IP address 1.212.225.99 has been flagged in 756 abuse reports across 15 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is aggregated threat, along with aggressive scanner, attacks, brute force, email abuse, malicious, malware c2, persistent attacker, rdp bruteforce, scanning, severe abuse, spam, ssh bruteforce, unknown.
This IP is geolocated in South Korea (Anyang-si) and belongs to the network LG DACOM Corporation (AS3786). Reports span from 2023-12-26 to 2026-03-30.
Assessment: With 756 abuse reports, 1.212.225.99 shows persistent malicious activity that has been flagged by multiple threat intelligence feeds. The IP has been observed conducting automated SSH login attempts against internet-facing servers, a technique commonly used to gain unauthorized access to systems.