IPDebrief

95.216.3.239

IP Intelligence Dossier
Your IP: 216.73.216.123
{ } JSON ๐Ÿ”ง Full Actions API
๐Ÿค– Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.

# IP Intelligence Briefing: 95.216.3.239/32

## Executive Summary

IP address 95.216.3.239 is a low-risk (Risk Score: 25) infrastructure endpoint operating within the Hetzner Online GmbH cloud infrastructure in Helsinki, Finland. The IP exhibits characteristics of legitimate cloud hosting with no active threat indicators, open services, or malicious behavioral patterns. No immediate blocking or mitigation actions are recommended.

## Ownership and Infrastructure

## Network Role and Services

## Threat Assessment

## Historical Analysis

23 observations collected through 2026-06-28 indicate stable infrastructure behavior with consistent geolocation data and no escalation in threat signals. The IP demonstrates persistent ownership without malicious activity. Signal history shows:

## Relationship Intelligence

The IP maintains 45 documented relationships, primarily:

## Neighborhood Analysis (95.216.3.0/24)

## Recommended Actions

No specific firewall rules or blocking recommendations are generated at this time. The IP exhibits normal cloud hosting behavior with no actionable threat indicators. Standard network policies apply.

## Intelligence Notes

The IP address represents legitimate cloud infrastructure from a major European hosting provider. The minimal DNSBL listing and single threat sibling within the /24 subnet suggest either temporary scanning activity or false positives. No correlation with known attack campaigns or coordinated malicious infrastructure has been identified.

Classification: LOW RISK - Routine monitoring advised

Last Updated: 2026-06-28

This summary was generated by AI and may contain inaccuracies. Verify critical details independently.

๐ŸŒ Geolocation

Country๐Ÿ‡ซ๐Ÿ‡ฎ Finland
Region18
CityHelsinki
TimezoneEurope/Helsinki
Latitude60.17
Longitude24.93

๐Ÿข Ownership & Registration

OrganizationHetzner Online GmbH - Contact Role
ASNAS24940
Network Nameโ€”
CIDR Blockโ€”
RIRRIPE
Countryโ€”
Abuse ContactAvailable via RDAP

๐ŸŒ DNS Intelligence

PTRstatic.239.3.216.95.clients.your-server.de
Forward ConfirmedYes โ€” FCrDNS verified
Forward Hostnamesmail.omnesmag.com

๐Ÿ” DNS Hygiene

Hygiene Score80% (Excellent)
SPFPresent
DMARCPresent
FCrDNSVerified
DNSSECValid
CAANot configured

โ˜๏ธ Network Classification

InfrastructureInfrastructure / Datacenter
Service PurposeWeb Server
Network TierHosting โ€” Infrastructure provider without advanced routing
CloudHosting

๐Ÿ”Œ Services & Open Ports

PortServiceProtocolBanner
80httptcpโ€”
443httpstcpโ€”
22sshtcp
8443https-alttcpโ€”
Closed Ports25, 3389, 8080 (4 open / 7 scanned)
Servernginx
HTTP Titleโ€”
SSH VersionSSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u7

๐Ÿ” TLS Certificate

๐Ÿ”’
CN=omnesmag.com
Issued by CN=R12, O=Let's Encrypt, C=US
Self-signed: No
SANsomnesmag.com
Valid From2026-05-03T15:54:38+00:00
Valid Until2026-08-01T15:54:37+00:00
TLS ProtocolTls13
Cipher SuiteTLS_AES_256_GCM_SHA384
Signature Algorithmsha256RSA
Validity Period89 days
Serial Number06D95656B8DED7AE3E2467133BF7325D240C
Thumbprint6396BF461F3575C57E1398E4EA38E3B28EAC6281

๐ŸŽฏ Confidence Breakdown

Per-dimension confidence scores based on source diversity and data freshness

DimensionScoreSourcesObservations
threat
30%
23
routing
13%
11
services
33%
24
ownership
20%
23
reputation
28%
13
geolocation
39%
23
Overall27%1017
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
Data CoherenceConsistent (100%)
AttributionModerate (70%)
OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid

๐Ÿ“… Observation Timeline ๐Ÿ”„ Live

First Seen2026-05-22 03:11:02 UTC
Last Seen2026-06-28 18:08:49 UTC
Profile Built2026-06-29 06:11:23 UTC
Data FreshnessLive
Signal Types22
Total Observations26
๐Ÿ” 22 signal types ยท 26 observations collected
This report is generated from 22+ independent intelligence signals including ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds, behavioral fingerprinting, and more.
Full dossier details are available via our API.
{ } JSON API ๐Ÿ”ง Actions API ๐Ÿ“ง Enterprise Access

โ„น๏ธ About This Report

All data shown is publicly available network metadata โ€” IP addresses do not reliably identify individuals. Assessments are probabilistic and should not be used as sole basis for access control decisions. To report an issue or request data review, contact admin@ipdebrief.com.