← Back to Dashboard

136.49.53.226 Threat Intelligence Report

Risk Level: CRITICAL — 269 abuse reports from 19 sources

Threat Intelligence Summary

IP address 136.49.53.226 has been flagged in 269 abuse reports across 19 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is abuseipdb blacklist, along with aggregated threat, attacks, brute force, known attacker, malware c2, malware infrastructure, reconnaissance, reputation low, scanning, ssh brute force, ssh bruteforce, suspicious activity.

This IP is geolocated in United States (Austin) and belongs to the network Google Fiber Inc. (AS16591). Reports span from 2026-05-25 to 2026-07-05.

Assessment: With 269 abuse reports, 136.49.53.226 shows persistent malicious activity that has been flagged by multiple threat intelligence feeds. The IP has been observed conducting automated SSH login attempts against internet-facing servers, a technique commonly used to gain unauthorized access to systems. This IP belongs to Google Fiber Inc., a major cloud/hosting provider — the malicious activity likely originates from a compromised or rented virtual server rather than the provider's own infrastructure.

Data aggregated from 19 independent threat intelligence sources.

Geolocation

Country United States
City Austin
Region Texas
Timezone America/Chicago

Threat Status

Overall Status Critical
Threat Score 100.0%
Report Count 269
Sources 19
First Seen 2026-05-25
Last Seen 2026-07-05
AI Analysis

Check IPs automatically with the WAYSCloud API

Free tier: 1,000 lookups/day. Get threat scores, geolocation, and abuse reports via REST API.

Explore the API →

See how we classify and verify threats →

Related Intelligence

United States Threat Intelligence → AS16591 Network Intelligence → See all top malicious IPs → View latest attacks →
Learn about these threats: