← Back to Dashboard

185.199.108.133 Threat Intelligence Report

Risk Level: CRITICAL — 1744 abuse reports from 2 sources

Threat Intelligence Summary

IP address 185.199.108.133 has been flagged in 1744 abuse reports across 2 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is botnet c2, along with malware c2, rdp bruteforce.

This IP is geolocated in United States and belongs to the network Fastly, Inc. (AS54113). Reports span from 2023-06-03 to 2026-03-31.

Assessment: 185.199.108.133 is among the most actively malicious IP addresses in our database, with over 1744 abuse reports from 2 independent sources. This IP has been identified as a command-and-control server for botnet infrastructure, meaning it coordinates malicious activity across networks of compromised machines.

Data aggregated from 2 independent threat intelligence sources.

Geolocation

Country United States
ISP/ASN Fastly, Inc.
Timezone America/Chicago

Threat Status

Overall Status Critical
Threat Score 100.0%
Report Count 1744
Sources 2
First Seen 2023-06-03
Last Seen 2026-03-31

Check IPs automatically with the WAYSCloud API

Free tier: 1,000 lookups/day. Get threat scores, geolocation, and abuse reports via REST API.

Explore the API →

See how we classify and verify threats →

Related Intelligence

United States Threat Intelligence → AS54113 Network Intelligence → See all top malicious IPs → View latest attacks →
Learn about these threats: