162.55.237.115

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

IP Intelligence Briefing: 162.55.237.115

Date: 2026-06-10

---

1. Core Profile

Risk Score: Moderate (50/100)
Provider: Hetzner Online GmbH (AS24940)
Geolocation: Falkenstein, Saxony, Germany (51.17°N, 10.45°E)
Network Role: CloudCompute (Hosting, Web Server)
Services:

- HTTP/HTTPS (ports 80/443), SSH (port 22)

- TLS Certificate: Issued to `dodo.nbpubg.com` (TrustAsia CA, 2025 expiry)

- DNS: PTR hostname `static.115.237.55.162.clients.your-server.de`

---

2. Threat & Abuse Indicators

DNSBL Listings: 2/8 total lists (high-severity risk)
Reputation: No direct malicious indicators (no known attacker/spam source).
TLS/SSL: Valid certificate, no self-signed or expired issues.
DNS Security: DNSSEC valid, CAA records present.

---

3. Observation History

Recent Activity (2026-06-10):

- 28 signals observed, including DNS, network, and reputation data.

- 8 DNSBL lists flagged the IP (e.g., Spamhaus, OpenDNS).

- No persistent malicious activity detected.

Trend: Stable risk profile; no significant changes noted.

---

4. Network Relationships

DNS Associations:

- Linked to `your-server.de` (SPF/DMARC records present).

Network:

- Part of Hetzner’s `DE-HETZNER-19920803` network (AS24940).

- Subnet `162.55.237.115/24` has 1 sibling IP (162.55.237.46).

---

5. Neighborhood Analysis

Subnet Abuse Density: 0% (clean).
Neighbors: 1 IP in subnet (no risk scores available).

---

6. Recommendations

Monitor: DNSBL listings and associated domains (`your-server.de`, `nbpubg.com`) for suspicious activity.
Firewall: Block DNSBL-listed IPs in outbound traffic.
Verify: Confirm ownership of `your-server.de` to ensure no spoofing.
Investigate: Review SSH/banner logs for unauthorized access attempts.

Conclusion: The IP is a legitimate cloud server with moderate risk due to DNSBL exposure. No immediate malicious activity detected, but ongoing monitoring is advised.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇩🇪 Germany
Region	Saxony
City	Falkenstein
Timezone	Europe/Berlin
Latitude	51.17
Longitude	10.45

🏢 Ownership & Registration

Organization	Hetzner Online GmbH - Contact Role
ASN	AS24940
Network Name	DE-HETZNER-19920803
CIDR Block	162.55.0.0/16
RIR	ARIN
Country	DE
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR	static.115.237.55.162.clients.your-server.de
Forward Confirmed	Yes — FCrDNS verified
Forward Hostnames	`static.115.237.55.162.clients.your-server.de`

🔐 DNS Hygiene

Hygiene Score	100% (Excellent)
SPF	1/2 domains
DMARC	1/2 domains
FCrDNS	Verified
DNSSEC	Valid
CAA	Present
Domains Checked	2 domains

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Web Server
Network Tier	Hosting — Infrastructure provider without advanced routing

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
80	http	tcp	—
443	https	tcp	—
22	ssh	tcp	SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.15
Closed Ports	25, 3389, 8080, 8443 (3 open / 7 scanned)

Server	nginx
HTTP Title	—
SSH Version	SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.15

🔐 TLS Certificate

🔒

CN=dodo.nbpubg.com

Issued by CN=LiteSSL RSA CA 2025, O="TrustAsia Technologies, Inc.", C=CN

Self-signed: No

SANs	dodo.nbpubg.com
Valid From	2026-04-22T11:00:00+00:00
Valid Until	2026-07-21T10:59:59+00:00
TLS Protocol	Tls13
Cipher Suite	TLS_AES_256_GCM_SHA384
Signature Algorithm	sha256RSA
Validity Period	89 days
Serial Number	3185B12FF2A13DDE8C434769B074AE5333AA2312
Thumbprint	D271A307D73019AD179A413C813B2E5333A737B9

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	32%	2	4
routing	8%	1	1
services	30%	2	3
ownership	27%	2	3
reputation	32%	1	3
geolocation	34%	2	3
Overall	27%	10	17

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (70%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-05-25 00:40:34 UTC
Last Seen	2026-06-29 00:51:42 UTC
Profile Built	2026-06-29 06:54:09 UTC
Data Freshness	Live
Signal Types	24
Total Observations	27

🔍 24 signal types · 27 observations collected

This report is generated from 24+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

162.55.237.115📋 Copy

**1. Core Profile**

**2. Threat & Abuse Indicators**

**3. Observation History**

**4. Network Relationships**

**5. Neighborhood Analysis**

**6. Recommendations**