JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 107.172.42.28

107.172.42.28 was found in our database!

This IP was reported 470 times. Confidence of Abuse is 0%: ?

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	107-172-42-28-host.colocrossing.com
Domain Name	colocrossing.com
Country	🇺🇸 United States of America
City	Buffalo, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 107.172.42.28

Whois 107.172.42.28

IP Abuse Reports for 107.172.42.28:

This IP address has been reported a total of 470 times from 147 distinct sources. 107.172.42.28 was first reported on February 26th 2024, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ghostwarriors	2024-03-17 00:20:38 (2 years ago)	Unauthorized connection attempt detected, SSH Brute-Force	Port Scan Brute-Force SSH
🇩🇪 pianoman911	2024-03-11 06:32:55 (2 years ago)	Mar 11 07:26:04 bigpie sshd[674768]: Invalid user oracle1 from 107.172.42.28 port 52960 Mar 11 07:30 ... show more Mar 11 07:26:04 bigpie sshd[674768]: Invalid user oracle1 from 107.172.42.28 port 52960 Mar 11 07:30:26 bigpie sshd[735138]: Invalid user administrator from 107.172.42.28 port 40206 Mar 11 07:31:47 bigpie sshd[753174]: Invalid user ryan from 107.172.42.28 port 58744 Mar 11 07:33:05 bigpie sshd[772170]: Invalid user guest from 107.172.42.28 port 45106 Mar 11 07:34:21 bigpie sshd[789164]: Invalid user music from 107.172.42.28 port 42382 ... show less	Brute-Force SSH
🇺🇸 rafled	2024-03-11 05:03:33 (2 years ago)	Mar 11 05:03:32 instance-20221219-1303 sshd[2921734]: Invalid user sz from 107.172.42.28 port 55518 ... show more Mar 11 05:03:32 instance-20221219-1303 sshd[2921734]: Invalid user sz from 107.172.42.28 port 55518 ... show less	Brute-Force SSH
🇺🇸 rafled	2024-03-11 04:47:27 (2 years ago)	Mar 11 04:47:27 instance-20221219-1303 sshd[2921410]: Invalid user hmjsxx from 107.172.42.28 port 39 ... show more Mar 11 04:47:27 instance-20221219-1303 sshd[2921410]: Invalid user hmjsxx from 107.172.42.28 port 39908 ... show less	Brute-Force SSH
🇺🇸 rafled	2024-03-11 04:31:56 (2 years ago)	Mar 11 04:31:55 instance-20221219-1303 sshd[2921023]: Invalid user wengxi from 107.172.42.28 port 54 ... show more Mar 11 04:31:55 instance-20221219-1303 sshd[2921023]: Invalid user wengxi from 107.172.42.28 port 54412 ... show less	Brute-Force SSH
🇺🇸 SANYALnet Labs	2024-03-11 04:25:51 (2 years ago)	Mar 11 04:25:46 hecnet-us-east-gw sshd[57425]: User root from 107.172.42.28 not allowed because not ... show more Mar 11 04:25:46 hecnet-us-east-gw sshd[57425]: User root from 107.172.42.28 not allowed because not listed in AllowUsers Mar 11 04:25:48 hecnet-us-east-gw sshd[57425]: Failed password for invalid user root from 107.172.42.28 port 34948 ssh2 Mar 11 04:25:50 hecnet-us-east-gw sshd[57425]: Disconnected from invalid user root 107.172.42.28 port 34948 [preauth] ... show less	Brute-Force
🇺🇸 jlgtx	2024-03-11 03:53:56 (2 years ago)	2024-03-10 22:52:40.158678-0500 localhost sshd\[65581\]: Invalid user nishi from 107.172.42.28 port ... show more 2024-03-10 22:52:40.158678-0500 localhost sshd\[65581\]: Invalid user nishi from 107.172.42.28 port 48792 2024-03-10 22:52:42.191893-0500 localhost sshd\[65581\]: Failed password for invalid user nishi from 107.172.42.28 port 48792 ssh2 2024-03-10 22:53:50.454416-0500 localhost sshd\[65723\]: Invalid user rahul from 107.172.42.28 port 47630 ... show less	Brute-Force SSH
