62.138.24.40

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 62.138.24.40/32

Classification: Web Server Infrastructure | Risk Level: Low (Score: 25/100) | Date: 2026-06-23

## Executive Summary

IP 62.138.24.40 operates as a web server infrastructure node in Strasbourg, France (DE), under ASN 29066 (FGK-MNT). The IP exhibits low-risk characteristics with a risk score of 25, though it maintains a single DNSBL listing across 8 evaluated lists. Network positioning indicates deployment within a residential or hosting environment, with minimal threat activity observed in the immediate /24 neighborhood.

## Infrastructure Profile

Organization: FGK-MNT (ASN 29066)
Geolocation: Strasbourg, Grand Est, France (DE)
Network Block: 62.138.24.0/24
Service Role: Web Server
DNS PTR: holden1128.startdedicated.net
Forwarded Domain: startdedicated.net
HTTP Fingerprint: nginx/1.24.0 (Ubuntu)
TLS Certificate: Let's Encrypt (CN=meet.aberger.at)
Ports: 22/SSH (OpenSSH_9.6p1 Ubuntu), 443/HTTPS

## Threat Indicators

Risk Score: 25 (Low Risk)
DNSBL Listings: 1 of 8 evaluated lists
Blacklist Count: 0
Tor Exit Node: No
Known Attacker: No
Spam Source: No
Campaign Association: None detected

## Historical Observations

Analysis of 30 historical observations reveals consistent infrastructure signals. The IP maintains stable DNS configuration with SPF and DMARC records active for associated domains. Recent observations confirm continued operation as a legitimate web server with nginx serving HTTPS traffic. No significant threat indicators emerged in the observation history, with threat persistence rated at 0 days.

## Neighborhood Assessment

The 62.138.24.0/24 subnet demonstrates minimal abuse activity:

Abuse Density: 0.5
Classification: Mostly Clean
Active Siblings: 1 of 2 total
Threat Siblings: 1
Inherited Risk: 2
Neighboring IP: 62.138.24.205 (Risk Score: 25)

## Relationship Graph

The IP exhibits 33 documented relationships, primarily centered on network associations (DE-VELIANET1-20000919) and DNS associations with holden1128.startdedicated.net. No malicious or suspicious relationships identified.

## Recommended Actions

Current analysis indicates no immediate action required. The IP presents a low-risk profile consistent with legitimate web hosting infrastructure. Standard monitoring is recommended. Firewall rules are not advised based on current risk assessment, though organizations should verify against internal threat intelligence before allowing or blocking.

---

*Data Source: IPDebrief Intelligence Platform | Classification: Defensive Security Analysis*

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇩🇪 Germany
Region	Grand Est
City	Strasbourg
Timezone	Europe/Berlin
Latitude	51.17
Longitude	10.45

🏢 Ownership & Registration

Organization	FGK-MNT
ASN	AS29066
Network Name	—
CIDR Block	62.138.24.0/24
RIR	RIPE
Country	—
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR	holden1128.startdedicated.net
Forward Confirmed	Yes — FCrDNS verified
Forward Hostnames	`holden1128.startdedicated.net`

🔐 DNS Hygiene

Hygiene Score	80% (Excellent)
SPF	1/2 domains
DMARC	1/2 domains
FCrDNS	Verified
DNSSEC	Valid
CAA	Not configured
Domains Checked	2 domains

☁️ Network Classification

Infrastructure	Unknown
Service Purpose	Web Server
Network Tier	Tier 3 — Basic operator with some routing infrastructure

No specific classification

🔌 Services & Open Ports

Port	Service	Protocol	Banner
443	https	tcp	—
22	ssh	tcp	SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16
Closed Ports	25, 80, 3389, 8080, 8443 (2 open / 7 scanned)

Server	nginx/1.24.0 (Ubuntu)
HTTP Title	—
SSH Version	SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16

🔐 TLS Certificate

An expired certificate for CN=meet.aberger.at was found on this IP. This may indicate a previously hosted website, a decommissioned service, or stale infrastructure.

🔒

CN=meet.aberger.at

Issued by CN=E8, O=Let's Encrypt, C=US

Self-signed: No

SANs	meet.aberger.at
Valid From	2026-02-26T16:40:45+00:00
Valid Until	2026-05-27T16:40:44+00:00 (expired)
TLS Protocol	Tls13
Cipher Suite	TLS_AES_256_GCM_SHA384
Signature Algorithm	sha384ECDSA
Validity Period	89 days
Serial Number	06A33A8933AE47C2287553F40E858AC31963
Thumbprint	6D1BE9D2E66575851F492EB43BBE62C85CDDD134

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	27%	2	4
routing	32%	2	3
services	37%	2	5
ownership	29%	3	4
reputation	24%	1	3
geolocation	21%	2	2
Overall	28%	12	21

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (70%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-07 23:04:31 UTC
Last Seen	2026-06-23 19:34:06 UTC
Profile Built	2026-06-23 19:40:25 UTC
Data Freshness	Live
Signal Types	24
Total Observations	27

🔍 24 signal types · 27 observations collected

This report is generated from 24+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

62.138.24.40📋 Copy