IP Address

204.76.203.30

IPv4 Public
NL NL
AS51396
Pfcloud UG
1,123 Reports
This IP is on the Blacklist High confidence threat - blocking recommended
10/10 Threat
73% Confidence
1,123 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Top 10% High Threat
NL
NL Location
Pfcloud UG ASN 51396
1,123 Reports
Honeypot Data Source

Severe Risk

IP 204.76.203.30 is a maximum-threat address originating from the Netherlands that has been linked to 1,112 hacking reports through automated honeypot sensors over a seven-month period, indicating sustained and aggressive intrusion activity.

The address resolves to AS51396 under the network operator Pfcloud UG. With a threat level of 10 out of 10 and an activity frequency rating of 8 out of 10, this IP demonstrates consistent, high-volume hostile behavior. All 20 of the most recent reports categorize the activity as hacking, encompassing intrusion attempts, vulnerability exploitation, and unauthorized access probes. The sustained nature of the activity from October 2025 through May 2026, combined with detection across 20 separate honeypot sensors, indicates persistent and automated attack infrastructure rather than isolated scanning.

The dominant hacking classification represents a composite threat vector that includes automated vulnerability scanning, credential-based attacks, and targeted exploitation of unpatched services. The sheer volume of reports and extended operational window suggest the address is part of an organized campaign, likely operating from a commercial hosting environment that facilitates widespread scanning and attack operations. Organizations with internet-exposed services face direct exposure to compromise attempts originating from this address.

Immediate defensive measures should include blocking or rate-limiting connections from this IP at the network perimeter using standard firewall or access-control rules. Deploying automated response tools such as fail2ban provides dynamic protection against the repeated connection patterns characteristic of this threat. Strengthening authentication mechanisms through strong password policies, multi-factor authentication, and account lockout thresholds significantly reduces the effectiveness of credential-based attacks. Regular vulnerability assessments and timely patching of internet-facing services eliminate the exploitation vectors this address targets.

More threatening than 93% of monitored IPs

Threat Categories

Hacking 30

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

Behavioral Analysis

Activity Pattern: Consistent Activity

Steady malicious activity over 3 weeks indicates persistent threat actor operations.

First Observed 12. May 2026
Last Activity 7. June 2026
Recent (7 days) 11 incidents

Reputable Network

This IP is hosted on a network (ASN 51396) with generally good reputation. The ISP Pfcloud UG maintains standard security practices.

The malicious activity may represent an isolated compromised system rather than systematic abuse.

Security Recommendations

Long-term blocking recommended.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 8/10 High
Confidence Score 73% High Confidence

Confidence History

16. May 2026 - 7. Jun 2026
73% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
10 of 1123 shown

Technical Details

Basic Information

IP Address
204.76.203.30
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class C

Geolocation

Country
NL NL
ASN
AS51396
ISP
Pfcloud UG

DNS Information

Reverse DNS
204.76.203.30.ptr.pfcloud.network
PTR Record
Yes
Connection Type
Dynamic

Statistics

Total Reports
1,123
First Reported
12 Oct 2025
Last Reported
7 Jun 2026, 20:58

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS51396
Pfcloud UG (haftungsbeschrankt)
NL NL

Network Threat Assessment

3/10
This network appears to be relatively clean with very low threat indicators.

Network Statistics

429
Total IPs Monitored
82,554
Total Reports
192.4
Reports per IP

Network Context

This IP address belongs to Pfcloud UG (haftungsbeschrankt) (AS51396), which manages 429 IP addresses in our monitoring system. Out of these, 82,554 have been reported for suspicious activities, resulting in a network-wide threat level of 3/10.

Network status: This network appears to be well-maintained with low threat indicators.

Comparative Analysis

How this IP compares to others in our threat intelligence database

93 %

Global Threat Ranking

This IP is more threatening than 93% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 199,335 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 1,123 avg: 23 ++

Network Comparison

Compared against 514 IPs in ASN 51396

Threat Level 10/10 network avg: 7.8 +
Total Reports 1,123 network avg: 206 ++
Network Pfcloud UG has overall threat level 3/10

Geographic Comparison

Compared against 4,355 IPs in NL

Threat Level 10/10 country avg: 6.0 ++
Total Reports 1,123 country avg: 95 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,017 threat incidents tracked globally • Last 24h: 18,967 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,426 20.5%
  2. 02
    IN
    India IN
    28,977 15.5%
  3. 03
    CN
    China CN
    26,016 13.9%
  4. 04
    BR
    Brazil BR
    10,249 5.5%
  5. 05
    DE
    Germany DE
    7,139 3.8%
  6. 06
    SG
    Singapore SG
    6,475 3.5%
  7. 07
    ID
    Indonesia ID
    5,533 3%
  8. 08
    RU
    Russia RU
    4,701 2.5%
  9. 09
    PK
    Pakistan PK
    4,647 2.5%
  10. 10
    NL
    Netherlands NL THIS IP
    4,355 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same Autonomous System (AS) network provider.

