80.187.125.226
IP Intelligence Briefing: 80.187.125.226
Date: 2026-06-08
---
**1. Core Profile**
- Risk Score: 0 (Low Risk)
- Ownership: Registered to Alexander Schloesser (Germany).
- Geolocation: Hanover, Lower Saxony, Germany (52.37°N, 9.72°E).
- Network Role: Firewalled / No Services (no open ports, no TLS/HTTP activity).
- Provider: Deutsche Telekom AG (AS3320).
---
**2. Threat Indicators**
- No Malicious Activity: No indicators of compromise (IOC), spam, or known attacker associations.
- DNS: No resolvable PTR records or domains linked to the IP.
- BGP: Prefix 80.187.0.0/16 registered to Deutsche Telekom AG.
---
**3. Observation History**
- 15 Signals Recorded:
- DNS Associations: Attempted resolution to `d1-online.com` (no valid records).
- BGP Data: Linked to Deutsche Telekom AGโs network.
- No Recent Threats: No high-severity alerts or abuse reports in the last 30 days.
---
**4. Network Relationships**
- Subnet: Part of 80.187.125.0/24 (no active siblings detected).
- Linked Entities:
- Same network as CUSTOMERS-DE (likely a customer network segment).
- DNS errors observed (potential misconfiguration or spoofing attempts).
---
**5. Neighborhood Analysis**
- Subnet Abuse Density: 0% (no malicious neighbors detected).
- Neighbors: No sibling IPs found in the /24 subnet.
---
**6. Recommendations**
- Monitor: Track DNS resolution attempts and BGP updates for anomalies.
- No Action Required: No immediate threat detected; maintain current security posture.
---
Conclusion: 80.187.125.226 is a static, non-malicious host owned by a private individual in Germany. No active threats or network anomalies detected. SOC teams should continue routine monitoring for unexpected behavior.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | Alexander Schloesser |
| ASN | AS3320 |
| Network Name | โ |
| CIDR Block | โ |
| RIR | RIPE |
| Country | โ |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR | tmo-125-226.customers.d1-online.com |
| Forward Confirmed | Yes โ FCrDNS verified |
| Forward Hostnames | tmo-125-226.customers.d1-online.com |
๐ DNS Hygiene
| Hygiene Score | 40% (Fair) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Closed Ports | 22, 25, 80, 443, 3389, 8080, 8443 (0 open / 7 scanned) | ||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 0% | 0 | 0 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 11% | 5 | 6 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (70%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-17 03:09:35 UTC |
| Last Seen | 2026-06-08 05:12:22 UTC |
| Profile Built | 2026-06-08 06:04:48 UTC |
| Data Freshness | Live |
| Signal Types | 18 |
| Total Observations | 19 |
Full dossier details are available via our API.