178.105.63.99
IP Intelligence Dossier
Your IP: 216.73.216.123
๐ค Witness AIThis summary was generated by AI and may contain inaccuracies. Verify critical details independently.
IP Intelligence Briefing: 178.105.63.99
Date: June 11, 2026
---
**1. Core Profile**
- Risk Score: 65 (Moderate Risk)
- Provider: Hetzner Online GmbH (Cloud Compute Hosting)
- Geolocation: Nuremberg, Bavaria, Germany (51.17°N, 10.45°E)
- Network Role: Cloud infrastructure host (CLOUD-NBG1 / 178.105.48.0/20)
- Services: Open SSH (port 22) with banner "SSH-2.0-OpenSSH_9.6p1". No TLS/HTTP services detected.
---
**2. Threat Indicators**
- No malicious activity detected: No indicators of compromise (IOCs), blacklists, or known campaigns.
- DNS Associations: Linked to `static.99.63.105.178.clients.your-server.de` (DNSSEC validated, SPF/DMArc configured).
- Subnet Risk: Subnet `178.105.63.99/24` has 66.67% abuse density, with 2 out of 3 siblings flagged as low-risk.
---
**3. Historical Observations**
- Stability: No ownership changes; consistent Hetzner ownership since at least June 2026.
- Geolocation Consistency: Plausible Nuremberg location with minimal RTT variance (114โ116 ms).
- Network Behavior: No anomalous traffic patterns or route changes detected.
---
**4. Relationships & Context**
- Network Links:
- Same subnet (`CLOUD-NBG1` / 178.105.48.0/20).
- DNS records tied to `your-server.de` (no public website or email services).
- Threat Correlation: No shared campaigns or malicious peer IPs in the subnet.
---
**5. Recommendations**
- Monitor Subnet: Elevated abuse density in the subnet warrants closer scrutiny of neighboring IPs (e.g., 178.105.63.93, 178.105.63.207).
- Secure SSH Access: Ensure SSH keys are restricted to authorized users; consider enabling multi-factor authentication.
- No Immediate Action Required: No evidence of active threats or malicious behavior.
---
Source: IPDebrief Threat Intelligence Platform
Classification: Public | Confidence: High
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Hetzner Online GmbH - Contact Role |
| ASN | AS24940 |
| Network Name | CLOUD-NBG1 |
| CIDR Block | 178.105.48.0/20 |
| RIR | RIPE |
| Country | DE |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | static.99.63.105.178.clients.your-server.de |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | static.99.63.105.178.clients.your-server.de |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Single-Service Host |
| Network Tier | Tier 3 โ Basic operator with some routing infrastructure |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 22 | ssh | tcp | |
| Closed Ports | 25, 80, 443, 3389, 8080, 8443 (1 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
| SSH Version | SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.16 |
๐ TLS Certificate
No certificate
Issued by โ
N/A
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 19% | 2 | 2 |
| ownership | 27% | 2 | 3 |
| reputation | 22% | 1 | 3 |
| geolocation | 24% | 2 | 3 |
| Overall | 22% | 10 | 16 |
Coverage: 6/6 dimensions ยท Data sufficiency: sufficient
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-29 12:04:34 UTC |
| Last Seen | 2026-06-29 06:23:36 UTC |
| Profile Built | 2026-06-29 06:33:11 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 24 |
๐ 22 signal types ยท 24 observations collected
This report is generated from 22+ independent intelligence signals including
ownership records, DNS analysis, BGP routing, TLS certificates, port scanning, threat feeds,
behavioral fingerprinting, and more.
Full dossier details are available via our API.
Full dossier details are available via our API.
โน๏ธ About This Report
All data shown is publicly available network metadata โ IP addresses do not reliably identify individuals.
Assessments are probabilistic and should not be used as sole basis for access control decisions.
To report an issue or request data review, contact admin@ipdebrief.com.