IP Intelligence Briefing: 80.241.216.56
*Last Updated: 2026-06-09*
---
**Risk Profile**
- Overall Risk Score: Low (25/100)
- Threat Indicators: No malicious activity detected (no known attackers, spam, or campaigns).
- Network Classification: Cloud compute instance (Contabo), hosting a web server.
- Geolocation: Munich, Germany (DE).
---
**Key Observations**
1. Web Server Configuration:
- Hosts `server.dsinnovacion.com` with an Apache server banner.
- TLS certificate issued by Letβs Encrypt (valid for `server.dsinnovacion.com`).
- HTTP service returns a 403 status code, potentially indicating misconfiguration or access control.
2. Network Behavior:
- Subnet `80.241.216.0/24` has zero active neighbors, suggesting isolation or limited network presence.
- ICMP validation failed (blocked), impacting geo-verification accuracy.
3. Ownership & Provider:
- Registered to Johannes Selg (ASN 51167, Contabo).
- No abuse reports or DNSBL listings.
---
**Threat & Anomalies**
- No Threat Signals: No malware, phishing, or scanning activity detected.
- Stability: Low stability score (0/100) due to ICMP blockage and limited subnet activity.
- Historical Trends: No significant changes in risk or network behavior over the past 30 days.
---
**Recommendations**
1. Monitor Configuration: Investigate the 403 HTTP response to ensure legitimate access controls.
2. Network Isolation: Verify the subnet isolation (80.241.216.0/24) and ensure it aligns with expected infrastructure.
3. Geolocation Validation: Use alternative methods (e.g., TCP probes) to confirm the Munich location due to ICMP blockage.
4. Certificate Renewal: Confirm the Letβs Encrypt certificateβs validity for `server.dsinnovacion.com`.
---
Conclusion: This IP appears to be a legitimate, low-risk cloud-hosted web server. No immediate action is required, but ongoing monitoring for configuration changes or unexpected behavior is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Johannes Selg |
| ASN | AS51167 |
| Network Name | β |
| CIDR Block | β |
| RIR | RIPE |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | server.dsinnovacion.com |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | server.dsinnovacion.com |
π DNS Hygiene
| Hygiene Score | 80% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | β |
| 443 | https | tcp | β |
| Closed Ports | 22, 25, 3389, 8080, 8443 (2 open / 7 scanned) | ||
| Server | Apache |
| HTTP Title | β |
π TLS Certificate
| SANs | server.dsinnovacion.com |
| Valid From | 2026-05-22T03:55:37+00:00 |
| Valid Until | 2026-08-20T03:55:36+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha256RSA |
| Validity Period | 89 days |
| Serial Number | 05DF9992A4EF5EF1A9D7EFD3631E5C3FF9A4 |
| Thumbprint | C0B9023D849036D04C4635879925FAE9F5BD65CC |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 26% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 26% | 2 | 3 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 25% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-21 14:58:22 UTC |
| Last Seen | 2026-06-28 14:54:24 UTC |
| Profile Built | 2026-06-29 08:59:55 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 27 |
Full dossier details are available via our API.