Is 176.65.132.143 malicious?

IP reputation report for 176.65.132.143: blocklist detections, geolocation, ASN, WHOIS and security posture, aggregated from 100+ threat intelligence sources.

176.65.132.143 is listed on 44 threat intelligence sources

Detected by 44 threat intelligence sources in the isMalicious dataset — review before trusting this IP.

Threat verdict

VerdictListed on blocklists

Appears on threat intelligence blocklists — treat with caution.

Blocklist detections44 sources
Categoriesabuse, attack, proxy, malware, phishing, suspicious, bruteforce, botnet, malicious
Confidence score100/100

Aggregated confidence across the sources reporting this indicator.

First seen2026-05-20
Last updated2026-05-20

Network & location

LocationEygelshoven, Limburg, The Netherlands
ISPPfcloud UG (haftungsbeschrankt)
ASNAS51396 — Pfcloud UG (haftungsbeschrankt)
Network176.65.132.0/24
CompanyVMHeaven.io
InfrastructureDatacenter, Proxy

Security posture

Open ports22, 443

Detections

  • Duggytuxy - Blacklist Ips For Fortinet Firewall Aa.txt
  • FireHOL - Blocklist Net Uaabuse
  • FireHOL - Bruteforceblockerattack
  • FireHOL - Et Compromisedattack
  • FireHOL - Firehol Anonymousproxy
  • FireHOL - Firehol Level3attack
  • FireHOL - Firehol Level4attack
  • FireHOL - Firehol Proxiesproxy
  • Opendbl Net - Etknown.listmalware
  • Opendbl Net - Bruteforce.listmalware
  • Opendbl Net - Ipsum.listmalware
  • Romain Marcoux - Malicious Outgoing IPsphishing
  • Romain Marcoux - Malicious IPsphishing
  • Emerging Threats Compromised IPsmalware
  • CyberCure Hash Feedmalware
  • CyberCure Blocked URL Feedmalware
  • CyberCure IP Feedmalware
  • IPsum Level 2suspicious
  • IPsum Level 4suspicious
  • IPsum Level 3suspicious
  • SSH Password Authbruteforce
  • IPsum – malicious IP feedmalware
  • ThreatHive - Hive Blocklist
  • Borestad - AbuseIPDB Blocklist (1d)abuse

+20 more sources in the full report.

Threat categories

Related malicious IPs on nearby networks