User KIDOS joined AbuseIPDB in September 2025 and has reported 96,581 IP addresses.
Standing (weight) is good.
ACTIVE USER
| IP | Date | Comment | Categories |
|---|---|---|---|
| ๐ธ๐ฌ 4.194.24.143 |
malicious activity
|
Web App Attack | |
| ๐บ๐ธ 144.126.222.110 |
Apache monitor: ssrf_log_spoofing
|
Brute-Force SSH | |
| ๐ธ๐ฌ 43.163.101.24 |
IIS malicious activity: sql_injection_attempt
|
Web App Attack | |
| ๐ฎ๐ณ 165.22.222.119 |
Apache monitor: ssrf_log_spoofing
|
Brute-Force SSH | |
| ๐ฉ๐ช 176.7.73.3 |
malicious activity
|
Web App Attack | |
| ๐ง๐ท 20.206.80.65 |
CrowdSec detected malicious activity
|
DDoS Attack | |
| ๐ฎ๐ฉ 158.140.166.17 |
IIS malicious activity: module_probe_attempt
|
Web App Attack | |
| ๐ญ๐ฐ 152.32.192.241 |
IIS malicious activity: high_400_error_rate (100% of requests are 400 errors)
|
Web App Attack | |
| ๐ฎ๐ฉ 158.140.166.17 |
malicious activity
|
Web App Attack | |
| ๐ง๐ช 34.14.94.225 |
Apache monitor: ssrf_log_spoofing
|
Brute-Force SSH | |
| ๐ฉ๐ช 217.160.3.169 |
Apache monitor: ssrf_log_spoofing
|
Brute-Force SSH | |
| ๐ญ๐ฐ 156.225.1.62 |
IIS malicious activity: high_400_error_rate (100% of requests are 400 errors)
|
Web App Attack | |
| ๐จ๐ณ 115.159.52.59 |
IIS malicious activity: high_400_error_rate (80% of requests are 400 errors)
|
Web App Attack | |
| ๐ฉ๐ช 43.228.157.52 |
KASM auto: exploit_/.env
|
Brute-Force SSH | |
| ๐บ๐ธ 186.65.113.58 |
malicious activity
|
Web App Attack | |
| ๐จ๐ณ 115.159.52.59 |
IIS malicious activity: high_400_error_rate (60% of requests are 400 errors)
|
Web App Attack | |
| ๐บ๐ธ 66.132.224.237 |
IIS malicious activity: high_400_error_rate (60% of requests are 400 errors)
|
Web App Attack | |
| ๐จ๐ณ 36.152.7.118 |
malicious activity
|
Web App Attack | |
| ๐จ๐ฆ 20.151.7.119 |
CrowdSec detected malicious activity
|
DDoS Attack | |
| ๐จ๐ฆ 20.104.96.117 |
CrowdSec detected malicious activity
|
DDoS Attack | |
| ๐ง๐ช 35.205.162.235 |
Suspicious activity detected in ezproxy log (e.g., sqlmap, masscan, python-requests)
|
DDoS Attack | |
| ๐ง๐ท 20.206.80.65 |
Suspicious activity detected in ezproxy log (e.g., sqlmap, masscan, python-requests)
|
DDoS Attack | |
| ๐ง๐ท 20.195.181.252 |
malicious activity
|
Web App Attack | |
| ๐ญ๐ฐ 199.45.154.127 |
CrowdSec detected malicious activity
|
DDoS Attack | |
| ๐ซ๐ท 185.207.250.9 |
CrowdSec detected malicious activity
|
DDoS Attack |