20 Related IPs
9.6/10 Avg Threat
96% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
192.109.200.101 8/10
Confidence 100%
Reports 266
Location SE SE
9 Jun 2026
217.60.241.103 8/10
Confidence 100%
Reports 52
Location IR IR
9 Jun 2026
192.109.200.237 10/10
Confidence 100%
Reports 35
Location SE SE
18 May 2026
45.135.193.131 10/10
Confidence 98%
Reports 69
Location DE DE
29 Apr 2026
45.153.34.226 10/10
Confidence 98%
Reports 48
Location NL NL
17 May 2026
45.156.87.254 10/10
Confidence 98%
Reports 11
Location NL NL
23 May 2026
2a14:7c2:12cd:0:6d2d:5f7b:2405:f48f 8/10
Confidence 97%
Reports 33
Location DE DE
12 May 2026
176.65.139.8 8/10
Confidence 96%
Reports 268
Location DE DE
11 May 2026
45.153.34.87 10/10
Confidence 96%
Reports 66
Location NL NL
9 Jun 2026
176.65.148.99 10/10
Confidence 96%
Reports 27
Location NL NL
28 May 2026
176.65.139.156 10/10
Confidence 94%
Reports 1,152
Location DE DE
23 May 2026
176.65.139.64 10/10
Confidence 94%
Reports 744
Location DE DE
23 May 2026
176.65.148.84 10/10
Confidence 94%
Reports 509
Location NL NL
9 Jun 2026
204.76.203.226 10/10
Confidence 94%
Reports 482
Location NL NL
26 May 2026
204.76.203.225 10/10
Confidence 94%
Reports 480
Location NL NL
26 May 2026
204.76.203.224 10/10
Confidence 94%
Reports 476
Location NL NL
26 May 2026
45.156.87.127 10/10
Confidence 94%
Reports 437
Location NL NL
9 Jun 2026
45.135.194.83 10/10
Confidence 94%
Reports 227
Location DE DE
9 Jun 2026
176.65.139.11 10/10
Confidence 94%
Reports 201
Location DE DE
18 May 2026
176.65.149.162 10/10
Confidence 94%
Reports 194
Location NL NL
13 Jan 2026

IPs from the same subnet range, likely same network segment.

20 Related IPs
9.8/10 Avg Threat
86% Avg Confidence
20 High Threat
High-risk network: Majority of related IPs are flagged
204.76.203.226 10/10
Confidence 94%
Reports 482
Location NL NL
26 May 2026
204.76.203.225 10/10
Confidence 94%
Reports 480
Location NL NL
26 May 2026
204.76.203.224 10/10
Confidence 94%
Reports 476
Location NL NL
26 May 2026
204.76.203.222 10/10
Confidence 94%
Reports 120
Location NL NL
7 Jun 2026
204.76.203.125 10/10
Confidence 94%
Reports 116
Location NL NL
20 Jan 2026
204.76.203.214 10/10
Confidence 94%
Reports 96
Location NL NL
7 Jun 2026
204.76.203.221 10/10
Confidence 94%
Reports 94
Location NL NL
7 Jun 2026
204.76.203.15 10/10
Confidence 94%
Reports 32
Location NL NL
9 Jun 2026
204.76.203.56 10/10
Confidence 90%
Reports 1,096
Location NL NL
30 Apr 2026
204.76.203.215 8/10
Confidence 90%
Reports 1,086
Location NL NL
20 Apr 2026
204.76.203.206 10/10
Confidence 90%
Reports 250
Location NL NL
17 May 2026
204.76.203.73 10/10
Confidence 88%
Reports 1,724
Location NL NL
26 May 2026
204.76.203.213 10/10
Confidence 82%
Reports 561
Location NL NL
7 Jun 2026
204.76.203.6 10/10
Confidence 80%
Reports 112
Location NL NL
27 May 2026
204.76.203.233 8/10
Confidence 79%
Reports 686
Location NL NL
21 May 2026
204.76.203.212 10/10
Confidence 79%
Reports 451
Location NL NL
7 Jun 2026
204.76.203.26 10/10
Confidence 77%
Reports 11
Location NL NL
11 May 2026
204.76.203.31 10/10
Confidence 71%
Reports 29
Location NL NL
8 Nov 2025
204.76.203.192 10/10
Confidence 68%
Reports 458
Location NL NL
30 Sep 2025
204.76.203.81 10/10
Confidence 68%
Reports 8
Location NL NL
8 Jun 2026

IPs from the same country with similar threat profiles.

15 Related IPs
8.9/10 Avg Threat
100% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
52.232.35.131 8/10
Confidence 100%
Reports 106
ISP Microsoft Corpo...
14 May 2026
158.94.210.72 8/10
Confidence 100%
Reports 77
ISP Omegatech LTD
1 Jun 2026
45.148.10.166 10/10
Confidence 100%
Reports 35
ISP Techoff Srv Lim...
13 May 2026
45.148.10.249 10/10
Confidence 100%
Reports 27
ISP Techoff Srv Lim...
28 May 2026
45.148.10.5 8/10
Confidence 100%
Reports 26
ISP Techoff Srv Lim...
29 May 2026
45.148.10.62 8/10
Confidence 100%
Reports 19
ISP Techoff Srv Lim...
5 Jun 2026
93.119.1.128 8/10
Confidence 100%
Reports 18
ISP Signet B.V.
8 May 2026
77.246.100.120 10/10
Confidence 100%
Reports 17
ISP Servers Tech Fzco
3 Jun 2026
20.224.168.82 10/10
Confidence 100%
Reports 16
ISP Microsoft Corpo...
9 Jun 2026
45.154.98.96 8/10
Confidence 100%
Reports 15
ISP 1337 Services GmbH
6 Jun 2026
46.151.182.172 8/10
Confidence 100%
Reports 13
ISP Ghosty Networks...
8 Jun 2026
83.83.112.125 10/10
Confidence 100%
Reports 12
ISP Vodafone Libert...
1 Jun 2026
213.176.16.100 10/10
Confidence 99%
Reports 44
ISP Global Connecti...
4 Jun 2026
107.189.27.179 10/10
Confidence 99%
Reports 43
ISP RouterHosting LLC
7 Jun 2026
45.94.31.24 8/10
Confidence 99%
Reports 34
ISP 1337 Services GmbH
27 May 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.7/10 Avg Threat
73% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
92.118.39.62 10/10
Confidence 73%
Reports 12,949
Location US US
9 Jun 2026
45.148.10.240 10/10
Confidence 73%
Reports 9,300
Location NL NL
8 Jun 2026
92.63.197.23 8/10
Confidence 73%
Reports 2,509
Location UA UA
6 Apr 2026
85.158.110.210 8/10
Confidence 73%
Reports 2,258
Location NL NL
8 Apr 2026
138.68.155.239 10/10
Confidence 73%
Reports 1,990
Location GB GB
15 Apr 2026
45.82.78.100 10/10
Confidence 73%
Reports 1,965
Location DE DE
8 Jun 2026
170.254.229.191 10/10
Confidence 73%
Reports 1,164
Location CO CO
8 Jun 2026
78.153.140.93 10/10
Confidence 73%
Reports 1,135
Location GB GB
5 Jun 2026
179.32.33.161 10/10
Confidence 73%
Reports 941
Location CO CO
4 Jun 2026
85.217.149.25 10/10
Confidence 73%
Reports 921
Location CA CA
8 Jun 2026
36.104.144.114 10/10
Confidence 73%
Reports 874
Location CN CN
26 May 2026
94.102.49.155 10/10
Confidence 73%
Reports 833
Location NL NL
4 Jun 2026
103.69.189.95 10/10
Confidence 73%
Reports 760
Location VN VN
24 Nov 2025
78.153.140.156 10/10
Confidence 73%
Reports 748
Location GB GB
9 Jun 2026
78.153.140.250 10/10
Confidence 73%
Reports 678
Location GB GB
5 Jun 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "204.76.203.30",
    "threat_level": 10,
    "confidence_score": 73,
    "total_reports": 1123,
    "country_code": "NL",
    "isp_name": "Pfcloud UG",
    "asn": "51396",
    "first_reported": "2025-10-12 13:56:11",
    "last_reported": "2026-06-07 20:58:51",
    "exported_at": "2026-06-09T07:58:35+02:00",
    "source": "https://reportedip.de/ip/204.76.203.30/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses