75.119.151.69
# INTELLIGENCE BRIEFING: 75.119.151.69/32
Classification: LOW RISK
Date Generated: 2026-06-19
Analyst: IPDebrief SOC Intelligence Team
## EXECUTIVE SUMMARY
IP 75.119.151.69 is classified as LOW RISK with a risk score of 25. The address operates within a Contabo cloud infrastructure environment in Düsseldorf, Germany. No active threat indicators, campaign associations, or malicious behavior were detected during comprehensive analysis. The IP is currently not listed on major threat feeds or blacklists.
---
## TECHNICAL PROFILE
Network Assignment:
- ASN: 51167 (Contabo)
- Organization: Johannes Selg
- Geolocation: Düsseldorf, Germany (51.17°N, 10.45°E)
- Infrastructure Type: CloudCompute/Hosting
- BGP Prefix: 75.119.128.0/19
- RPKI State: Valid
DNS Resolution:
- PTR Hostname: vm3240714.contaboserver.net
- Forward Resolution: vm3240714.contaboserver.net
- Status: Forward/Reverse confirmed
Service Exposure:
- Open Ports: None detected
- HTTP/TLS Services: None active
- Network Role: Firewalled / No Services
---
## THREAT ASSESSMENT
Risk Score: 25/100 (Low)
Abuse Confidence: Not applicable (no malicious activity detected)
Blacklist Status: Clean (0/8 DNSBL lists)
Known Campaigns: None identified
Threat Indicators:
- Not a Tor exit node
- Not a known attacker
- Not a spam source
- No observed malicious scans or exploitation attempts
Temporal Analysis:
- Threat observation count: 1
- Is persistently malicious: False
- No ownership changes recorded
---
## NETWORK RELATIONSHIPS
Associated Entities (52 total):
- Network Associations: Multiple CONTABO network references
- DNS Associations: contaboserver.net hostname family
- Subnet Classification: 75.119.151.69/24
Neighborhood Analysis (75.119.151.0/24):
- Abuse Density: 0
- Subnet Classification: Mostly clean
- Total siblings: 1
- Active siblings: 1
- Threat siblings: 1
Route Stability:
- Route changes (30d): 0
- BGP stability: Stable
- Operator score: 0.5652 (Moderate)
---
## OBSERVATION HISTORY
Total Observations: 29
Recent Signal Activity (2026-06-19):
- Operator Score: 0.6957 (Moderate confidence)
- DNS Resolution: Confirmed (90% confidence)
- Hostname Association: vm3373963.contaboserver.net (95% confidence)
- Geolocation: Germany, Düsseldorf (52% confidence, 400km accuracy)
Historical Trends:
- No significant changes in ownership or threat posture
- Consistent geolocation data
- Stable DNS configuration
---
## SECURITY RECOMMENDATIONS
Risk-Based Actions: None required at this time.
Monitoring Guidelines:
- Continue standard passive monitoring
- No immediate blocking or firewall rules recommended
- Monitor for any changes in service exposure or reputation shifts
Contextual Considerations:
- IP operates in a cloud hosting environment with standard Contabo infrastructure
- No evidence of abuse or malicious activity
- Low-risk profile suggests legitimate cloud service usage
---
## CONCLUSION
IP 75.119.151.69 presents a low-risk threat profile with no active indicators of malicious activity. The address is associated with Contabo cloud infrastructure in Germany and maintains stable network characteristics. SOC teams may treat this IP as benign for current operational purposes, though standard monitoring practices should continue.
Status: CLEAR FOR MONITORING
---
*Intelligence generated via IPDebrief platform. Data accuracy subject to validation limitations.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Johannes Selg |
| ASN | AS51167 |
| Network Name | โ |
| CIDR Block | 75.119.128.0/19 |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | vmi3240714.contaboserver.net |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | vmi3373963.contaboserver.net |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | 0/2 domains |
| DMARC | 0/2 domains |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
| Domains Checked | 2 domains |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Tier 2 โ Moderate operator sophistication with routing hygiene |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 22 | ssh | tcp | |
| 8080 | http-alt | tcp | โ |
| Closed Ports | 25, 3389, 8443 (4 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
| SSH Version | SSH-2.0-XJVPN_JuanScript |
๐ TLS Certificate
| SANs | kqbmh.luckyvipproxy.com |
| Valid From | 2026-06-17T01:48:39+00:00 |
| Valid Until | 2026-09-15T01:48:38+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_128_GCM_SHA256 |
| Signature Algorithm | sha384ECDSA |
| Validity Period | 89 days |
| Serial Number | 0525C5F8AB1080245AB38A501ADBCDBDF275 |
| Thumbprint | EB24F42D7C454DB0251E2257FC72E555CF97EACA |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 22% | 2 | 4 |
| routing | 22% | 3 | 4 |
| services | 28% | 2 | 4 |
| ownership | 24% | 3 | 4 |
| reputation | 26% | 1 | 3 |
| geolocation | 31% | 2 | 3 |
| Overall | 25% | 13 | 22 |
| Data Coherence | Consistent (100%) |
| Attribution | High (85%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-09 11:34:16 UTC |
| Last Seen | 2026-06-27 15:51:19 UTC |
| Profile Built | 2026-06-28 09:56:40 UTC |
| Data Freshness | Live |
| Signal Types | 29 |
| Total Observations | 36 |
Full dossier details are available via our API.