JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.22.8.73

165.22.8.73 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	North Bergen, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.22.8.73

Whois 165.22.8.73

IP Abuse Reports for 165.22.8.73:

This IP address has been reported a total of 14 times from 14 distinct sources. 165.22.8.73 was first reported on March 23rd 2021, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-03-19 23:27:06 (2 months ago)	ThreatBook Intelligence: vpn_proxy more details on http://threatbook.io/ip/165.22.8.73	SSH
Anonymous	2026-03-19 13:20:00 (2 months ago)	Mar 19 14:19:51 nebula sshd[528602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eui ... show more Mar 19 14:19:51 nebula sshd[528602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.8.73 Mar 19 14:19:53 nebula sshd[528602]: Failed password for [redacted] from 165.22.8.73 port 59650 ssh2 Mar 19 14:19:58 nebula sshd[528616]: Invalid user [redacted] from 165.22.8.73 port 59662 Mar 19 14:19:58 nebula sshd[528616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.8.73 Mar 19 14:19:59 nebula sshd[528616]: Failed password for [redacted] from 165.22.8.73 port 59662 ssh2 ... show less	Brute-Force SSH
🇵🇱 webadmin	2026-03-19 13:19:56 (2 months ago)	2026-03-19T14:19:26.507653+01:00 tytan sshd-session[1947887]: Connection closed by invalid user 165 ... show more 2026-03-19T14:19:26.507653+01:00 tytan sshd-session[1947887]: Connection closed by invalid user 165.22.8.73 port 59744 [preauth] 2026-03-19T14:19:52.366151+01:00 tytan sshd-session[1948243]: Invalid user onkar from 165.22.8.73 port 44794 2026-03-19T14:19:52.482525+01:00 tytan sshd-session[1948243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.8.73 2026-03-19T14:19:54.112966+01:00 tytan sshd-session[1948243]: Failed password for invalid user onkar from 165.22.8.73 port 44794 ssh2 2026-03-19T14:19:55.635940+01:00 tytan sshd-session[1948243]: Connection closed by invalid user onkar 165.22.8.73 port 44794 [preauth] ... show less	Brute-Force SSH
🇩🇪 fynndows.de	2026-03-19 13:19:52 (2 months ago)	2026-03-19T13:19:11.669150+00:00 fynn-epyc3 sshd-session[2879352]: Invalid user from 165.22.8.73 po ... show more 2026-03-19T13:19:11.669150+00:00 fynn-epyc3 sshd-session[2879352]: Invalid user from 165.22.8.73 port 42862 2026-03-19T13:19:51.498186+00:00 fynn-epyc3 sshd-session[2879356]: Invalid user onkar from 165.22.8.73 port 57724 ... show less	Brute-Force SSH
🇧🇾 lns.bz	2026-03-19 13:19:52 (2 months ago)	SSH bruteforce [BY]	SSH
🇺🇸 bulkvm.com	2026-03-19 13:18:46 (2 months ago)	[bulkvm.com/honeypot] SSH connection. Port: 60438, client: SSH-2.0-Go, Time: 2026-03-19 13:17:06 UTC	Brute-Force SSH
🇬🇧 OptimusGO	2026-03-19 13:17:52 (2 months ago)	Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Time ... show more Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Timestamp: 2026-03-19 13:17:42 UTC Log evidence: 03/19/2026-13:17:41.333938 [] [1:1000090:1] POLICY Unauthorized Management Port Access [] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 165.22.8.73:50176 -> 185.127.18.66:22 show less	Port Scan Brute-Force
🇺🇸 MPL	2026-03-09 07:01:00 (3 months ago)	tcp ports: 443,8080 (2 or more attempts)	Port Scan
🇫🇷 masterguru	2026-03-01 12:06:11 (3 months ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 165.22.8.73 (US/United States/-): 1 i ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 165.22.8.73 (US/United States/-): 1 in the last 3600 secs (0-201) show less	Hacking
🇦🇷 Bruno	2025-10-18 04:05:50 (7 months ago)	Port Scanner: 165.22.8.73	Port Scan
🇺🇸 SvrAdmin	2024-06-14 22:24:59 (1 year ago)	Date: Fri, 14 Jun 2024 22:24:07 0000 Subject: Obrigado por sua compra! Received: from [165.22.8.73 ... show more Date: Fri, 14 Jun 2024 22:24:07 0000 Subject: Obrigado por sua compra! Received: from [165.22.8.73] (port=34096 helo=bybz14.arkadsolucoes.com) show less	Fraud Orders Phishing Email Spam Spoofing
🇺🇸 IrisFlower	2021-03-24 10:30:07 (5 years ago)	Unauthorized connection attempt detected from IP address 165.22.8.73 to port 8183	Hacking
🇺🇸 jcbriar	2021-03-23 22:17:44 (5 years ago)	Searching for vulnerable scripts	Hacking Web App Attack
🇲🇩 iHost	2021-03-23 21:53:27 (5 years ago)	Port Scan detected from 165.22.8.73 (US/United States/-). 3 hits in the last 166 seconds; Ports: * ... show more Port Scan detected from 165.22.8.73 (US/United States/-). 3 hits in the last 166 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Mar 24 03:53:22 web1 kernel: Firewall: TCP_IN Blocked* IN=ens2f0 OUT= MAC=ac:16:2d:99:fc:fc:00:08:e3:ff:fc:28:08:00 SRC=165.22.8.73 DST=31.131.1.115 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=61533 DF PROTO=TCP SPT=48732 DPT=25463 WINDOW=64240 RES=0x00 SYN URGP=0 Mar 24 03:53:23 web1 kernel: Firewall: TCP_IN Blocked IN=ens2f0 OUT= MAC=ac:16:2d:99:fc:fc:00:08:e3:ff:fc:28:08:00 SRC=165.22.8.73 DST=31.131.1.115 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=61534 DF PROTO=TCP SPT=48732 DPT=25463 WINDOW=64240 RES=0x00 SYN URGP=0 Mar 24 03:53:24 web1 kernel: Firewall: TCP_IN Blocked IN=ens2f0 OUT= MAC=ac:16:2d:99:fc:fc:00:08:e3:ff:fc:28:08:00 SRC=165.22.8.73 DST=31.131.1.115 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=4793 DF PROTO=TCP SPT=56530 DPT=25461 WINDOW=64240 RES=0x00 SYN URGP=0 show less	Port Scan

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 91.92.42.63

🇨🇳 61.136.246.87

🇮🇩 36.64.10.42

🇸🇬 185.151.51.165

🇻🇳 171.244.37.97

🇺🇸 162.216.149.62

🇪🇬 156.223.180.124

🇵🇱 87.251.64.149

🇺🇸 64.62.197.97

🇮🇩 41.216.178.119

🇦🇺 35.189.8.40

🇺🇸 2605:6400:40:fe63:57b6:2020:2b87:79ae

🇮🇳 203.192.227.81

🇳🇱 195.178.110.104

🇦🇷 186.56.11.2

🇩🇪 185.242.3.226

🇺🇸 173.255.223.115

🇱🇰 123.231.9.90

🇹🇼 114.37.204.93

🇺🇸 107.175.156.160