JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.243.5.152

185.243.5.152 was found in our database!

This IP was reported 475 times. Confidence of Abuse is 46%: ?

46%

ISP	Dedires LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS23470
Domain Name	dedires.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.243.5.152

Whois 185.243.5.152

IP Abuse Reports for 185.243.5.152:

This IP address has been reported a total of 475 times from 114 distinct sources. 185.243.5.152 was first reported on October 13th 2025, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-05-14 12:17:25 (3 weeks ago)	ICS Labs identified 185.243.5.152 as a malicious indicator from threat intelligence.	Hacking
Anonymous	2026-05-01 06:00:00 (1 month ago)	SIP Attack; Port 5060	Fraud VoIP
🇫🇮 nNordic	2026-04-26 09:17:02 (1 month ago)	Connection attempt blocked by IDS/IPS from 185.243.5.152/32	Hacking
🇫🇮 nNordic	2026-04-25 08:35:41 (1 month ago)	Connection attempt blocked by IDS/IPS from 185.243.5.152/32	Hacking
🇫🇮 nNordic	2026-04-24 07:10:50 (1 month ago)	Connection attempt blocked by IDS/IPS from 185.243.5.152/32	Hacking
🇨🇭 SOC [GOLINE SA]	2026-04-14 16:49:16 (1 month ago)	IDS Alert: ET SCAN Sipvicious User-Agent Detected (friendly-scanner) === ATTACK === Signature: ET SC ... show more IDS Alert: ET SCAN Sipvicious User-Agent Detected (friendly-scanner) === ATTACK === Signature: ET SCAN Sipvicious User-Agent Detected (friendly-scanner) \| SID: 2011716 \| Severity: 2 \| Category: Attempted Information Leak === SOURCE === IP: 185.243.5.152 (IPv4) \| Port: 5430 \| Country: Hong Kong \| ISP: dedires \| rDNS: None === TARGET === Host: wireguard.goline.ch \| IP: 185.54.80.7 \| Port: 5060 \| Protocol: UDP \| App: sip === RESPONSE === Time: 2026-04-14 18:49:15 \| Action: Blocked show less	Port Scan
🇫🇮 TrafficAnalyser	2026-04-14 14:58:03 (1 month ago)	Port scanning	Port Scan
🇩🇪 iNetWorker	2026-04-14 14:01:00 (1 month ago)	firewall-block, port(s): 5070/udp, 5071/udp, 5072/udp, 5073/udp, 5074/udp, 5075/udp	Port Scan
🇵🇱 rafamiga	2026-04-14 13:17:36 (1 month ago)	fail2ban/ufw - Port scan detected. ...	Port Scan
🇫🇷 JPPO	2026-04-14 12:52:33 (1 month ago)	Multiport scan 7 ports : 5060(x3) 5070(x6) 5071 5072 5073 5074 5075	Port Scan
🇫🇷 dusfor72	2026-04-14 12:49:37 (1 month ago)	aggressive portscan ...	Port Scan
Anonymous	2026-04-14 12:30:04 (1 month ago)	Triggered: repeated knocking on closed ports.	Port Scan
Anonymous	2026-04-14 11:52:55 (1 month ago)	Shorewall log file match.	Port Scan
🇩🇪 sbajic	2026-04-14 09:19:38 (1 month ago)	...	Brute-Force
🇦🇹 Pingger Shikkoken	2026-04-14 09:08:52 (1 month ago)	2026-04-14T09:08:52+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6 ... show more 2026-04-14T09:08:52+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=185.243.5.152 DST=152.53.50.28 LEN=424 TOS=0x00 PREC=0x00 TTL=51 ID=57649 DF PROTO=UDP SPT=7752 DPT=5072 LEN=404 2026-04-14T09:08:52+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=185.243.5.152 DST=152.53.50.28 LEN=427 TOS=0x00 PREC=0x00 TTL=51 ID=57648 DF PROTO=UDP SPT=7752 DPT=5071 LEN=407 2026-04-14T09:08:52+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=185.243.5.152 DST=152.53.50.28 LEN=431 TOS=0x00 PREC=0x00 TTL=51 ID=57652 DF PROTO=UDP SPT=7752 DPT=5075 LEN=411 2026-04-14T09:08:52+00:00 iskariot kernel: AbuseIPDB-Blacklist-Dropped: IN=ens3 OUT= MAC=b6:ab:74:e6:2e:14:84:03:28:62:88:32:08:00 SRC=185.243.5.152 DST=152.53.50.28 LEN=430 TOS=0x00 PREC=0x00 TTL=51 ID=57647 DF PROTO=UDP SPT=7752 DPT=5070 LEN=410 ... show less	Hacking Port Scan

Showing 1 to 15 of 475 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇺 197.225.146.23

🇧🇷 177.23.25.121

🇨🇳 171.36.7.128

🇺🇸 147.185.132.103

🇨🇳 118.196.4.129

🇫🇷 91.231.89.227

🇯🇵 58.98.197.137

🇺🇸 50.190.89.138

🇺🇸 40.124.185.25

🇨🇳 221.207.75.38

🇸🇬 114.119.130.213

🇩🇪 91.92.240.42

🇺🇸 52.70.62.20

🇺🇸 45.56.83.110

🇩🇪 213.209.159.225

🇰🇷 211.46.188.16

🇲🇿 197.219.208.58

🇧🇷 177.30.64.65

🇳🇱 176.65.148.244

🇳🇱 176.65.148.189