204.168.255.141

{ } JSON 🔧 Full Actions API

🤖 Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 204.168.255.141/32

## Executive Summary

The IP address 204.168.255.141 presents a Low Risk profile (Score: 25) associated with Hetzner Online GmbH cloud infrastructure. No active threat indicators or persistent malicious behavior detected.

## Ownership and Infrastructure

Provider: Hetzner Online GmbH (ASN: 24940)
Network: CLOUD-HEL1 (204.168.240.0/20)
Infrastructure Type: Cloud Compute (hosted)
RIR: ARIN

## Geolocation Context

Location: Helsinki, Finland (FI)
Coordinates: 60.1699° N, 24.9384° E
Timezone: Europe/Helsinki
Accuracy: Geo consensus confirmed

## Threat Indicators

Overall Risk Score: 25/100 (Low Risk)
Blacklist Status: Listed on 1 of 8 DNSBLs (DNSBL Listed Count: 1)
Abuse Confidence: Not calculated
Known Campaigns: None associated
Threat Feeds: No active indicators

Observed Signals:

DNSBL listing detected (High severity classification in blacklist data)
Single threat observation recorded
No persistent malicious activity confirmed

## Network Services

Open Ports: None detected
Infrastructure Classification: Firewalled / No Services
HTTP/TLS: No active services exposed
Certificate Status: No TLS certificates detected

## DNS Analysis

PTR Hostname: static.141.255.168.204.clients.your-server.de
Domain: your-server.de
Forward Resolution: Confirmed
Email Authentication: SPF and DMARC records present
CAA Records: Valid

## Historical Observations

Total Signals: 16 observations tracked
Last Observed: 2026-06-22
Ownership Changes: None recorded
Threat Persistence: 0 days
Trend Analysis: Stable profile with no escalation of risk

## Neighborhood Assessment

Subnet: 204.168.255.141/24
Abuse Density: 0 (low)
Neighbor Count: 1 detected
Neighbor Profile: 204.168.255.115 (Risk Score: 25, Authority Score: 60)
Risk Distribution: 1 Low Risk neighbor, 0 High/Medium risk neighbors

## Relationships

Network Association: CLOUD-HEL1
DNS Associations: static.141.255.168.204.clients.your-server.de

## SOC Actions Recommended

1. Monitoring: Add to passive monitoring for DNSBL listing activity changes

2. Block/Allow: No immediate blocking required; low-risk classification supports allow-with-logging

3. Correlation: Monitor for related activity from neighbor IP 204.168.255.115

4. Threat Intel: Maintain watch on your-server.de domain for any changes

## Conclusion

The IP address operates within legitimate cloud hosting infrastructure with standard security controls in place. The single DNSBL listing requires contextual investigation but does not indicate active malicious behavior. Recommended approach: passive monitoring with periodic review.

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

🌍 Geolocation

Country	🇫🇮 Finland
Region	—
City	D-91710 Gunzenhausen
Timezone	Europe/Helsinki
Latitude	—
Longitude	—

🏢 Ownership & Registration

Organization	Hetzner Online GmbH - Contact Role
ASN	AS24940
Network Name	CLOUD-HEL1
CIDR Block	204.168.240.0/20
RIR	ARIN
Country	FI
Abuse Contact	Available via RDAP

🌐 DNS Intelligence

PTR	static.141.255.168.204.clients.your-server.de
Forward Confirmed	Yes — FCrDNS verified
Forward Hostnames	`static.141.255.168.204.clients.your-server.de`

🔐 DNS Hygiene

Hygiene Score	100% (Excellent)
SPF	Present
DMARC	Present
FCrDNS	Verified
DNSSEC	Valid
CAA	Present

☁️ Network Classification

Infrastructure	Infrastructure / Datacenter
Service Purpose	Firewalled / No Services
Network Tier	Hosting — Infrastructure provider without advanced routing

CloudHosting

🔌 Services & Open Ports

Port	Service	Protocol	Banner
No open ports detected

Server	—
HTTP Title	—

🔐 TLS Certificate

🔒

No certificate

Issued by —

N/A

SANs	None
Valid From	—
Valid Until	—

🎯 Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

Dimension	Score	Sources	Observations
threat	0%	0	0
routing	0%	0	0
services	0%	0	0
ownership	0%	0	0
reputation	0%	0	0
geolocation	0%	0	0
Overall	0%	0	0

Coverage: 6/6 dimensions · Data sufficiency: sufficient

Data Coherence	Consistent (100%)
Attribution	Moderate (70%)
	OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

📅 Observation Timeline 🔄 Live

First Seen	2026-06-18 07:23:26 UTC
Last Seen	2026-06-22 02:15:08 UTC
Profile Built	2026-06-22 02:24:32 UTC
Data Freshness	Live
Signal Types	19
Total Observations	19

🔍 19 signal types · 19 observations collected

This report is generated from 19+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.

{ } JSON API 🔧 Actions API 📧 Enterprise Access

ℹ️ About This Report

All data shown is publicly available network metadata — IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.

204.168.255.141📋 Copy