IP Address

172.86.95.115

IPv4 Public
DE DE
AS30823
aurologic GmbH
3,163 Reports
This IP is under Observation Suspicious activity detected - monitor closely
10/10 Threat
59% Confidence
3,163 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Above Average Risk
DE
DE Location
aurologic GmbH ASN 30823
3,163 Reports
Honeypot Data Source

Extreme Threat

IP 172.86.95.115 is a critical-risk address that automated honeypot sensors flagged 3,163 times for hacking activity originating from a German network operated by aurologic GmbH. The IP carries a maximum threat level of 10/10, though the confidence score of 59 percent reflects the nature of automated detection where patterns may occasionally overlap with legitimate traffic. The reported activity falls entirely within the Hacking category, indicating systematic intrusion attempts rather than opportunistic noise.

Analysis of the detection data reveals concentrated malicious traffic detected exclusively by automated honeypot sensors between October 2025 dates, placing the activity squarely within the recent reporting window. The network is registered to aurologic GmbH, an AS30823 operator in Germany, which provides geographic and organizational context for the source. Despite an activity frequency rated at 0/10, the sheer volume of 3,163 total reports demonstrates persistent, high-intensity engagement with exposed attack surfaces over a compressed timeframe. The 20 most recent reports all classify the threat uniformly as Hacking, suggesting a consistent methodology rather than varied attack types.

The Hacking classification encompasses broad intrusion activity including vulnerability exploitation attempts, unauthorized access probing, and exploitation of misconfigured services. This IP's sustained report volume indicates automated tooling designed to discover and compromise exposed entry points at scale. Real-world risk includes potential credential compromise, data exfiltration, or use of compromised systems as launchpads for further attacks. Even with moderate confidence, the threat level and volume warrant treating this address as actively hostile.

Site operators should immediately block IP 172.86.95.115 at the firewall level and implement automated defensive tools such as fail2ban to dynamically ban repeated offenders. Network authentication mechanisms should be hardened through key-based authentication, strong password policies, and two-factor authentication where feasible. Regular patching of SSH, web servers, and any exposed services eliminates the vulnerabilities these automated attacks attempt to exploit. Continuous monitoring and log analysis will help identify any successful intrusion attempts that bypass initial defenses.

More threatening than 89% of monitored IPs

Threat Categories

Hacking 30

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

Reputable Network

This IP is hosted on a network (ASN 30823) with generally good reputation. The ISP aurologic GmbH maintains standard security practices.

The malicious activity may represent an isolated compromised system rather than systematic abuse.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 0/10 Inactive
Confidence Score 59% High Confidence

Confidence History

18. Oct 2025 - 24. Oct 2025
59% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
10 of 3163 shown

Technical Details

Basic Information

IP Address
172.86.95.115
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class B

Geolocation

Country
DE DE
ASN
AS30823
ISP
aurologic GmbH

DNS Information

Reverse DNS
115.95.86.172.static.cloudzy.com
PTR Record
Yes
Connection Type
Dynamic

Statistics

Total Reports
3,163
First Reported
14 Oct 2025
Last Reported
24 Oct 2025, 06:02

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS30823
aurologic GmbH
DE DE

Network Threat Assessment

3/10
This network appears to be relatively clean with very low threat indicators.

Network Statistics

15
Total IPs Monitored
15,627
Total Reports
1041.8
Reports per IP

Network Context

This IP address belongs to aurologic GmbH (AS30823), which manages 15 IP addresses in our monitoring system. Out of these, 15,627 have been reported for suspicious activities, resulting in a network-wide threat level of 3/10.

Network status: This network appears to be well-maintained with low threat indicators.

Comparative Analysis

How this IP compares to others in our threat intelligence database

89 %

Global Threat Ranking

This IP is more threatening than 89% of all IPs in our database.

High Threat Percentile

Global Comparison

Compared against 199,484 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 3,163 avg: 23 ++

Network Comparison

Compared against 18 IPs in ASN 30823

Threat Level 10/10 network avg: 6.8 +
Total Reports 3,163 network avg: 868 ++
Network aurologic GmbH has overall threat level 3/10

Geographic Comparison

Compared against 7,142 IPs in DE

Threat Level 10/10 country avg: 5.8 ++
Total Reports 3,163 country avg: 61 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,140 threat incidents tracked globally • Last 24h: 19,043 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,446 20.5%
  2. 02
    IN
    India IN
    29,023 15.5%
  3. 03
    CN
    China CN
    26,021 13.9%
  4. 04
    BR
    Brazil BR
    10,256 5.5%
  5. 05
    DE
    Germany DE THIS IP
    7,142 3.8%
  6. 06
    SG
    Singapore SG
    6,476 3.5%
  7. 07
    ID
    Indonesia ID
    5,539 3%
  8. 08
    RU
    Russia RU
    4,703 2.5%
  9. 09
    PK
    Pakistan PK
    4,654 2.5%
  10. 10
    NL
    Netherlands NL
    4,356 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same subnet range, likely same network segment.

