194.15.36.253 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 194.15.36.253 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 46/100

Host and Network Information

• Tags: cisco, cowrie, dionaea, heralding, honeytrap, LAMP, malicious, sftp, ssh, tsec

• View other sources: Spamhaus VirusTotal

• Country: Germany
• Network:
• Noticed: 7 times
• Protocols Attacked: SSH

Malware Detected on Host

Count: 7 3d8629071150f3f9aa0948bf2b1a038ab673b2c02888442109667d86cb75db1e ded94375a30c0d9f277498dc8017fe0664fa23c69a862f86703a469747f8801f b70ddf8a953f9a667d21b0dd262078c9e3e6bcfcdef7896bd5484f66ace609d9 aaf0136d6a42599f39c8a76a0918f4d58410f87999810f67c67d355a541c864c 6780589a2baa0c9954eee0a0ffa132c3d311d52065aa6dee10436383d591b791 0cbc7885d586ae728e5cf7c26b43ae90621cabfaeba0e8fb063e113a3dece577 ae455c2a30969ff34303a2177d04e0997e8c1023e63019899c607082f3dc8397

Open Ports Detected

443 80

CVEs Detected

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

Map

Links to attack logs

bruteforce-ip-list-2025-07-18