AbuseIPDB » 18.104.22.168
22.214.171.124 was found in our database!
This IP was reported 9,387 times. Confidence of Abuse is 0%: ?
|Usage Type||Search Engine Spider|
|Country||United States of America|
|City||Ann Arbor, Michigan|
IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.
Important Note: 126.96.36.199 is an IP address from within our whitelist. Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.
According to our records, this IP belongs to the subnet 188.8.131.52/24, identified as: "Censys (https://about.censys.io/)"
IP Abuse Reports for 184.108.40.206:
This IP address has been reported a total of 9,387 times from 506 distinct sources. 220.127.116.11 was first reported on , and the most recent report was .
Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.
12/02/2023-03:21:59.748225 18.104.22.168 Protocol: 6 ET DROP Dshield Block Listed Source group 1
12/02/2023-05:39:22.805909 22.214.171.124 Protocol: 6 ET DROP Dshield Block Listed Source group 1
1701490812 - 12/02/2023 05:20:12 Host: 126.96.36.199/188.8.131.52 Port: 143 TCP Blocked
port scan and connect, tcp 80 (http)
Attempts against Pop3/IMAP
SMB 🖴 Honeypot: connected to port 445 by 184.108.40.206: port 35108
12/02/2023-05:30:11.801956 220.127.116.11 Protocol: 6 ET DROP Dshield Block Listed Source group 1
Unauthorized connection attempt detected from IP address 18.104.22.168 to port 445 (DNS-NL) [g]
|Brute-Force Exploited Host|
12/02/2023-04:22:27.502732 22.214.171.124 Protocol: 6 ET DROP Dshield Block Listed Source group 1
IP in Malicious Database
|Web App Attack|
Dec 2 02:16:27 sshd: refused connect from 126.96.36.199 (188.8.131.52) Dec 2 02:16 ... show moreDec 2 02:16:27 sshd: refused connect from 184.108.40.206 (220.127.116.11)
Dec 2 02:16:35 sshd: refused connect from 18.104.22.168 (22.214.171.124)
Dec 2 02:16:39 sshd: refused connect from 126.96.36.199 (188.8.131.52) show less
12/02/2023-03:12:49.385158 184.108.40.206 Protocol: 6 ET DROP Dshield Block Listed Source group 1
Dec 1 23:50:02 syscgn kernel: [44710.686500] [UFW BLOCK] IN=eth0 OUT= MAC=0a:d1:7f:3c:98:09:10:0e:7 ... show moreDec 1 23:50:02 syscgn kernel: [44710.686500] [UFW BLOCK] IN=eth0 OUT= MAC=0a:d1:7f:3c:98:09:10:0e:7e:26:f1:c0:08:00 SRC=220.127.116.11 DST=18.104.22.168 LEN=60 TOS=0x00 PREC=0x00 TTL=53 ID=36586 DF PROTO=TCP SPT=53386 DPT=25 WINDOW=42340 RES=0x00 SYN URGP=0
... show less
SSH port scan (Tarpitted for 10s, wasted 0B)
|Port Scan SSH|
Showing 1 to 15 of 9387 reports
Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