JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.243.218.225

185.243.218.225 was found in our database!

This IP was reported 321 times. Confidence of Abuse is 100%: ?

100%

This address is a Tor exit node. Neither the owner nor the provider are directly behind the offending action.

ISP	Gigahost AS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS56655
Hostname(s)	tor-exit.lokodlare.com
Domain Name	gigahost.no
Country	🇳🇴 Norway
City	Sandefjord, Vestfold

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.243.218.225

Whois 185.243.218.225

IP Abuse Reports for 185.243.218.225:

This IP address has been reported a total of 321 times from 154 distinct sources. 185.243.218.225 was first reported on December 13th 2025, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 big-cloud.nl	2026-06-12 12:21:50 (7 hours ago)	Try to access /xmlrpc.php	Web App Attack
🇦🇱 router.al	2026-06-12 06:37:56 (13 hours ago)	06/12/2026-06:37:55.939662 185.243.218.225 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 48	Hacking
🇺🇸 nowyouknow	2026-06-12 04:11:44 (15 hours ago)	(From [email protected]) onixli	Phishing Web Spam
🇿🇦 slartybartfast69420blazit	2026-06-11 20:19:38 (23 hours ago)	Fail2ban picked up 185.243.218.225 attacking nginx	Web App Attack
🇳🇱 BlueWire Hosting	2026-06-11 16:47:45 (1 day ago)	Probing websites for vulnerabilities	Web App Attack
🇬🇧 consul.to	2026-06-11 00:54:13 (1 day ago)	Web attack/malicious scanning detected	Web App Attack
🇮🇩 securejdprop	2026-06-10 12:45:08 (2 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET TOR Known Tor E ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET TOR Known Tor Exit Node Traffic group 48). Ip 185.243.218.225 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-10 12:45:07.161163033 +0000 UTC show less	Hacking Web App Attack
🇬🇧 consul.to	2026-06-10 00:29:58 (2 days ago)	Web attack/malicious scanning detected	Web App Attack
🇹🇭 thaizone.com	2026-06-09 20:24:46 (2 days ago)	Brute Force Attack on a Web Resources (repeated 404) #1	DDoS Attack Web Spam Brute-Force Web App Attack
🇿🇦 slartybartfast69420blazit	2026-06-09 20:19:43 (2 days ago)	Fail2ban picked up 185.243.218.225 attacking nginx	Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-09 15:08:02 (3 days ago)	Fail2Ban - [WEB]Custom exploit pattern detected on customexploits ... [ice02,wa02]	Hacking Brute-Force Bad Web Bot Web App Attack
🇬🇧 thetomtaylor.co.uk	2026-06-09 13:06:01 (3 days ago)	Fail2Ban - [NGINX]WordPress Logins Sniffings on nginx-wordpress-sniffer ... [ice01,wa01]	Bad Web Bot Web App Attack
🇫🇮 nNordic	2026-06-09 10:19:14 (3 days ago)	Connection attempt blocked by IDS/IPS from 185.243.218.225/32	Hacking
🇮🇹 LTM	2026-06-09 06:20:01 (3 days ago)	WebServer - Attempts to exploit	Hacking Brute-Force Web App Attack
🇫🇷 Kenshin869	2026-06-09 00:24:53 (3 days ago)	Wordpress unauthorized access attempt	Brute-Force

Showing 1 to 15 of 321 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.11.196.79

🇨🇳 111.228.10.226

🇮🇩 36.64.244.68

🇧🇷 205.210.31.171

🇺🇸 205.210.31.30

🇮🇳 182.95.57.54

🇧🇴 181.188.176.242

🇳🇱 172.94.9.55

🇳🇬 105.120.132.35

🇳🇱 77.251.243.17

🇺🇸 72.90.84.62

🇺🇸 66.132.195.124

🇰🇷 64.110.90.250

🇸🇳 41.82.50.218

🇭🇰 38.55.195.169

🇺🇸 13.222.72.29

🇮🇶 185.166.25.150

🇺🇸 147.185.132.209

🇮🇳 122.168.194.41

🇨🇳 120.219.119.131