86.48.3.84
IP Intelligence Briefing: 86.48.3.84
*Generated via IPDebrief Threat Intelligence Platform*
---
**1. Risk Profile**
- Overall Risk Score: 25 (Low Risk)
- Provider Score: 0 (No provider-specific risk detected)
- Authority Score: 0 (No authoritative threat indicators)
- Stability: Unstable (route stability score: 0.26)
- Threat Indicators: No malicious activity detected (no indicators, blacklists, or campaigns).
---
**2. Geolocation & Ownership**
- Location: Lauterbourg, Grand Est, Germany (51.17°N, 10.45°E)
- ASN: 51167 (Johannes Selg, Contabo)
- Network Type: CloudCompute (Contabo infrastructure)
- Hosting Provider: Contabo (cloud hosting, no residential/mobile origin).
---
**3. Network Role**
- Subnet: 86.48.3.84/24
- Services: No open ports or TLS certificates detected.
- Routing: BGP prefix 86.48.0.0/22, route stability score: 0.26 (unstable).
- DNS: Resolves to `vmi3086390.contaboserver.net` (no email auth records).
---
**4. Threat & Observation History**
- Recent Signals:
- 22 observations over 30 days (last updated 2026-06-08).
- No significant risk changes; consistent low-risk profile.
- One DNSBL listing (1/8 total lists) detected in 2026-06-08.
- Validation: ICMP blocked, geolocation inferred via DNS (401.9 km from probe).
---
**5. Relationships & Subnet Context**
- Linked Entities:
- Same network: 39 entries (likely subnet or network identifier "TT-20220721").
- Subnet Analysis:
- 86.48.3.84/24: 0 active neighbors, abuse density: 0 (clean).
- No malicious siblings or high-risk IPs in the subnet.
---
**6. Recommendations**
- Monitor: Track route stability and DNSBL status for anomalies.
- Firewall: Allow traffic based on Contaboβs cloud infrastructure profile (no blocking needed).
- Validation: Verify geolocation via alternative methods due to ICMP blocking.
---
Conclusion: 86.48.3.84 is a low-risk cloud server hosted by Contabo, with no malicious indicators. Its stable infrastructure and clean subnet suggest legitimate use, though further validation of geolocation is advised. No immediate threat to SOC operations.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Johannes Selg |
| ASN | AS51167 |
| Network Name | β |
| CIDR Block | β |
| RIR | RIPE |
| Country | β |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | vmi3086390.contaboserver.net |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | vmi3086390.contaboserver.net |
π DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 30% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 24% | 2 | 3 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 25% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-17 15:14:03 UTC |
| Last Seen | 2026-06-28 05:36:02 UTC |
| Profile Built | 2026-06-28 23:39:33 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 28 |
Full dossier details are available via our API.