IP address
Tags:
Research scanner
Whitelisted
- IP blacklists
CI Army
185.242.226.2 is listed on the CI Army blacklist.
Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed:
primary (
feed detail page)
Last checked at:
2026-03-26 03:50:00.787000
Was present on blacklist at:
2026-01-31 03:50,
2026-02-01 03:50,
2026-02-02 03:50,
2026-02-03 03:50,
2026-02-04 03:50,
2026-02-05 03:50,
2026-02-06 03:50,
2026-02-07 03:50,
2026-02-08 03:50,
2026-02-09 03:50,
2026-02-11 03:50,
2026-02-12 03:50,
2026-02-13 03:50,
2026-02-14 03:50,
2026-02-15 03:50,
2026-02-16 03:50,
2026-02-17 03:50,
2026-02-18 03:50,
2026-02-19 03:50,
2026-02-20 03:50,
2026-02-21 03:50,
2026-02-22 03:50,
2026-02-23 03:50,
2026-02-24 03:50,
2026-02-25 03:50,
2026-02-27 03:50,
2026-02-28 03:50,
2026-03-02 03:50,
2026-03-03 03:50,
2026-03-04 03:50,
2026-03-05 03:50,
2026-03-06 03:50,
2026-03-11 03:50,
2026-03-12 03:50,
2026-03-13 03:50,
2026-03-14 03:50,
2026-03-15 03:50,
2026-03-16 03:50,
2026-03-17 03:50,
2026-03-18 03:50,
2026-03-19 03:50,
2026-03-20 03:50,
2026-03-21 03:50,
2026-03-22 03:50,
2026-03-23 03:50,
2026-03-24 03:50,
2026-03-25 03:50,
2026-03-26 03:50
DShield Block
185.242.226.2 was recently listed on the DShield Block blacklist, but currently it is not.
Description: Recommended Block List by DShield.org. It summarizes the top 20 attacking<br>class C (/24) subnets over the last three days.
Type of feed:
secondary (
feed detail page)
Last checked at:
2026-04-07 04:50:00
Was present on blacklist at:
2026-02-01 04:50,
2026-02-02 04:50,
2026-02-05 04:50,
2026-02-07 04:50,
2026-02-11 04:50,
2026-02-12 04:50,
2026-02-16 04:50,
2026-02-19 04:50,
2026-02-22 04:50,
2026-02-24 04:50,
2026-02-25 04:50,
2026-02-28 04:50,
2026-03-06 04:50,
2026-03-09 04:50,
2026-03-14 04:50
AbuseIPDB
185.242.226.2 is listed on the AbuseIPDB blacklist.
Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed:
primary (
feed detail page)
Last checked at:
2026-03-12 05:00:00.740000
Was present on blacklist at:
2026-02-02 05:00,
2026-02-03 05:00,
2026-02-10 05:00,
2026-03-12 05:00
Turris greylist
185.242.226.2 is listed on the Turris greylist blacklist.
Description: Greylist is the output of the Turris research project by CZ.NIC,<br>which collects data of malicious IPs.
Type of feed:
primary (
feed detail page)
Last checked at:
2026-02-04 22:15:00.171000
Was present on blacklist at:
2026-02-04 22:15
Echelon SSH bruteforce
185.242.226.2 is listed on the Echelon SSH bruteforce blacklist.
Description: Multiple SSH authentication attempts detected
Type of feed:
primary (
feed detail page)
Last checked at:
2026-03-24 10:35:00.388000
Was present on blacklist at:
2026-03-05 10:35,
2026-03-06 10:35,
2026-03-18 10:35,
2026-03-19 10:35,
2026-03-20 10:35,
2026-03-21 10:35,
2026-03-22 10:35,
2026-03-23 10:35,
2026-03-24 10:35
Threat categories
| TL | Role | Category | Details |
|---|
| 50 |
src |
scan |
|
| 25 |
src |
— |
|
- DShield reports (IP summary, reports)
- 2026-02-24
- Number of reports: 780
- Distinct targets: 529
- 2026-02-25
- Number of reports: 780
- Distinct targets: 529
- 2026-02-26
- Number of reports: 733
- Distinct targets: 493
- 2026-02-27
- Number of reports: 699
- Distinct targets: 513
- 2026-02-28
- Number of reports: 771
- Distinct targets: 531
- 2026-03-01
- Number of reports: 842
- Distinct targets: 518
- 2026-03-02
- Number of reports: 728
- Distinct targets: 574
- 2026-03-03
- Number of reports: 784
- Distinct targets: 485
- 2026-03-04
- Number of reports: 662
- Distinct targets: 464
- 2026-03-05
- Number of reports: 662
- Distinct targets: 464
- 2026-03-09
- Number of reports: 823
- Distinct targets: 608
- 2026-03-10
- Number of reports: 968
- Distinct targets: 618
- 2026-03-11
- Number of reports: 723
- Distinct targets: 562
- 2026-03-12
- Number of reports: 1273
- Distinct targets: 840
- 2026-03-13
- Number of reports: 1273
- Distinct targets: 840
- 2026-03-14
- Number of reports: 868
- Distinct targets: 568
- 2026-03-15
- Number of reports: 863
- Distinct targets: 527
- 2026-03-16
- Number of reports: 866
- Distinct targets: 575
- 2026-03-17
- Number of reports: 732
- Distinct targets: 520
- 2026-03-18
- Number of reports: 864
- Distinct targets: 565
- 2026-03-19
- Number of reports: 698
- Distinct targets: 486
- 2026-03-20
- Number of reports: 828
- Distinct targets: 581
- 2026-03-21
- Number of reports: 983
- Distinct targets: 581
- 2026-03-22
- Number of reports: 892
- Distinct targets: 593
- 2026-03-23
- Number of reports: 956
- Distinct targets: 662
- 2026-03-24
- Number of reports: 956
- Distinct targets: 662
- 2026-03-25
- Number of reports: 893
- Distinct targets: 596
- 2026-03-26
- Number of reports: 893
- Distinct targets: 596
- Origin AS
- AS202425 - INT-NETWORK
- BGP Prefix
- 185.242.226.0/24
- geo
-
United States
- 🕑 America/Chicago
- hostname
- security.criminalip.com
- hostname_class
- ['research_scanner']
- Address block ('inetnum' or 'NetRange' in whois database)
- 185.242.224.0 - 185.242.227.255
- reserved_range
- 0
- ts_added
- 2026-01-31 03:52:40.463000
- ts_last_update
- 2026-04-07 03:52:51.683000
Warden event timeline
DShield event timeline
Presence on blacklists