2 Related IPs
9/10 Avg Threat
68% Avg Confidence
2 High Threat
High-risk network: Majority of related IPs are flagged
172.86.95.45 8/10
Confidence 76%
Reports 38
Location DE DE
4 Apr 2026
172.86.95.98 10/10
Confidence 59%
Reports 11,273
Location DE DE
18 Oct 2025

IPs from the same country with similar threat profiles.

15 Related IPs
8.6/10 Avg Threat
100% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
45.92.11.94 8/10
Confidence 100%
Reports 274
ISP Contabo GmbH
1 Mar 2026
88.198.64.173 8/10
Confidence 100%
Reports 174
ISP Hetzner Online ...
22 May 2026
159.100.13.237 8/10
Confidence 100%
Reports 169
ISP Ultahost, Inc.
6 May 2026
46.224.234.158 8/10
Confidence 100%
Reports 128
ISP Hetzner Online ...
9 Jun 2026
5.83.135.249 8/10
Confidence 100%
Reports 116
ISP active 1 GmbH
7 Jun 2026
3.70.164.132 8/10
Confidence 100%
Reports 99
ISP Amazon.com, Inc.
19 May 2026
118.193.59.142 7/10
Confidence 100%
Reports 89
ISP UCLOUD INFORMAT...
5 Jun 2026
94.26.106.90 8/10
Confidence 100%
Reports 86
ISP dataforest GmbH
7 Jun 2026
49.12.3.147 10/10
Confidence 100%
Reports 78
ISP Hetzner Online ...
31 May 2026
94.26.106.111 10/10
Confidence 100%
Reports 75
ISP dataforest GmbH
13 May 2026
80.158.109.51 10/10
Confidence 100%
Reports 73
ISP T-Systems Inter...
6 Jun 2026
212.224.100.2 10/10
Confidence 100%
Reports 61
ISP firstcolo GmbH
31 May 2026
94.130.219.13 10/10
Confidence 100%
Reports 58
ISP Hetzner Online ...
9 May 2026
5.83.135.102 8/10
Confidence 100%
Reports 44
ISP AltunHOST LTD
8 Jun 2026
94.26.106.209 8/10
Confidence 100%
Reports 38
ISP dataforest GmbH
4 Jun 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.5/10 Avg Threat
59% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
77.90.185.141 10/10
Confidence 59%
Reports 46,654
Location DE DE
11 Nov 2025
198.23.190.58 10/10
Confidence 59%
Reports 40,333
Location US US
17 Nov 2025
45.234.176.18 8/10
Confidence 59%
Reports 31,506
Location BR BR
5 Oct 2025
103.146.203.60 10/10
Confidence 59%
Reports 31,330
Location ID ID
1 Sep 2025
176.65.134.8 10/10
Confidence 59%
Reports 29,990
Location DE DE
29 Sep 2025
176.65.134.7 7/10
Confidence 59%
Reports 26,776
Location DE DE
21 Sep 2025
2.57.121.148 10/10
Confidence 59%
Reports 25,577
Location RO RO
1 Oct 2025
103.91.140.28 10/10
Confidence 59%
Reports 23,540
Location PH PH
16 Sep 2025
206.81.13.37 8/10
Confidence 59%
Reports 20,549
Location US US
5 Sep 2025
104.164.110.7 10/10
Confidence 59%
Reports 17,849
Location US US
27 Dec 2025
185.243.96.105 10/10
Confidence 59%
Reports 17,727
Location UA UA
5 Feb 2026
45.187.40.40 10/10
Confidence 59%
Reports 16,203
Location BR BR
9 Sep 2025
198.12.68.114 10/10
Confidence 59%
Reports 14,600
Location US US
17 Nov 2025
173.231.185.164 10/10
Confidence 59%
Reports 14,563
Location US US
15 Sep 2025
103.162.15.126 10/10
Confidence 59%
Reports 13,612
Location VN VN
8 Nov 2025

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "172.86.95.115",
    "threat_level": 10,
    "confidence_score": 59,
    "total_reports": 3163,
    "country_code": "DE",
    "isp_name": "aurologic GmbH",
    "asn": "30823",
    "first_reported": "2025-10-14 06:17:22",
    "last_reported": "2025-10-24 06:02:56",
    "exported_at": "2026-06-09T09:01:30+02:00",
    "source": "https://reportedip.de/ip/172.86.95.115/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses