91.107.240.99
IP Intelligence Dossier
Your IP: 216.73.216.123
π€ Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 91.107.240.99
Date: 2026-06-11
---
**1. Risk Profile**
- Risk Score: 25 (Low Risk)
- Provider Score: 0 (No provider-specific threats detected)
- Authority Score: 0 (No authoritative abuse indicators)
- Network Role: CloudCompute (Hetzner Online GmbH)
- Geolocation: Germany (Bavaria), city "D-91710 Gunzenhausen" (latitude 51.17, longitude 10.45).
---
**2. Network & Ownership**
- ASN: 24940 (Hetzner Online GmbH)
- Subnet: 91.107.240.0/20
- Hosting: Firewalled / No Services (no open ports or TLS services detected)
- DNS:
- PTR record: `static.99.240.107.91.clients.your-server.de`
- SPF/DKIM/DMArc: Enabled (no email-related threats)
---
**3. Threat Indicators**
- Malicious Activity: None detected (no blacklists, spam, or known attacker associations).
- BGP Security: Valid RPKI state, no route anomalies.
- DNSBL: Listed in 1/8 DNSBLs (low priority).
---
**4. Observation History**
- Stability: Route stable for 30 days; no ownership or threat persistence.
- Geolocation Consistency: Confirmed as Germany (Bavaria) but geo-validation flagged as "not plausible" (potential misattribution).
- Network Role: Consistently classified as cloud hosting with no CDN/VPN/Tor associations.
---
**5. Relationships & Neighbors**
- Linked Entities:
- Subnet: `CLOUD-NBG1` (Hetzner)
- DNS Hostname: `static.99.240.107.91.clients.your-server.de`
- Neighborhood:
- /24 subnet `91.107.240.0/24` has 0 active IPs (likely a single-host subnet).
- No risky neighbors or abuse density detected.
---
**6. Recommendations**
- Monitoring: Track geolocation discrepancies (e.g., "D-91710 Gunzenhausen" vs. observed "Nuremberg" in historical data).
- Firewall: Allow traffic based on Hetznerβs infrastructure role; no blocking required.
- DNS: Validate `your-server.de` domain for legitimacy, as PTR records point to a static hostname.
Conclusion: 91.107.240.99 is a low-risk Hetzner cloud server with no malicious activity. No action required unless geo-validation inconsistencies escalate.
---
*Generated using IPDebrief threat intelligence platform.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Hetzner Online GmbH - Contact Role |
| ASN | AS24940 |
| Network Name | CLOUD-NBG1 |
| CIDR Block | 91.107.240.0/20 |
| RIR | RIPE |
| Country | DE |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR | static.99.240.107.91.clients.your-server.de |
| Forward Confirmed | Yes β FCrDNS verified |
| Forward Hostnames | static.99.240.107.91.clients.your-server.de |
π DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | 1/2 domains |
| DMARC | 1/2 domains |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
| Domains Checked | 2 domains |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Tier 3 β Basic operator with some routing infrastructure |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 443 | https | tcp | β |
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 3389, 8080, 8443 (2 open / 7 scanned) | ||
| Server | β |
| HTTP Title | β |
| SSH Version | SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16 |
π TLS Certificate
CN=nuremberg1.tech4allofyou18.ir
Issued by CN=YE2, O=Let's Encrypt, C=US
Self-signed: No
| SANs | nuremberg1.tech4allofyou18.ir |
| Valid From | 2026-06-15T16:33:50+00:00 |
| Valid Until | 2026-09-13T16:33:49+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_128_GCM_SHA256 |
| Signature Algorithm | sha384ECDSA |
| Validity Period | 89 days |
| Serial Number | 06A9C17E63B48A27D0047EAAA4EBF7AEDEBB |
| Thumbprint | 85FEE4BD006647FC3050EB67E41E602FDE5D8B49 |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 27% | 2 | 3 |
| services | 27% | 2 | 3 |
| ownership | 30% | 3 | 4 |
| reputation | 22% | 1 | 3 |
| geolocation | 35% | 2 | 3 |
| Overall | 28% | 12 | 20 |
Coverage: 6/6 dimensions Β· Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-05-28 06:17:01 UTC |
| Last Seen | 2026-06-29 05:17:44 UTC |
| Profile Built | 2026-06-29 05:20:01 UTC |
| Data Freshness | Live |
| Signal Types | 28 |
| Total Observations | 29 |
π 28 signal types Β· 29 observations collected
This report is generated from 28+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
βΉοΈ About This Report
All data shown is publicly available network metadata β IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.