IP address 2.229.200.226 has been flagged in 69 abuse reports across 21 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is abuseipdb blacklist, along with aggregated threat, aggressive scanner, attacks, brute force, email abuse, malware c2, malware infrastructure, reconnaissance, reputation low, spam, ssh brute force, ssh bruteforce, suspicious activity, unknown.
This IP is geolocated in Italy (Milan) and belongs to the network Fastweb (AS12874). Reports span from 2026-02-13 to 2026-04-17.
Assessment: Despite a lower report volume, the severity and nature of activity from 2.229.200.226 has triggered critical-level alerts across our threat detection network. The IP has been observed conducting automated SSH login attempts against internet-facing servers, a technique commonly used to gain unauthorized access to systems.