Check an IP Address, Domain Name, Subnet, or ASN

178.18.253.107 was found in our database!

$ whois 178.18.253.107

country·🇫🇷 France

city·Lauterbourg

isp·Contabo GmbH

asn·AS51167

network·Standard

$ sikker risk 178.18.253.107scoring →

confidence

75%High

first_seen·Feb 16, 2026

last_seen·1h ago

sessions·45

events·45

$ sikker protocols 178.18.253.107

SIP

31 / 31

HTTP

10 / 10

HTTPS

3 / 3

FTP

1 / 1

$ sikker summary 178.18.253.107

178.18.253.107 has a threat confidence score of 75%. This IP address from France (AS51167, Contabo GmbH) has been observed in 45 honeypot sessions targeting SIP, HTTP, HTTPS, FTP protocols. First observed on February 16, 2026, most recently active March 21, 2026.

$ sikker behaviors 178.18.253.107catalog →

lowSip Options Capability Probe Structured23x

Automated SIP OPTIONS requests used to validate reachable VoIP endpoints and enumerate service capabilities without initiating a call session. The client sends standalone OPTIONS probes with high-entropy or unusually long Call-ID values, a pattern commonly associated with scripted scanning frameworks or VoIP reconnaissance tooling. Such activity is typically observed during infrastructure discovery phases where attackers identify responsive SIP servers, supported methods, and potential targets for toll fraud, brute-force registration attempts, or later exploitation campaigns.

infoHttp Root Path Request8x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

$ sikker primitives 178.18.253.107

sip_call_id_long_numeric23 sip_call_id_alphanumeric_entropy23 http_method_get8 https_path_root1

$ sikker related 178.18.253.107

🇫🇷·More threats fromFrance→AS·More threats fromContabo GmbH→SIP·More threats targetingSIP→HTTP·More threats targetingHTTP→HTTP·More threats targetingHTTPS→FTP·More threats targetingFTP→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
62.171.129.237	99%	63,174
161.97.132.79	98%	62,904
161.97.102.39	69%	932
109.199.98.14	97%	540
94.72.102.118	95%	697

IP Address	Confidence	Events
51.91.168.102	99%	628,029
54.38.60.112	100%	17,996
109.199.98.14	97%	546
54.38.41.116	87%	24,251
51.68.65.117	100%	792