135.181.130.83
# IP INTELLIGENCE BRIEFING: 135.181.130.83
Classification: LOW RISK INFRASTRUCTURE
Date of Analysis: Current
Risk Score: 25/100
---
## EXECUTIVE SUMMARY
IP 135.181.130.83 is a cloud-based web server hosted by Hetzner Online GmbH (ASN 24940) in Helsinki, Finland. The IP demonstrates a low-risk profile with minimal threat indicators. The address serves as a web hosting endpoint with standard HTTP/HTTPS services and maintains stable routing characteristics. No malicious activity patterns were observed across 32 historical observations.
---
## INFRASTRUCTURE PROFILE
Provider: Hetzner Online GmbH
ASN: 24940 (RIPE NCC)
Location: Helsinki, Finland (FI)
Network Block: 135.181.0.0/16
CIDR Classification: Cloud Compute / Web Server
Infrastructure Type: Cloud Hosting (Confirmed)
Open Services:
- Port 80/TCP: HTTP (Apache)
- Port 443/TCP: HTTPS (Apache)
DNS Resolution:
- PTR Hostname: static.83.130.181.135.clients.your-server.de
- Forward Resolution: cphost.parsrad.com
- Hosted Domain: your-server.de
TLS Certificate: CN=micuk.uk (Multi-SAN configuration including mail.micuk.uk, cpanel.micuk.uk, webmail.micuk.uk)
---
## THREAT ASSESSMENT
Risk Score: 25/100 (Low Risk)
Reputation: Low Risk
Abuse Confidence Score: Not applicable
Threat Indicators: None detected
Blacklist Status: Listed on 1 of 8 DNSBL lists
Known Campaigns: None
Campaign Likelihood: None
Is Tor Exit Node: False
Is Known Attacker: False
Is Spam Source: False
Control Plane Metrics:
- RPKI State: Valid
- BGP Route Stability: Stable
- Route Changes (30d): 0
- DNSSEC: Valid
- Operator Score: 0.6087 (Moderate)
---
## NEIGHBORHOOD ANALYSIS
Subnet: 135.181.130.83/24
Abuse Density: 0 (Low)
Classification: Mostly Clean
Risk Distribution: No high/medium risk siblings identified
Inherited Risk: 2/100
The /24 subnet demonstrates clean security posture with no adjacent IPs exhibiting elevated risk characteristics.
---
## RELATIONSHIP GRAPH
Total Relationships: 65
Primary Associations:
- Same Network: DE-HETZNER-19931109
- DNS Associations: static.83.130.181.135.clients.your-server.de (multiple entries)
---
## OBSERVATION HISTORY (32 SIGNALS)
Temporal Coverage: June 14โ19, 2026
Key Observations:
- June 19: Operator score 0.7, route stability signals active
- June 14: Provider classification confirmed as Hetzner cloud hosting
- June 14: Geolocation inference confirmed (FI, confidence 0.28)
- June 14: HTTP fingerprint: Apache server, status 200, HSTS disabled
Risk Trend: Stable. No escalation patterns observed across observation window.
---
## SECURITY RECOMMENDATIONS
Action Level: MONITOR
Firewall Rules: Not required at this time
Recommended Actions:
1. No immediate blocking actions warranted based on current risk profile
2. Continue standard traffic monitoring for cloud hosting services
3. Review DNSBL listing origin if traffic blocking is observed
Note: IPDebrief analysis indicates no actionable firewall rules based on current threat profile. Standard organizational firewall policies should apply.
---
## CONCLUSION
IP 135.181.130.83 represents low-risk cloud infrastructure operating within Hetzner's Helsinki datacenter. The address maintains stable routing, valid BGP announcements, and standard web server functionality. No evidence of malicious activity, campaign involvement, or elevated threat behavior was detected. SOC teams may treat this IP as legitimate cloud infrastructure requiring standard monitoring protocols.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Hetzner Online GmbH - Contact Role |
| ASN | AS24940 |
| Network Name | โ |
| CIDR Block | 135.181.0.0/16 |
| RIR | ARIN |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | static.83.130.181.135.clients.your-server.de |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | cphost.parsrad.com |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | 0/2 domains |
| DMARC | 0/2 domains |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
| Domains Checked | 2 domains |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| Closed Ports | 22, 25, 3389, 8080, 8443 (2 open / 7 scanned) | ||
| Server | Apache |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | micuk.ukwww.micuk.ukmail.micuk.ukcpanel.micuk.ukwebmail.micuk.ukwebdisk.micuk.ukcpcontacts.micuk.ukcpcalendars.micuk.ukautodiscover.micuk.uk |
| Valid From | 2026-06-04T12:30:42+00:00 |
| Valid Until | 2027-06-04T12:30:42+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_256_GCM_SHA384 |
| Signature Algorithm | sha256RSA |
| Validity Period | 365 days |
| Serial Number | 016C9F91B1 |
| Thumbprint | 05B5BB6743B162871065FC74BDE34108B128B3CE |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 25% | 2 | 4 |
| routing | 22% | 3 | 4 |
| services | 29% | 2 | 4 |
| ownership | 27% | 3 | 4 |
| reputation | 26% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 25% | 13 | 21 |
| Data Coherence | Consistent (100%) |
| Attribution | High (85%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-13 06:37:03 UTC |
| Last Seen | 2026-06-27 22:31:15 UTC |
| Profile Built | 2026-06-28 16:36:10 UTC |
| Data Freshness | Live |
| Signal Types | 28 |
| Total Observations | 33 |
Full dossier details are available via our API.