IPDebrief

204.168.170.128

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

## IP INTELLIGENCE BRIEFING: 204.168.170.128/32

Classification: Low Risk | Risk Score: 25/100 | Last Updated: 2026-06-29

OWNERSHIP & NETWORK ATTRIBUTES

The IP address 204.168.170.128 is hosted within the Hetzner Online GmbH infrastructure under AS24940 (CLOUD-HEL1 network). The CIDR block 204.168.160.0/20 was registered to Hetzner and operates as a cloud compute provider. Geolocation data places the infrastructure in Gunzenhausen, Germany (latitude/longitude unavailable), with DNS resolution pointing to the your-server.de domain.

INFRASTRUCTURE CLASSIFICATION

The endpoint operates as a cloud-hosted infrastructure with no open ports detected during scanning. Network classification indicates:

The reverse DNS PTR record resolves to static.128.170.168.204.clients.your-server.de, and forward resolution is confirmed.

THREAT INDICATORS & BLACKLIST STATUS

No active threat indicators were identified:

One DNSBL listing was detected (of 8 total lists checked), but the overall blacklist count remains zero. The control plane indicates route instability (isRouteStable: false) with no route changes in the last 30 days.

OBSERVATION HISTORY (23 TOTAL OBSERVATIONS)

Historical data spanning multiple observation periods shows:

NEIGHBORHOOD ANALYSIS

The /24 subnet (204.168.170.128/24) shows:

No neighboring IPs were detected within the immediate subnet boundary.

RELATIONSHIP GRAPH (27 TOTAL LINKS)

Relationship analysis reveals:

RECOMMENDED ACTIONS

Based on the risk profile, no specific security actions or firewall rules are recommended. The IP maintains a low-risk posture (25/100) with no actionable threat indicators. Standard monitoring is appropriate.

---

BRIEFING SUMMARY: IP 204.168.170.128 is a low-risk Hetzner cloud-hosted endpoint with no active threat indicators. The subnet demonstrates minimal abuse density, and historical observations confirm stable ownership with no persistent malicious activity. No immediate defensive actions required; continue standard monitoring.

THREAT LEVEL: LOW | SOC RECOMMENDATION: Monitor | BLOCK NEEDED: No

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ซ๐Ÿ‡ฎ Finland
Regionโ€”
CityD-91710 Gunzenhausen
TimezoneEurope/Helsinki
Latitude51.30
Longitude9.49

๐Ÿข Ownership & Registration

OrganizationHetzner Online GmbH - Contact Role
ASNAS24940
Network NameCLOUD-HEL1
CIDR Block204.168.160.0/20
RIRARIN
CountryFI
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTRstatic.128.170.168.204.clients.your-server.de
Forward ConfirmedYes โ€” FCrDNS verified
Forward Hostnamesstatic.128.170.168.204.clients.your-server.de

๐Ÿ” DNS Hygiene

Hygiene Score100% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAAPresent

โ˜๏ธ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeFirewalled / No Services
Network TierTier 3 โ€” Basic operator with some routing infrastructure
CloudHosting

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
No open ports detected
Closed Ports22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned)
Serverโ€”
HTTP Titleโ€”

๐Ÿ” TLS Certificate

๐Ÿ”’
No certificate
Issued by โ€”
N/A
SANsNone
Valid Fromโ€”
Valid Untilโ€”

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
33%
24
routing
13%
11
services
19%
22
ownership
27%
23
reputation
22%
13
geolocation
19%
22
Overall22%1015
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-05-28 06:16:18 UTC
Last Seen2026-06-29 05:10:09 UTC
Profile Built2026-06-29 05:15:30 UTC
Data FreshnessLive
Signal Types24
Total Observations24
๐Ÿ” 24 signal types ยท 24 observations collected
This report is generated from 24+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.