← Back to Dashboard

176.65.139.36 Threat Intelligence Report

Risk Level: CRITICAL — 427 abuse reports from 12 sources

Threat Intelligence Summary

IP address 176.65.139.36 has been flagged in 427 abuse reports across 12 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is abuseipdb blacklist, along with attacks, botnet c2, dns abuse, known attacker, malware c2, malware infrastructure, professional threat, rdp bruteforce, reconnaissance, reputation low, scanning, suspicious activity, web attack.

This IP is geolocated in Luxembourg and belongs to the network Offshore LC (AS214472). Reports span from 2026-05-03 to 2026-07-05.

Assessment: With 427 abuse reports, 176.65.139.36 shows persistent malicious activity that has been flagged by multiple threat intelligence feeds. This IP has been identified as a command-and-control server for botnet infrastructure, meaning it coordinates malicious activity across networks of compromised machines.

Data aggregated from 12 independent threat intelligence sources.

Geolocation

Country Luxembourg
ISP/ASN Offshore LC
Timezone Europe/Luxembourg

Threat Status

Overall Status Critical
Threat Score 100.0%
Report Count 427
Sources 12
First Seen 2026-05-03
Last Seen 2026-07-05
AI Analysis

Historical Threat Record

Status Known Historical Threat
Archived Reports 107
Peak Severity CRITICAL
History Span 2026-02-01 – 2026-04-30

🔒 The individual historical reports for this IP are part of premium intelligence. Free lookups show the last 90 days of live activity plus this summary.

Unlock full history →

Check IPs automatically with the WAYSCloud API

Free tier: 1,000 lookups/day. Get threat scores, geolocation, and abuse reports via REST API.

Explore the API →

See how we classify and verify threats →

Related Intelligence

Luxembourg Threat Intelligence → AS214472 Network Intelligence → See all top malicious IPs → View latest attacks →
Learn about these threats: