178.105.165.145
IP Intelligence Briefing: 178.105.165.145/32
*Generated via IPDebrief Analysis*
---
**1. Core Profile**
- Risk Score: Low Risk (0/100)
- Provider: Hetzner Online GmbH (AS24940)
- Geolocation: Nuremberg, Bavaria, Germany (51.17°N, 10.45°E)
- Network Role: Cloud Hosting (firewalled, no public services)
- DNS:
- PTR record: `static.145.165.105.178.clients.your-server.de`
- No malicious domains or email authentication issues detected.
---
**2. Threat Observations**
- Historical Signals (Last 30 Days):
- Threat Feeds: Listed in 8+ threat intelligence sources (high-severity indicators).
- Network Activity:
- Associated with UK-based entity (AS12576) and 16+ threat pulses (e.g., malware, phishing).
- Confirmed as a cloud-hosted server with no open ports or TLS services.
- Abuse Density: Subnet (178.105.165.0/24) is "mostly clean" with 1 active malicious sibling.
- Current Status:
- No direct malicious activity detected on the IP itself.
- ICMP validation failed (potential firewall blocking), but geolocation and network role are consistent.
---
**3. Relationships & Network Context**
- DNS Associations:
- Repeated PTR records pointing to `your-server.de` (likely misconfigured or redundant DNS entries).
- Network Peers:
- Part of cloud network "CLOUD-NBG1" (shared infrastructure).
- No direct connections to known malicious subnets.
---
**4. Neighborhood Analysis**
- Subnet: 178.105.165.0/24
- Abuse Density: 1/100 (low risk)
- Neighbors: No active sibling IPs (likely a /32 subnet with no shared infrastructure).
---
**5. Recommendations**
- Monitor: Track changes in threat feed listings and network behavior.
- Verify DNS: Investigate redundant PTR records for misconfiguration.
- Firewall Rules: Consider allowing ICMP for geolocation validation, but maintain strict inbound rules.
- Contextualize: Cross-reference with cloud provider logs to confirm hosting activity.
Conclusion: This IP is a low-risk cloud-hosted server in Germany. While it appears in threat feeds, no direct malicious activity is observed. Focus on validating DNS configurations and monitoring for evolving risks.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Hetzner Online GmbH - Contact Role |
| ASN | AS24940 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | static.145.165.105.178.clients.your-server.de |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | static.145.165.105.178.clients.your-server.de |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 26% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 12% | 2 | 2 |
| ownership | 20% | 2 | 3 |
| reputation | 28% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 22% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-22 09:11:56 UTC |
| Last Seen | 2026-06-28 18:20:31 UTC |
| Profile Built | 2026-06-29 06:23:57 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 25 |
Full dossier details are available via our API.