IP Address

176.65.134.34

IPv4 Public
DE DE
AS208191
Go Host Ltd
748 Reports
This IP is on the Blacklist High confidence threat - blocking recommended
10/10 Threat
85% Confidence
748 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Top 5% Most Dangerous
DE
DE Location
Go Host Ltd ASN 208191
748 Reports
Honeypot Data Source

Critical Threat

IP 176.65.134.34 is a critical-risk address operated by Go Host Ltd in Germany that has been linked to 714 hacking intrusion attempts detected by automated honeypot sensors over approximately eight months of sustained malicious activity.

The IP originates from AS208191 and has accumulated a threat confidence score of 86% based on consistent hostile behavior observed between November 2025 and June 2026. All 714 reports attribute the malicious activity to general hacking intrusion attempts, with automated honeypot sensors identifying repeated connection attacks across 20 distinct detection points. The 8/10 activity frequency score indicates persistent, deliberate engagement rather than opportunistic scanning, and the 10/10 threat level confirms this address poses a severe risk to any exposed service.

Hacking activity encompasses unauthorized access attempts, vulnerability exploitation and intrusion behaviors that can lead to system compromise, data exfiltration or further network propagation. This IP's sustained engagement with honeypot infrastructure over an extended period signals systematic reconnaissance and exploitation efforts targeting internet-facing services. The volume and persistence of connection attempts elevate the real-world risk considerably, as such behavior frequently precedes credential compromise or vulnerability-driven breaches.

Administrators should block this IP at the firewall level immediately and implement geographic or ASN-based restrictions if legitimate traffic from this network is not expected. Enforcing strong authentication mechanisms, including multi-factor authentication and account lockout policies, reduces the impact of any successful intrusion attempt. Deploying fail2ban or equivalent log-analysis tools can automatically mitigate repeated connection patterns, while maintaining up-to-date intrusion detection signatures ensures prompt alerting on related activity. Regular review of authentication logs for source IP 176.65.134.34 is strongly recommended.

More threatening than 95% of monitored IPs

Threat Categories

Hacking 28
IoT Targeted 2

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

Behavioral Analysis

Activity Pattern: Consistent Activity

Steady malicious activity over 4 weeks indicates persistent threat actor operations.

First Observed 11. May 2026
Last Activity 9. June 2026
Recent (7 days) 30 incidents

High-Risk Network Association

This IP belongs to a network (ASN 208191) with elevated threat levels. The ISP Go Host Ltd hosts multiple reported malicious addresses, suggesting systemic security issues or permissive policies.

Network-wide patterns may indicate this is part of a larger malicious infrastructure.

Security Recommendations

Long-term blocking recommended.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 8/10 High
Confidence Score 85% Verified

Confidence History

3. Jun 2026 - 9. Jun 2026
85% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
New Hacking Honeypot 75%
Hacking Honeypot 75%
IoT Targeted Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
IoT Targeted Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
10 of 748 shown

Technical Details

Basic Information

IP Address
176.65.134.34
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class B

Geolocation

Country
DE DE
ASN
AS208191
ISP
Go Host Ltd

DNS Information

Reverse DNS
None
PTR Record
No
Connection Type
Static

Statistics

Total Reports
748
First Reported
6 Nov 2025
Last Reported
9 Jun 2026, 02:13

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS208191
Go Host Ltd
IR IR

Network Threat Assessment

7/10
This network shows moderate threat levels with some malicious activity patterns.

Network Statistics

18
Total IPs Monitored
58,371
Total Reports
3242.8
Reports per IP

Network Context

This IP address belongs to Go Host Ltd (AS208191), which manages 18 IP addresses in our monitoring system. Out of these, 58,371 have been reported for suspicious activities, resulting in a network-wide threat level of 7/10.

Network warning: This network has elevated threat levels. Exercise caution when interacting with IPs from this ASN.

Comparative Analysis

How this IP compares to others in our threat intelligence database

95 %

Global Threat Ranking

This IP is more threatening than 95% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 199,215 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 748 avg: 23 ++

Network Comparison

Compared against 18 IPs in ASN 208191

Threat Level 10/10 network avg: 8.3 +
Total Reports 748 network avg: 3,239 --
Network Go Host Ltd has overall threat level 7/10

Geographic Comparison

Compared against 7,138 IPs in DE

Threat Level 10/10 country avg: 5.8 ++
Total Reports 748 country avg: 61 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

186,914 threat incidents tracked globally • Last 24h: 18,893 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,421 20.6%
  2. 02
    IN
    India IN
    28,931 15.5%
  3. 03
    CN
    China CN
    26,004 13.9%
  4. 04
    BR
    Brazil BR
    10,236 5.5%
  5. 05
    DE
    Germany DE THIS IP
    7,138 3.8%
  6. 06
    SG
    Singapore SG
    6,475 3.5%
  7. 07
    ID
    Indonesia ID
    5,522 3%
  8. 08
    RU
    Russia RU
    4,700 2.5%
  9. 09
    PK
    Pakistan PK
    4,646 2.5%
  10. 10
    NL
    Netherlands NL
    4,354 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same subnet range, likely same network segment.

