IP Address

212.224.100.2

IPv4 Public
DE DE
AS44066
firstcolo GmbH
61 Reports
This IP is on the Blacklist High confidence threat - blocking recommended
10/10 Threat
100% Confidence
61 Reports

Threat Intelligence Analysis

Automated assessment based on aggregated, anonymized threat data

Top 5% Most Dangerous
DE
Germany Location
firstcolo GmbH ASN 44066
61 Reports
Mixed Data Source

Maximum Danger

IP 212.224.100.2 poses maximum danger with 61 documented security incidents at threat level 10/10.

Confirmed threat actor with 100% confidence across diverse intelligence sources.

More threatening than 100% of monitored IPs

Threat Categories

Brute-Force 22
Hacking 22
WP Login Brute Force 20
DDoS Attack 4
WP Plugin Exploit 2
WP User Enumeration 2

Technical Details

Brute-force attacks systematically attempt password combinations against authentication systems.

Recommended Mitigations

Implement rate limiting, account lockout policies, multi-factor authentication, and fail2ban.

Behavioral Analysis

Activity Pattern: Sporadic

Irregular burst activity pattern indicates intermittent use of a compromised system.

First Observed 25. May 2026
Last Activity 31. May 2026
Recent (7 days) 0 incidents

Moderate Network Risk

The network hosting this IP (ASN 44066, operated by firstcolo GmbH) shows moderate threat indicators. Some concerning activity has been detected from neighboring addresses.

Consider the network context when assessing this individual IP.

Security Recommendations

Full network blocking required. Sophisticated attack patterns detected.

Implement adaptive blocking rules.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 8/10 High
Confidence Score 100% Verified

Confidence History

28. May 2026 - 31. May 2026
100% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Brute-Force Community 75%
Brute-Force Community 75%
Hacking DDoS Attack Community 75%
Brute-Force Community 75%
Hacking Brute-Force WP Login Brute Force Honeypot x2 75%
Hacking Brute-Force WP Login Brute Force Honeypot 75%
Hacking Brute-Force WP Login Brute Force Honeypot x3 75%
Hacking DDoS Attack Community 75%
Hacking Brute-Force WP Login Brute Force Honeypot 75%
Hacking Brute-Force Honeypot 75%
Hacking Brute-Force WP Plugin Exploit +1 Honeypot 75%
WP Login Brute Force Hacking Brute-Force Honeypot x2 75%
Hacking Brute-Force WP Login Brute Force Honeypot x2 75%
Hacking Brute-Force WP Login Brute Force +2 Honeypot x2 75%
Hacking Brute-Force WP Login Brute Force Honeypot x3 75%
Hacking Brute-Force WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
Hacking DDoS Attack Community 75%
Hacking DDoS Attack Community 75%
WP Login Brute Force Honeypot 75%
Hacking Brute-Force WP Login Brute Force Honeypot 75%
Hacking Brute-Force WP Login Brute Force Honeypot 75%
Hacking Brute-Force WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
Brute-Force Community 75%
Hacking Brute-Force WP Login Brute Force Honeypot x2 75%
Hacking Brute-Force WP Login Brute Force Honeypot 75%
WP Login Brute Force Honeypot 75%
Hacking Brute-Force WP Login Brute Force Honeypot 75%
Hacking Brute-Force WP Login Brute Force Honeypot 75%
10 of 61 shown

Technical Details

Basic Information

IP Address
212.224.100.2
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class C

Geolocation

Country
DE DE
ASN
AS44066
ISP
firstcolo GmbH

DNS Information

Reverse DNS
None
PTR Record
No
Connection Type
Static

Statistics

Total Reports
61
First Reported
26 May 2026
Last Reported
31 May 2026, 16:32

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS44066
firstcolo GmbH
DE DE

Network Threat Assessment

6/10
This network shows moderate threat levels with some malicious activity patterns.

Network Statistics

6
Total IPs Monitored
21
Total Reports
3.5
Reports per IP

Network Context

This IP address belongs to firstcolo GmbH (AS44066), which manages 6 IP addresses in our monitoring system. Out of these, 21 have been reported for suspicious activities, resulting in a network-wide threat level of 6/10.

Network warning: This network has elevated threat levels. Exercise caution when interacting with IPs from this ASN.

