JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.243.218.226

185.243.218.226 was found in our database!

This IP was reported 297 times. Confidence of Abuse is 100%: ?

100%

This address is a Tor exit node. Neither the owner nor the provider are directly behind the offending action.

ISP	Gigahost AS
Usage Type	Data Center/Web Hosting/Transit
ASN	AS56655
Hostname(s)	tor-exit.lokodlare.com
Domain Name	gigahost.no
Country	🇳🇴 Norway
City	Sandefjord, Vestfold

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.243.218.226

Whois 185.243.218.226

IP Abuse Reports for 185.243.218.226:

This IP address has been reported a total of 297 times from 142 distinct sources. 185.243.218.226 was first reported on December 13th 2025, and the most recent report was 14 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 antlac1	2026-06-16 23:16:59 (14 hours ago)	crowdsecurity/http-bf-wordpress_bf	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-16 05:45:11 (1 day ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇺🇸 nowyouknow	2026-06-16 02:28:20 (1 day ago)	(From [email protected]) max8b8	Phishing Web Spam
🇬🇧 andypiper	2026-06-16 01:01:21 (1 day ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇩🇪 LRob.fr	2026-06-15 15:15:09 (1 day ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇬🇧 anycast_ac	2026-06-15 14:22:37 (1 day ago)	[WebProtection] L4/L7 attack source · L7-HOSTMISS-BAN · 1 hits/window	Port Scan Web App Attack
🇫🇷 SpaceHost-Server	2026-06-14 22:27:44 (2 days ago)		Brute-Force Web App Attack
🇺🇸 TNZ	2026-06-14 00:36:27 (3 days ago)	Automated honeypot: bot_detected:no_accept_language \| Path: / \| ISP: AS56655 Gigahost AS \| ASN: AS56 ... show more Automated honeypot: bot_detected:no_accept_language \| Path: / \| ISP: AS56655 Gigahost AS \| ASN: AS56655 Gigahost AS [TOR] [PROXY] [HOSTING] \| Abuse score: 100 \| Open ports: [22] \| UA: Mozilla/5.0 (iPhone; CPU iPhone OS 18_7 like Mac OS X) AppleWebKit/605.1.15 (KHT show less	Web App Attack
🇫🇷 SpaceHost-Server	2026-06-13 22:27:34 (3 days ago)		Brute-Force Web App Attack
🇨🇿 ddw	2026-06-13 15:46:32 (3 days ago)	WordPress XMLRPC.PHP Access Attempt.	Hacking Web App Attack
🇫🇷 MatStef132	2026-06-12 22:48:16 (4 days ago)	MatShield L7: blocked on mathost.eu (ua-quarantined)	Bad Web Bot
🇨🇿 ptlab	2026-06-12 16:45:44 (4 days ago)	Detected xmlrpc_brute attack from WP-host.	Hacking Web App Attack
🇫🇷 applemooz	2026-06-12 10:35:31 (5 days ago)	WordPress XMLRPC Brute Force Attacks ...	Brute-Force Web App Attack
🇩🇪 big-cloud.nl	2026-06-12 10:24:10 (5 days ago)	Try to access /xmlrpc.php	Web App Attack
🇩🇪 Lino Project	2026-06-12 06:30:32 (5 days ago)	CrowdSec abuse IP report (host SRV-2) Scenario: crowdsecurity/http-probing	Hacking

Showing 1 to 15 of 297 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 194.88.98.121

🇵🇱 185.241.208.74

🇨🇳 175.42.204.242

🇨🇳 150.158.196.236

🇺🇸 136.144.35.41

🇧🇪 104.199.58.142

🇻🇳 103.159.54.61

🇮🇪 54.75.61.99

🇮🇹 209.227.244.120

🇪🇬 197.44.15.210

🇳🇱 193.176.31.150

🇺🇸 172.191.157.64

🇩🇪 165.154.239.119

🇭🇰 152.32.171.99

🇸🇬 103.250.11.176

🇱🇹 81.30.98.144

🇷🇴 80.94.95.242

🇳🇱 45.148.10.147

🇮🇹 4.232.80.255

🇰🇷 211.223.107.86