9 Related IPs
7.2/10 Avg Threat
52% Avg Confidence
7 High Threat
High-risk network: Majority of related IPs are flagged
176.65.134.24 10/10
Confidence 74%
Reports 15
Location SI SI
28 Mar 2026
176.65.134.15 10/10
Confidence 67%
Reports 215
Location DE DE
14 Dec 2025
176.65.134.22 10/10
Confidence 66%
Reports 52
Location SI SI
19 Mar 2026
176.65.134.8 10/10
Confidence 59%
Reports 29,990
Location DE DE
29 Sep 2025
176.65.134.7 7/10
Confidence 59%
Reports 26,776
Location DE DE
21 Sep 2025
176.65.134.20 10/10
Confidence 58%
Reports 110
Location SI SI
15 Mar 2026
176.65.134.36 0/10
Confidence 40%
Reports 2
Location SI SI
5 Apr 2026
176.65.134.27 0/10
Confidence 36%
Reports 2
Location SI SI
21 Mar 2026
176.65.134.4 8/10
Confidence 13%
Reports 4
Location DE DE
23 Nov 2025

IPs from the same country with similar threat profiles.

15 Related IPs
8.6/10 Avg Threat
100% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
45.92.11.94 8/10
Confidence 100%
Reports 274
ISP Contabo GmbH
1 Mar 2026
88.198.64.173 8/10
Confidence 100%
Reports 174
ISP Hetzner Online ...
22 May 2026
159.100.13.237 8/10
Confidence 100%
Reports 169
ISP Ultahost, Inc.
6 May 2026
46.224.234.158 8/10
Confidence 100%
Reports 128
ISP Hetzner Online ...
9 Jun 2026
5.83.135.249 8/10
Confidence 100%
Reports 116
ISP active 1 GmbH
7 Jun 2026
3.70.164.132 8/10
Confidence 100%
Reports 99
ISP Amazon.com, Inc.
19 May 2026
118.193.59.142 7/10
Confidence 100%
Reports 89
ISP UCLOUD INFORMAT...
5 Jun 2026
94.26.106.90 8/10
Confidence 100%
Reports 86
ISP dataforest GmbH
7 Jun 2026
49.12.3.147 10/10
Confidence 100%
Reports 78
ISP Hetzner Online ...
31 May 2026
94.26.106.111 10/10
Confidence 100%
Reports 75
ISP dataforest GmbH
13 May 2026
80.158.109.51 10/10
Confidence 100%
Reports 73
ISP T-Systems Inter...
6 Jun 2026
212.224.100.2 10/10
Confidence 100%
Reports 61
ISP firstcolo GmbH
31 May 2026
94.130.219.13 10/10
Confidence 100%
Reports 58
ISP Hetzner Online ...
9 May 2026
5.83.135.102 8/10
Confidence 100%
Reports 44
ISP AltunHOST LTD
8 Jun 2026
94.26.106.209 8/10
Confidence 100%
Reports 38
ISP dataforest GmbH
4 Jun 2026

IPs with similar threat level and confidence scores.

15 Related IPs
8.5/10 Avg Threat
85% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
143.198.150.150 8/10
Confidence 85%
Reports 7,702
Location US US
9 Jun 2026
143.198.238.87 8/10
Confidence 85%
Reports 7,057
Location US US
9 Jun 2026
209.38.131.131 8/10
Confidence 85%
Reports 6,754
Location US US
9 Jun 2026
139.59.170.85 8/10
Confidence 85%
Reports 5,112
Location GB GB
9 Jun 2026
165.227.172.206 8/10
Confidence 85%
Reports 4,597
Location DE DE
9 Jun 2026
2.57.121.25 10/10
Confidence 85%
Reports 2,474
Location RO RO
9 Jun 2026
64.62.156.66 8/10
Confidence 85%
Reports 641
Location US US
9 Jun 2026
64.62.156.222 10/10
Confidence 85%
Reports 617
Location US US
9 Jun 2026
64.62.156.202 8/10
Confidence 85%
Reports 590
Location US US
9 Jun 2026
64.62.197.107 8/10
Confidence 85%
Reports 535
Location US US
9 Jun 2026
64.62.156.38 8/10
Confidence 85%
Reports 518
Location US US
8 Jun 2026
65.49.1.152 8/10
Confidence 85%
Reports 515
Location US US
9 Jun 2026
65.49.1.202 8/10
Confidence 85%
Reports 508
Location US US
9 Jun 2026
65.49.1.222 10/10
Confidence 85%
Reports 441
Location US US
9 Jun 2026
20.58.146.18 10/10
Confidence 85%
Reports 407
Location AU AU
13 Dec 2025

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "176.65.134.34",
    "threat_level": 10,
    "confidence_score": 85,
    "total_reports": 748,
    "country_code": "DE",
    "isp_name": "Go Host Ltd",
    "asn": "208191",
    "first_reported": "2025-11-06 13:08:31",
    "last_reported": "2026-06-09 02:13:57",
    "exported_at": "2026-06-09T07:00:30+02:00",
    "source": "https://reportedip.de/ip/176.65.134.34/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses