178.104.117.61
IP Intelligence Briefing: 178.104.117.61
Date: 2026-06-10
---
**1. Core Profile**
- Risk Rating: Low Risk (Risk Score: 0 / Provider Score: 0 / Authority Score: 0)
- Ownership:
- ISP: Hetzner Online GmbH (AS24940)
- Network: CLOUD-NBG1 (RIPE)
- Subnet: 178.104.112.0/20
- Geolocation:
- Country: Germany (DE)
- City: Southampton (note: Southampton is in the UK; potential data inconsistency)
- Coordinates: 51.17°N, 10.45°E
- Timezone: Europe/Berlin
---
**2. Threat Indicators**
- Malicious Activity: None detected (no indicators, blacklists, or campaigns).
- Network Role:
- Type: Cloud Compute (Hetzner)
- Services: HTTP (Port 80) via nginx/1.28.3 (Ubuntu)
- TLS: No certificate detected.
- DNS:
- PTR Record: `static.61.117.104.178.clients.your-server.de`
- Domain: `your-server.de` (SPF/DKIM records present).
---
**3. Observation History**
- Recent Activity (Last 30 Days):
- Stable HTTP service with consistent nginx banner.
- No port scanning or TLS anomalies.
- Single observed HTTP request (status code 200).
- Trend: No significant changes in risk or network behavior.
---
**4. Network Relationships**
- Linked Entities:
- DNS: Multiple associations with `your-server.de` (likely a single server).
- Network: Subnet `CLOUD-NBG1` (Hetzner cloud infrastructure).
- Subnet Analysis:
- /24 Subnet: 178.104.117.0/24
- Abuse Density: 1 (low risk).
- Neighbors: No active IPs detected in the subnet.
---
**5. Actionable Insights**
- No Immediate Threat: The IP is a legitimate cloud-hosted server with no malicious indicators.
- Monitor for Anomalies: Track changes to DNS records or unexpected service additions.
- Verify Geolocation: Investigate the discrepancy in city (Southampton, UK) vs. country (Germany).
- Firewall Recommendations:
- Allow HTTP traffic (Port 80) if required for legitimate operations.
- Block unused ports to minimize attack surface.
---
Conclusion: This IP is a low-risk cloud server managed by Hetzner. No signs of compromise or malicious activity detected. SOC teams should focus on ensuring proper configuration and monitoring for unexpected changes.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Hetzner Online GmbH - Contact Role |
| ASN | AS24940 |
| Network Name | CLOUD-NBG1 |
| CIDR Block | 178.104.112.0/20 |
| RIR | RIPE |
| Country | DE |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | static.61.117.104.178.clients.your-server.de |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | static.61.117.104.178.clients.your-server.de |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | nginx/1.28.3 |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 8% | 1 | 1 |
| services | 30% | 2 | 3 |
| ownership | 27% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 26% | 2 | 2 |
| Overall | 24% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-25 00:40:47 UTC |
| Last Seen | 2026-06-29 00:53:13 UTC |
| Profile Built | 2026-06-29 06:56:25 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 25 |
Full dossier details are available via our API.