136.243.177.154 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 136.243.177.154 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: Germany
• Network:
• Noticed: 1 times
• Protocols Attacked: Anonymous Proxy

Open Ports Detected

11000 11084 11110 11112 11180 11184 11210 11211 11288 11300 11371 11401 11434 11601 11602 11701 11920 12000 12001 12016 12019 12082 12084 12101 12103 12105 12106 12107 12108 12109 12118 12120 12121 12126 12127 12130 12134 12135 12136 12137 12143 12144 12145 12146 12148 12150 12152 12154 12155 12156 12158 12161 12164 12165 12166 12168 12169 12171 12172 12173 12178 12180 12182 12183 12184 12187 12188 12189 12191 12192 12194 12195 12200 12201 12202 12204 12206 12207 12212 12213 12214 12215 12218 12219 12220 12221 12223 12225 12228 12229 12230 12231 12233 12238 12239 12240 12241 12242 12243 12244 12245 12248 12249 12250 12251 12252 12253 12254 12255 12256 12257 12261 12263 12265 12267 12269 12272 12275 12276 12278 12280 12281 12283 12284 12287 12288 12289 12292 12293 12294 12295 12296 12297 12300 12301 12304 12305 12306 12307 12308 12311 12312 12314 12315 12316 12317 12319 12320 12321 12322 12325 12326 12328 12329 12330 12331 12332 12333 12334 12335 12337 12338 12340 12341 12342 12343 12345 12346 12347 12348 12349 12350 12351 12352 12354 12357 12358 12361 12362 12364 12367 12368 12370 12371 12372 12378 12379 12382 12384 12387 12390 12392 12393 12397 12399 12400 12402 12406 12407 12409 12413 12414 12416 12418 12419 12421 12422 12424 12425 12427 12428 12429 12433 12435 12436 12438 12443 12444 12446 12449 12451 12455 12458 12459 12461 12462 12464 12467 12468 12469 12470 12471 12473 12474 12476 12477 12478 12482 12483 12485 12487 12491 12492 12493 12494 12496 12499 12501 12505 12507 12508 12511 12514 12516 12521 12525 12526 12530 12531 12532 12538 12541 12544 12545 12549 12551 12552 12554 12556 12557 12558 12559 12562 12563 12567 12568 12571 12573 12574 12575 12577 12578 12579 12580 12581 12585 12586 12589 12615 12902 13000 13082 13333 13579 14026 14082 14101 14104 14147 14265 14344 14406 14407 14524 14873 14880 14894 14897 14900 14903 15000 15040 15044 15151 15443 15502 15503 15588 15673 16000 16002 16008 16009 16010 16011 16012 16014 16015 16016 16017 16019 16027 16029 16030 16032 16035 16036 16037 16038 16045 16046 16048 16052 16053 16054 16057 16060 16061 16063 16064 16066 16067 16068 16074 16075 16078 16081 16082 16084 16094 16096 16097 16098 16099 161 16100 16101 16102 16400 16402 16404 16667 16831 16888 16992 16993 17000 17010 17070 17082 17182 17184 17771 17772 17773 17774 17775 17776 17778 17780 18002 18003 18010 18022 18025 18027 18028 18029 18033 18034 18035 18038 18040 18043 18044 18049 18053 18059 18060 18062 18063 18065 18067 18068 18070 18071 18072 18075 18076 18078 18081 18084 18085 18086 18089 18090 18093 18098 18101 18105 18107 18108 18111 18112 18113 18181 18182 18245 18443 18802 19000 19015 19071 19091 19222 19443 20000 20018 20040 20050 20082 20150 20151 20547 2111 21243 21257 22 80 8000 8200

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2021-3618 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-44487 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2024-6387 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

• NetRange: 136.243.0.0 - 136.243.255.255
• CIDR: 136.243.0.0/16
• NetName: RIPE-ERX-136-243-0-0
• NetHandle: NET-136-243-0-0-1
• Parent: NET136 (NET-136-0-0-0-0)
• NetType: Early Registrations, Transferred to RIPE NCC
• OriginAS:
• Organization: RIPE Network Coordination Centre (RIPE)
• RegDate: 2004-04-14
• Updated: 2025-02-10
• Ref: https://rdap.arin.net/registry/ip/136.243.0.0
• OrgName: RIPE Network Coordination Centre
• OrgId: RIPE
• Address: P.O. Box 10096
• City: Amsterdam
• StateProv:
• PostalCode: 1001EB
• Country: NL
• RegDate:
• Updated: 2013-07-29
• Ref: https://rdap.arin.net/registry/entity/RIPE
• OrgTechHandle: RNO29-ARIN
• OrgTechName: RIPE NCC Operations
• OrgTechPhone: +31 20 535 4444
• OrgTechEmail: hostmaster@ripe.net
• OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
• OrgAbuseHandle: ABUSE3850-ARIN
• OrgAbuseName: Abuse Contact
• OrgAbusePhone: +31205354444
• OrgAbuseEmail: abuse@ripe.net
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN

Links to attack logs

anonymous-proxy-ip-list-2025-07-01