Comparative Analysis

How this IP compares to others in our threat intelligence database

100 %

Global Threat Ranking

This IP is more threatening than 100% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 199,317 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 61 avg: 23 ++

Network Comparison

Compared against 8 IPs in ASN 44066

Threat Level 10/10 network avg: 6.0 ++
Total Reports 61 network avg: 11 ++
Network firstcolo GmbH has overall threat level 6/10

Geographic Comparison

Compared against 7,139 IPs in DE

Threat Level 10/10 country avg: 5.8 ++
Total Reports 61 country avg: 61 =
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,017 threat incidents tracked globally • Last 24h: 18,967 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,426 20.5%
  2. 02
    IN
    India IN
    28,977 15.5%
  3. 03
    CN
    China CN
    26,016 13.9%
  4. 04
    BR
    Brazil BR
    10,249 5.5%
  5. 05
    DE
    Germany DE THIS IP
    7,139 3.8%
  6. 06
    SG
    Singapore SG
    6,475 3.5%
  7. 07
    ID
    Indonesia ID
    5,533 3%
  8. 08
    RU
    Russia RU
    4,701 2.5%
  9. 09
    PK
    Pakistan PK
    4,647 2.5%
  10. 10
    NL
    Netherlands NL
    4,355 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same country with similar threat profiles.

15 Related IPs
8.6/10 Avg Threat
100% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
45.92.11.94 8/10
Confidence 100%
Reports 274
ISP Contabo GmbH
1 Mar 2026
88.198.64.173 8/10
Confidence 100%
Reports 174
ISP Hetzner Online ...
22 May 2026
159.100.13.237 8/10
Confidence 100%
Reports 169
ISP Ultahost, Inc.
6 May 2026
46.224.234.158 8/10
Confidence 100%
Reports 128
ISP Hetzner Online ...
9 Jun 2026
5.83.135.249 8/10
Confidence 100%
Reports 116
ISP active 1 GmbH
7 Jun 2026
3.70.164.132 8/10
Confidence 100%
Reports 99
ISP Amazon.com, Inc.
19 May 2026
118.193.59.142 7/10
Confidence 100%
Reports 89
ISP UCLOUD INFORMAT...
5 Jun 2026
94.26.106.90 8/10
Confidence 100%
Reports 86
ISP dataforest GmbH
7 Jun 2026
49.12.3.147 10/10
Confidence 100%
Reports 78
ISP Hetzner Online ...
31 May 2026
94.26.106.111 10/10
Confidence 100%
Reports 75
ISP dataforest GmbH
13 May 2026
80.158.109.51 10/10
Confidence 100%
Reports 73
ISP T-Systems Inter...
6 Jun 2026
94.130.219.13 10/10
Confidence 100%
Reports 58
ISP Hetzner Online ...
9 May 2026
5.83.135.102 8/10
Confidence 100%
Reports 44
ISP AltunHOST LTD
8 Jun 2026
94.26.106.209 8/10
Confidence 100%
Reports 38
ISP dataforest GmbH
4 Jun 2026
207.154.230.149 10/10
Confidence 100%
Reports 33
ISP DigitalOcean, LLC
5 Jun 2026

IPs with similar threat level and confidence scores.

15 Related IPs
8.3/10 Avg Threat
100% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
222.165.190.235 8/10
Confidence 100%
Reports 592
Location LK LK
29 May 2026
78.142.18.172 8/10
Confidence 100%
Reports 579
Location BG BG
9 Jun 2026
4.197.100.161 10/10
Confidence 100%
Reports 522
Location AU AU
13 Jan 2026
141.98.11.117 8/10
Confidence 100%
Reports 520
Location LT LT
9 Jun 2026
208.109.188.137 8/10
Confidence 100%
Reports 514
Location US US
9 Jun 2026
74.91.224.220 8/10
Confidence 100%
Reports 490
Location SG SG
4 Jun 2026
20.27.219.18 10/10
Confidence 100%
Reports 449
Location JP JP
30 Dec 2025
50.6.7.129 8/10
Confidence 100%
Reports 447
Location US US
22 May 2026
72.167.150.128 8/10
Confidence 100%
Reports 429
Location US US
27 May 2026
50.6.229.148 8/10
Confidence 100%
Reports 346
Location US US
9 May 2026
123.30.233.13 8/10
Confidence 100%
Reports 318
Location VN VN
31 May 2026
103.76.120.219 8/10
Confidence 100%
Reports 310
Location ID ID
24 Feb 2026
123.30.233.12 8/10
Confidence 100%
Reports 303
Location VN VN
7 Jun 2026
116.118.2.113 8/10
Confidence 100%
Reports 296
Location VN VN
30 Apr 2026
87.121.84.30 8/10
Confidence 100%
Reports 295
Location US US
20 Apr 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "212.224.100.2",
    "threat_level": 10,
    "confidence_score": 100,
    "total_reports": 61,
    "country_code": "DE",
    "isp_name": "firstcolo GmbH",
    "asn": "44066",
    "first_reported": "2026-05-26 00:02:14",
    "last_reported": "2026-05-31 16:32:13",
    "exported_at": "2026-06-09T07:52:40+02:00",
    "source": "https://reportedip.de/ip/212.224.100.2/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses