178.105.81.235
# IP INTELLIGENCE BRIEFING
Target IP: 178.105.81.235/32
Date: Current
Classification: Low Risk / Cloud Infrastructure
## EXECUTIVE SUMMARY
IP address 178.105.81.235 is a cloud infrastructure endpoint operated by Hetzner Online GmbH (ASN 24940). The IP maintains a low-risk profile with no active threat indicators. Historical analysis reveals sporadic blacklist activity, though current risk scoring remains neutral. The address resolves to a firewalled cloud compute environment with no exposed services.
## TECHNICAL PROFILE
Network Classification: Cloud Compute Infrastructure
Provider: Hetzner Online GmbH (ASN 24940, RIPE RIR)
Geolocation: Germany (DE) โ Sittingbourne region
BGP Prefix: 178.104.0.0/15
Route Stability: Unstable (0 route changes in 30-day window)
DNS Configuration:
- PTR Record: static.235.81.105.178.clients.your-server.de
- Forward Resolution: Confirmed
- SPF/DMARC: Configured on parent domain (your-server.de)
- Domain Classification: your-server.de
Network State:
- Open Ports: None detected
- TLS Certificates: None
- Service Status: Firewalled / No Services
- Anycast: False
## THREAT INDICATORS
Current Risk Score: 0 (Low Risk)
Abuse Confidence Score: Not applicable
Blacklist Status: 0/8 DNSBL lists
Tor Exit Node: False
Known Attacker: False
Spam Source: False
Threat Persistence: 0 days
Campaign Likelihood: Not applicable
Observed Threat Signals (Historical):
- June 2026: 8 total blacklist listings with 1 active listing (severity: high)
- Port scanning activity recorded in historical observations
- DNS and geolocation signals present across 22 historical observations
## NETWORK NEIGHBORHOOD ANALYSIS
Subnet: 178.105.81.0/24
Abuse Density: 0%
Subnet Classification: Clean
Risk Distribution:
- High Risk IPs: 0
- Medium Risk IPs: 0
- Low Risk IPs: 0
Total Siblings: 1
Threat Siblings: 0
The /24 neighborhood shows no correlated malicious activity, indicating isolated endpoint behavior.
## ENTITY RELATIONSHIPS
DNS Associations: static.235.81.105.178.clients.your-server.de (recurring association)
Network Associations: CLOUD-NBG1 (cloud network segment)
Total Relationships: 29 (predominantly DNS and network-level associations)
All relationship entities cluster around the same cloud network segment, suggesting single-tenant infrastructure deployment.
## OBSERVATION HISTORY
Total Observations: 22
Time Range: Historical data through June 2026
Signal Evolution:
- Recent observations (June 2026): DNS resolution, CAA records, and blacklist listings recorded
- Mid-period (June 15, 2026): Port scanning activity, network classification signals
- Ownership changes: 0 events
- Persistently malicious: False
The IP exhibits normal signal variation typical of cloud hosting infrastructure with periodic scanning and blacklist listing activity. No sustained malicious behavior patterns detected.
## RECOMMENDED ACTIONS
Firewall Classification: Monitor / No Immediate Action Required
Recommended Actions: None specified based on current risk profile
The IP presents low risk to defensive operations. Standard monitoring protocols apply. No blocking or mitigation actions recommended at this time.
## INTELLIGENCE JUDGMENT
IP 178.105.81.235 operates as a standard Hetzner cloud compute instance with proper DNS and email authentication configuration. Historical signals indicate transient blacklist activity but current profiling shows no active threat indicators. The clean neighborhood classification and absence of exposed services support classification as legitimate cloud infrastructure. SOC analysts should maintain awareness of the historical blacklist activity but no immediate threat response required.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Hetzner Online GmbH - Contact Role |
| ASN | AS24940 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | static.235.81.105.178.clients.your-server.de |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | static.235.81.105.178.clients.your-server.de |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 27% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 33% | 2 | 3 |
| Overall | 23% | 10 | 16 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-23 06:21:30 UTC |
| Last Seen | 2026-06-28 20:31:50 UTC |
| Profile Built | 2026-06-29 08:36:25 UTC |
| Data Freshness | Live |
| Signal Types | 22 |
| Total Observations | 24 |
Full dossier details are available via our API.