# IP INTELLIGENCE BRIEFING
Target: 135.181.113.40/32
Date: Current
Classification: LOW RISK
## EXECUTIVE SUMMARY
IP 135.181.113.40 is a low-risk hosting infrastructure endpoint operated by Hetzner Online GmbH. The IP demonstrates standard web server behavior with no active threat indicators. Risk score of 25/100 indicates minimal concern. No immediate blocking or mitigation actions recommended.
## NETWORK OWNERSHIP & GEOLOCATION
- Provider: Hetzner Online GmbH (ASN 24940)
- Location: Helsinki, Finland (FI)
- CIDR Block: 135.181.0.0/16
- Network Classification: Cloud hosting infrastructure, Web Server
- Ownership Status: Stable (no recent ownership changes detected)
## DNS & SERVICE FINGERPRINTING
- PTR Hostname: static.40.113.181.135.clients.your-server.de
- Forward Resolution: Confirmed (your-server.de domain)
- Open Ports: 80 (HTTP), 443 (HTTPS)
- TLS Configuration: TLS 1.3, Cipher Suite: TLS_AES_256_GCM_SHA384
- HTTP Response: 403 Forbidden status code
- Server Banner: Detected (HTTP/1.1)
- Certificate: Self-signed certificate (CN=135.181.113.40)
## THREAT INTELLIGENCE ASSESSMENT
- Risk Score: 25/100 (Low Risk)
- Abuse Confidence Score: Not applicable
- Blacklist Status: 0/0 (No blacklist entries)
- DNSBL Listings: 1 of 8 lists checked
- Known Threats: None detected
- Tor/VPN/Proxy: Not identified
- Known Campaigns: None
## NETWORK CONTEXT
- Neighborhood Classification: mostly_clean
- Subnet Abuse Density: 1 (low)
- Related Threat IPs: 1 threat sibling in /24 subnet
- Control Plane: Route stability flagged as unstable; DNSSEC valid
- Operator Score: 0.3478 (Basic)
## OBSERVATION HISTORY
Analysis of 23 historical observations indicates consistent hosting infrastructure characteristics:
- Persistent Hetzner cloud classification
- HTTP server behavior with 403 responses
- TLS 1.3 implementation maintained
- Finland geolocation consistently inferred
- No escalation in threat posture over observation period
## SECURITY ACTIONS & RECOMMENDATIONS
Current Status: No immediate actions required.
Recommended Approach:
- Monitor as standard hosting infrastructure
- No blocking recommended at this time
- Consider observing traffic patterns if legitimate business traffic is not expected
- Review 403 responses for potential policy violations if relevant to operations
## INDICATOR SUMMARY
| Indicator Type | Status |
|---|---|
| Risk Score | 25/100 (Low) |
| Threat Indicators | None |
| Blacklist Status | Clean |
| Abuse Classification | Low |
| Action Required | No |
---
*Generated from IPDebrief intelligence platform. All data derived from observed network signals and threat intelligence feeds.*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Hetzner Online GmbH - Contact Role |
| ASN | AS24940 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | static.40.113.181.135.clients.your-server.de |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | static.40.113.181.135.clients.your-server.de |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| Closed Ports | 22, 25, 3389, 8080, 8443 (2 open / 7 scanned) | ||
| Server | yes |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | 2023-12-01T22:18:22+00:00 |
| Valid Until | 2044-11-26T22:18:22+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha256RSA |
| Validity Period | 7666 days |
| Serial Number | 6B6ECA90D223E07500BD62F12456EC5F148E71BE |
| Thumbprint | 19C5F1D82310D6CF8C61AC8D325373716FE95923 |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 30% | 2 | 3 |
| ownership | 24% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 24% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-14 13:23:27 UTC |
| Last Seen | 2026-06-28 00:38:25 UTC |
| Profile Built | 2026-06-28 18:44:00 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 27 |
Full dossier details are available via our API.