46.224.201.82
# INTELLIGENCE BRIEFING: 46.224.201.82/32
Date: 2026-06-14
Classification: Moderate Risk Infrastructure Asset
Report Type: Threat Intelligence Summary
---
## EXECUTIVE SUMMARY
IP 46.224.201.82 is a cloud compute infrastructure address owned by Hetzner Online GmbH, located in Nuremberg, Germany. The IP presents a moderate risk profile (score: 40) with no active threat indicators but 2 DNSBL listings. The address shows minimal service exposure (firewalled/no services) and maintains stable ownership within the 46.224.0.0/15 BGP prefix.
---
## OWNERSHIP & INFRASTRUCTURE
| Attribute | Value |
|---|---|
| **Organization** | Hetzner Online GmbH - Contact Role |
| **ASN** | 24940 |
| **Network** | 46.224.0.0/15 |
| **RIR** | RIPE |
| **Infrastructure Type** | Cloud Compute / Hosting |
| **Geolocation** | Nuremberg, Bavaria, DE (51.17°N, 10.45°E) |
DNS Resolution: `static.82.201.224.46.clients.your-server.de`
PTR Record: Confirmed forward resolution to your-server.de domain
Email Auth: SPF and DMARC records present
---
## THREAT ASSESSMENT
Risk Score: 40/100 (Moderate)
Provider Score: 0
Abuse Confidence Score: N/A
Blacklist Count: 2 DNSBL listings out of 8 total checks
DNSBL Listed: Yes (2/8 lists)
Threat Indicators:
- Not a known attacker
- Not a spam source
- Not a Tor exit node
- No active campaigns or known threat associations
- No open ports or active services detected
Control Plane:
- Route stability: False
- Route changes (30d): 0
- RPKI State: Not evaluated
- DNSSEC: Valid
---
## TEMPORAL ANALYSIS
Observation History: 21 signals recorded
Latest Activity: 2026-06-14
Threat Persistence: 0 days
Is Persistently Malicious: No
Key Historical Signals:
- 2026-06-14: Hetzner provider confirmation, Germany geolocation
- 2026-06-14: Operator score 0.3478 (Basic classification)
- 2026-06-07: Subnet classification "mostly_clean" with abuse density 1
- 1 threat sibling observed in /24 neighborhood
Ownership Stability: 0 ownership changes recorded
---
## NEIGHBORHOOD ANALYSIS
Subnet: 46.224.201.82/24
Abuse Density: 1 (Low-Moderate)
Classification: mostly_clean
Total Siblings: 1
Active Siblings: 1
Threat Siblings: 1
Risk Distribution: No high-risk siblings detected in the immediate /24 subnet.
---
## RELATIONSHIP GRAPH
Total Relationships: 36
Key Associations:
- DNS: static.82.201.224.46.clients.your-server.de (multiple associations)
- Network: CLOUD-NBG1 (cloud infrastructure designation)
- Multiple duplicate DNS/network correlations indicating stable configuration
---
## RECOMMENDED ACTIONS
Risk Score: 40/100 โ Monitoring Recommended
Firewall Rules:
```bash
# iptables
iptables -A INPUT -s 46.224.201.82 -j DROP
# nftables
nft add rule inet filter input ip saddr 46.224.201.82 drop
# pfSense
46.224.201.82/32
```
Cloud Platform Blocks:
- Cloudflare WAF: Block with expression `ip.src eq 46.224.201.82`
- AWS WAF: Address `46.224.201.82/32` with description "IPDebrief risk 40"
Operational Notes:
- No services detected on target IP
- Blocking recommended but should be combined with other threat signals
- Provider (Hetzner) is legitimate cloud infrastructure provider
- DNSBL listings suggest prior reputation issues but no current active threats
---
## ANALYST ASSESSMENT
This IP address represents a legitimate cloud compute infrastructure asset from Hetzner's German hosting infrastructure. While the moderate risk score (40) and DNSBL listings indicate prior reputation issues, current observation shows no active malicious behavior, no open services, and stable ownership. The single threat sibling in the /24 subnet warrants attention but does not indicate immediate threat to this specific address.
Recommendation: Monitor traffic patterns from this IP. Implement firewall rules if the organization has blocked similar Hetzner addresses historically. No immediate threat mitigation required based on current data.
---
*Report generated via IPDebrief Intelligence Platform*
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Hetzner Online GmbH - Contact Role |
| ASN | AS24940 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | static.82.201.224.46.clients.your-server.de |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | static.82.201.224.46.clients.your-server.de |
๐ DNS Hygiene
| Hygiene Score | 100% (Excellent) |
| SPF | Present |
| DMARC | Present |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Present |
โ๏ธ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Firewalled / No Services |
| Network Tier | Hosting โ Infrastructure provider without advanced routing |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 25% | 2 | 4 |
| routing | 13% | 1 | 1 |
| services | 15% | 2 | 2 |
| ownership | 24% | 2 | 3 |
| reputation | 26% | 1 | 3 |
| geolocation | 25% | 2 | 2 |
| Overall | 21% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-14 13:24:53 UTC |
| Last Seen | 2026-06-28 00:58:53 UTC |
| Profile Built | 2026-06-28 19:04:42 UTC |
| Data Freshness | Live |
| Signal Types | 23 |
| Total Observations | 26 |
Full dossier details are available via our API.