62.171.132.59
# IP Intelligence Briefing: 62.171.132.59
## Executive Summary
IP 62.171.132.59 presents a low-risk profile (risk score: 25) associated with Contabo cloud infrastructure in Frankfurt, Germany. The IP is classified as hosting infrastructure with no active threat indicators, blacklist associations, or campaign correlations. No immediate defensive action required.
## Infrastructure Profile
- Organization: Johannes Selg (ASN 51167)
- Provider: Contabo (CloudCompute/Hosting)
- Location: Frankfurt am Main, Hesse, Germany (DE)
- Network: 62.171.132.0/24 subnet (BGP prefix: 62.171.132.0/23)
- DNS Resolution: vmi3288552.contaboserver.net (virtual machine instance)
- Service Status: Firewalled / No Services detected
## Threat Assessment
- Risk Score: 25 (Low Risk)
- Abuse Confidence: Not elevated
- Blacklist Status: 0/8 DNSBL lists (1 minor listing detected)
- Known Campaigns: None
- Threat Classifications: Not a Tor exit, VPN, proxy, or residential endpoint
- Reputation Sources: No elevated threat signals
## Neighborhood Analysis
- Subnet: 62.171.132.0/24
- Abuse Density: 0 (Clean)
- Active Siblings: 2 total
- Threat Siblings: 0
- Notable Neighbor: 62.171.132.242 (risk score: 40, medium risk)
## Historical Observations
Signal history from June 2026 shows consistent classification as cloud infrastructure. No significant changes in geolocation, DNS, threat indicators, or scan patterns observed. IP demonstrates stable operational characteristics within Contabo hosting environment.
## Security Recommendations
No immediate firewall rules or blocking actions recommended. The IP maintains a clean operational profile with no threat indicators requiring defensive intervention. Standard cloud hosting traffic monitoring applies.
## Intelligence Notes
This IP represents legitimate cloud hosting infrastructure. The single DNSBL listing warrants periodic monitoring but does not indicate active malicious behavior. SOC analysts should treat this IP as benign unless new threat signals emerge.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Johannes Selg |
| ASN | AS51167 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | vmi3288552.contaboserver.net |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | vmi3288552.contaboserver.net |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 22% | 1 | 2 |
| geolocation | 39% | 2 | 3 |
| Overall | 23% | 10 | 14 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-15 14:46:40 UTC |
| Last Seen | 2026-06-28 02:36:55 UTC |
| Profile Built | 2026-06-28 20:41:15 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 25 |
Full dossier details are available via our API.