← Back to Dashboard

168.243.239.122 Threat Intelligence Report

Risk Level: CRITICAL — 207 abuse reports from 4 sources

Threat Intelligence Summary

IP address 168.243.239.122 has been flagged in 207 abuse reports across 4 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is aggregated threat, along with email abuse, malware c2, severe abuse, ssh bruteforce, suspicious activity.

This IP is geolocated in El Salvador (San Salvador) and belongs to the network ICOMSA S.A. de C.V. (AS16592). Reports span from 2025-08-08 to 2025-12-20.

Assessment: With 207 abuse reports, 168.243.239.122 shows persistent malicious activity that has been flagged by multiple threat intelligence feeds. The IP has been observed conducting automated SSH login attempts against internet-facing servers, a technique commonly used to gain unauthorized access to systems.

Data aggregated from 4 independent threat intelligence sources.

Geolocation

Country El Salvador
City San Salvador
Region San Salvador Department
ISP/ASN ICOMSA S.A. de C.V.
Timezone America/El_Salvador

Threat Status

Overall Status Critical
Threat Score 100.0%
Report Count 207
Sources 4
First Seen 2025-08-08
Last Seen 2025-12-20

Check IPs automatically with the WAYSCloud API

Free tier: 1,000 lookups/day. Get threat scores, geolocation, and abuse reports via REST API.

Explore the API →

See how we classify and verify threats →

Related Intelligence

El Salvador Threat Intelligence → AS16592 Network Intelligence → See all top malicious IPs → View latest attacks →
Learn about these threats: