144.76.74.81
# IP Intelligence Briefing: 144.76.74.81/32
## Executive Summary
IP address 144.76.74.81 is a low-risk (score: 25) cloud computing infrastructure endpoint operated by Hetzner Online GmbH in Falkenstein, Germany. The IP is classified as hosting infrastructure with standard web server services and presents minimal threat indicators.
## Infrastructure Profile
- IP Address: 144.76.74.81/32
- Network: 144.76.74.64/27 (HETZNER-fsn1-dc10)
- ASN: 24940 (Hetzner Online GmbH)
- Location: Falkenstein, Saxony, Germany (51.17°N, 10.45°E)
- Infrastructure Type: CloudCompute/Hosting
- Risk Score: 25 (Low Risk)
- Reputation: Low Risk
## Network Services
The endpoint exposes three open TCP ports:
- Port 80/tcp: HTTP
- Port 443/tcp: HTTPS (HTTP/2 enabled)
- Port 8080/tcp: HTTP-alt
HTTP probing returned status code 404, indicating the server is operational but the requested resource was not found. No HTTP server banner was captured.
## DNS Analysis
- PTR Record: dns1.prime.cv
- Domain: prime.cv
- Forward Resolution: Unconfirmed
- Email Authentication: SPF present, DMARC absent
- DNSBL Status: Listed on 1 of 8 monitored blacklists
## Threat Assessment
- Known Attacker: No
- Spam Source: No
- Tor Exit Node: No
- VPN/Proxy: No
- Abuse Confidence Score: Not available
- Blacklist Count: 0 (threat-specific feeds)
- Known Campaigns: None detected
- Threat Persistence Days: 0
## Observation History
Analysis of 22 historical observations reveals:
- Most Recent Signals: 2026-06-20
- Geolocation Consistency: Confirmed Falkenstein, DE region
- Network Classification: Consistently identified as Hetzner cloud infrastructure
- Risk Trend: No escalation pattern observed
- Is Persistently Malicious: False
## Neighborhood Context
The /24 subnet (144.76.74.0/24) classification:
- Abuse Density: 0
- Classification: Mostly clean
- Threat Siblings: 1
- Risk Distribution: No high or medium risk neighbors detected
- Inherited Risk: 2
## Relationship Graph
The IP maintains 46 recorded relationships, predominantly same-network associations with HETZNER-fsn1-dc10. No external organizational or certificate-based relationships were identified beyond the hosting infrastructure.
## Recommended Actions
Based on the low-risk profile and standard hosting classification, the following actions are recommended:
1. Allow Traffic: No blocking required for legitimate web traffic on ports 80/443
2. Monitor: Track DNSBL status changes for potential spam association
3. Baseline: Establish baseline for HTTP/2 traffic patterns
4. No Immediate Action: No firewall rules or blocking recommended
## Conclusion
144.76.74.81 is a legitimate Hetzner cloud hosting endpoint with low-risk characteristics. The single DNSBL listing appears to be a minor concern and warrants monitoring but does not indicate active malicious activity. No immediate security actions are required beyond standard operational monitoring.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Hetzner Online GmbH - Contact Role |
| ASN | AS24940 |
| Network Name | HETZNER-fsn1-dc10 |
| CIDR Block | 144.76.74.64/27 |
| RIR | ARIN |
| Country | DE |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | dns1.prime.cv |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
| Forward Hostnames | dns1.prime.cv |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | 1/2 domains |
| DMARC | 0/2 domains |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
| Domains Checked | 2 domains |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | โ |
| 443 | https | tcp | โ |
| 8080 | http-alt | tcp | โ |
| Closed Ports | 22, 25, 3389, 8443 (3 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | b56f62bba1d09a644833ae30f3a458fb.4b688dc271acce9db74166414734fa32.traefik.default |
| Valid From | 2026-06-01T10:14:30+00:00 |
| Valid Until | 2027-06-01T10:14:30+00:00 |
| TLS Protocol | Tls13 |
| Cipher Suite | TLS_AES_128_GCM_SHA256 |
| Signature Algorithm | sha256RSA |
| Validity Period | 365 days |
| Serial Number | 2318A02CF67E93B6102EB1100E8BDE86 |
| Thumbprint | 174810C217EE09BE7DD6EC66A90972D86838979A |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 30% | 2 | 3 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 40% | 2 | 3 |
| Overall | 26% | 10 | 17 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-25 00:40:14 UTC |
| Last Seen | 2026-06-29 00:47:51 UTC |
| Profile Built | 2026-06-29 06:50:43 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 25 |
Full dossier details are available via our API.