRvmi3294390.contaboserver.net
Forward ConfirmedYes β€” FCrDNS verified
Forward Hostnamesvmi3294390.contaboserver.net

πŸ” DNS Hygiene

Hygiene Score40% (Fair)
SPFNot configured
DMARCNot configured
FCrDNSVerified
DNSSECValid
CAANot configured

☁️ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeWeb Server
Network TierHosting β€” Infrastructure provider without advanced routing
CloudHosting

πŸ”Œ Services & Open Ports

PortServiceProtocolBanner
80httptcpβ€”
443httpstcpβ€”
22sshtcp
Closed Ports25, 3389, 8080, 8443 (3 open / 7 scanned)
Servernginx/1.24.0 (Ubuntu)
HTTP Titleβ€”
SSH VersionSSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16

πŸ” TLS Certificate

πŸ”’
CN=magaziner.md
Issued by CN=E8, O=Let's Encrypt, C=US
Self-signed: No
SANsmagaziner.mdwww.magaziner.md
Valid From2026-05-14T15:52:58+00:00
Valid Until2026-08-12T15:52:57+00:00
TLS ProtocolTls13
Cipher SuiteTLS_AES_256_GCM_SHA384
Signature Algorithmsha384ECDSA
Validity Period89 days
Serial Number069C5FEAC7C1ABF45231F0E79311E20F9834
ThumbprintE6A75F8A485BD5C69A91634FDDF5902DC09CA582

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
25%
24
routing
13%
11
services
25%
23
ownership
24%
23
reputation
30%
13
geolocation
31%
23
Overall25%1017
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

πŸ“… Observation Timeline πŸ”„ Live

First Seen2026-05-13 19:05:21 UTC
Last Seen2026-06-27 23:52:52 UTC
Profile Built2026-06-28 23:58:00 UTC
Data FreshnessLive
Signal Types23
Total Observations28
πŸ” 23 signal types Β· 28 observations collected
This report is generated from 23+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API πŸ”§ Actions API πŸ“§ Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata β€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.