JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 185.243.5.246

185.243.5.246 was found in our database!

This IP was reported 472 times. Confidence of Abuse is 100%: ?

100%

ISP	Dedires LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS23470
Domain Name	dedires.com
Country	🇺🇸 United States of America
City	New York City, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 185.243.5.246

Whois 185.243.5.246

IP Abuse Reports for 185.243.5.246:

This IP address has been reported a total of 472 times from 189 distinct sources. 185.243.5.246 was first reported on February 27th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 sandra361	2026-06-04 03:40:02 (1 day ago)	Port scan detected: 5 attempts across 2 ports (10443,6443). \| Evidence: GHOST_SCAN:IN=enp1s0f0 OUT= ... show more Port scan detected: 5 attempts across 2 ports (10443,6443). \| Evidence: GHOST_SCAN:IN=enp1s0f0 OUT= SRC=185.243.5.246 LEN=52 TOS=0x02 PREC=0x00 TTL=120 ID=25565 DF PROTO=TCP SPT=50904 DPT=10443 WINDOW=64240 RES=0x00 CWR ECE SYN URGP=0 show less	Port Scan
🇺🇸 kosada.com	2026-06-04 00:53:29 (1 day ago)	Web vulnerability probing: / (bogus vhost/SNI)	Web App Attack
Anonymous	2026-06-03 21:39:25 (1 day ago)	Honeypot hit: Unauthorized traffic (147 bytes of payload); 10443 [2] TCP Reported by: https://github ... show more Honeypot hit: Unauthorized traffic (147 bytes of payload); 10443 [2] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇮🇳 evicky2002	2026-05-29 06:52:29 (6 days ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇫🇷 Fasetech	2026-05-28 10:29:23 (1 week ago)	SecLedge detected suspicious activity. Score: 3069.24. Sensor: T-Pot.	Brute-Force
🇳🇱 knock	2026-05-19 17:14:07 (2 weeks ago)	Knock-Knock honeypot brute-force: proto8 (1 total hits)	Brute-Force
🇺🇸 xmission.com	2026-05-17 16:45:58 (2 weeks ago)	Blocked by UFW (TCP on 1723) Source port: 56343 TTL: 244 Packet length: 40 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 1723) Source port: 56343 TTL: 244 Packet length: 40 TOS: 0x00 This report (for 185.243.5.246) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-05-17 02:09:27 (2 weeks ago)	Blocked by UFW (TCP on 80) Source port: 58871 TTL: 244 Packet length: 40 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 58871 TTL: 244 Packet length: 40 TOS: 0x00 This report (for 185.243.5.246) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 MPL	2026-05-17 02:04:54 (2 weeks ago)	tcp/80 (52 or more attempts)	Port Scan
🇺🇸 xmission.com	2026-05-17 01:28:11 (2 weeks ago)	Blocked by UFW (TCP on 80) Source port: 58855 TTL: 244 Packet length: 40 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 58855 TTL: 244 Packet length: 40 TOS: 0x00 This report (for 185.243.5.246) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 MPL	2026-05-17 00:59:29 (2 weeks ago)	tcp/80 (3 or more attempts)	Port Scan
🇺🇸 MPL	2026-05-17 00:58:24 (2 weeks ago)	tcp/80 (2 or more attempts)	Port Scan
🇺🇸 xmission.com	2026-05-17 00:54:47 (2 weeks ago)	Blocked by UFW (TCP on 80) Source port: 58871 TTL: 242 Packet length: 40 TOS: 0x00 This report (for ... show more Blocked by UFW (TCP on 80) Source port: 58871 TTL: 242 Packet length: 40 TOS: 0x00 This report (for 185.243.5.246) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 [email protected]	2026-05-16 21:26:12 (2 weeks ago)	Ports: 80,1723. Proto: TCP. Observations: 2	Port Scan Web App Attack
🇺🇸 Cyber Crusader	2026-05-16 18:29:31 (2 weeks ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force

Showing 1 to 15 of 472 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 135.237.127.82

🇨🇳 223.240.94.168

🇺🇸 205.210.31.74

🇨🇱 201.187.211.10

🇦🇷 186.38.26.5

🇲🇴 182.93.50.90

🇺🇸 172.235.129.66

🇫🇷 158.220.127.193

🇫🇮 147.185.133.149

🇦🇺 134.199.153.11

🇨🇦 104.158.69.40

🇺🇸 45.79.177.229

🇬🇧 5.226.140.78

🇺🇸 2001:470:1:332::7

🇷🇴 193.32.162.13

🇺🇸 184.105.247.195

🇺🇸 162.216.149.123

🇮🇩 157.10.252.76

🇺🇸 147.185.132.181

🇩🇪 134.122.93.100