IPDebrief

157.90.191.197

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

Threat Intelligence Briefing: IP Address 157.90.191.197/32

Overview:

The IP address 157.90.191.197/32 was observed and analyzed using a suite of intelligence tools. The following summary provides a comprehensive profile, including historical observations, relationships, and neighborhood data.

Profile and Observations:

Relationships:

Neighborhood Data:

Threat Assessment:

Based on the observed data, IP 157.90.191.197/32 does not present a direct threat to security operations. The activity is consistent with legitimate business operations, and there are no indicators of compromise or malicious intent. However, continuous monitoring is recommended to ensure that any future anomalies can be detected promptly.

Recommendations for SOC Analysts:

This intelligence briefing provides a factual, data-driven overview of IP 157.90.191.197/32, suitable for informing security operations and decision-making processes.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ฉ๐Ÿ‡ช Germany
RegionBavaria
CityNuremberg
TimezoneEurope/Berlin
Latitude51.17
Longitude10.45

๐Ÿข Ownership & Registration

OrganizationHetzner Online GmbH - Contact Role
ASNAS24940
Network Nameโ€”
CIDR Block157.90.0.0/16
RIRARIN
Countryโ€”
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTRwww686.your-server.de
Forward ConfirmedYes โ€” FCrDNS verified
Forward Hostnameswww686.your-server.de

๐Ÿ” DNS Hygiene

Hygiene Score100% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAAPresent

โ˜๏ธ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeWeb Server
Network TierTier 3 โ€” Basic operator with some routing infrastructure
CloudHosting

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
80httptcpโ€”
443httpstcpโ€”
22sshtcp
Closed Ports25, 3389, 8080, 8443 (3 open / 7 scanned)
ServerHTTP Server
HTTP Titleโ€”
SSH VersionSSH-2.0-mod_sftp ???%|? ?????Q?curve448-sha512,curve25519-sha256,diffie-hellman-group-exchange-sha2

๐Ÿ” TLS Certificate

๐Ÿ”’
CN=*.your-server.de
Issued by CN=Thawte TLS RSA CA G1, OU=www.digicert.com, O=DigiCert Inc, C=US
Self-signed: No
SANs*.your-server.deyour-server.de
Valid From2025-10-10T00:00:00+00:00
Valid Until2026-11-02T23:59:59+00:00
TLS ProtocolTls13
Cipher SuiteTLS_AES_256_GCM_SHA384
Signature Algorithmsha256RSA
Validity Period388 days
Serial Number0B6BC13677DD1CF6101E67E2AEB58D11
Thumbprint2409AAE2DEB39FACC2D7A23F8A01627922A0E608

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
31%
24
routing
27%
23
services
29%
24
ownership
27%
34
reputation
31%
13
geolocation
25%
22
Overall28%1220
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-05-17 03:07:38 UTC
Last Seen2026-06-28 04:16:26 UTC
Profile Built2026-06-28 22:21:25 UTC
Data FreshnessLive
Signal Types25
Total Observations30
๐Ÿ” 25 signal types ยท 30 observations collected
This report is generated from 25+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.