🇳🇱 stom	2024-03-11 03:22:18 (2 years ago)	2024-03-11T03:18:54.876902 socky.stom66.co.uk sshd[2483819]: Invalid user accounts from 107.172.42.2 ... show more 2024-03-11T03:18:54.876902 socky.stom66.co.uk sshd[2483819]: Invalid user accounts from 107.172.42.28 port 37218 2024-03-11T03:22:11.903254 socky.stom66.co.uk sshd[2484508]: Invalid user rita from 107.172.42.28 port 47518 ... show less	Brute-Force SSH
🇺🇸 jlgtx	2024-03-11 03:22:12 (2 years ago)	2024-03-10 22:18:11.305292-0500 localhost sshd\[62723\]: Invalid user accounts from 107.172.42.28 p ... show more 2024-03-10 22:18:11.305292-0500 localhost sshd\[62723\]: Invalid user accounts from 107.172.42.28 port 41554 2024-03-10 22:18:13.338401-0500 localhost sshd\[62723\]: Failed password for invalid user accounts from 107.172.42.28 port 41554 ssh2 2024-03-10 22:22:04.303380-0500 localhost sshd\[62864\]: Invalid user rita from 107.172.42.28 port 37442 ... show less	Brute-Force SSH
Anonymous	2024-03-11 01:40:22 (2 years ago)	Mar 11 02:37:33 fi7 sshd[1700978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid= ... show more Mar 11 02:37:33 fi7 sshd[1700978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.42.28 Mar 11 02:37:36 fi7 sshd[1700978]: Failed password for invalid user dog from 107.172.42.28 port 53792 ssh2 Mar 11 02:40:21 fi7 sshd[1701106]: Invalid user mohsin from 107.172.42.28 port 42356 ... show less	Brute-Force SSH
🇸🇬 tommygod.ddns.net	2024-03-11 00:26:15 (2 years ago)	Mar 11 00:24:55 mailtommygod sshd[3420108]: Invalid user ionian from 107.172.42.28 port 42646 Mar 11 ... show more Mar 11 00:24:55 mailtommygod sshd[3420108]: Invalid user ionian from 107.172.42.28 port 42646 Mar 11 00:24:55 mailtommygod sshd[3420108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.42.28 Mar 11 00:24:57 mailtommygod sshd[3420108]: Failed password for invalid user ionian from 107.172.42.28 port 42646 ssh2 Mar 11 00:26:13 mailtommygod sshd[3420306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.42.28 user=root Mar 11 00:26:15 mailtommygod sshd[3420306]: Failed password for root from 107.172.42.28 port 35216 ssh2 show less	Brute-Force SSH
Anonymous	2024-03-10 23:20:40 (2 years ago)	Mar 11 00:19:27 Ubuntu-Main sshd[61942]: Invalid user ts3server from 107.172.42.28 port 46720 Mar 11 ... show more Mar 11 00:19:27 Ubuntu-Main sshd[61942]: Invalid user ts3server from 107.172.42.28 port 46720 Mar 11 00:19:27 Ubuntu-Main sshd[61942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.42.28 Mar 11 00:19:29 Ubuntu-Main sshd[61942]: Failed password for invalid user ts3server from 107.172.42.28 port 46720 ssh2 Mar 11 00:20:37 Ubuntu-Main sshd[61962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.42.28 user=root Mar 11 00:20:39 Ubuntu-Main sshd[61962]: Failed password for root from 107.172.42.28 port 35668 ssh2 ... show less	Hacking Brute-Force SSH
🇮🇳 659761066	2024-03-10 23:17:17 (2 years ago)	Mar 11 04:47:16 localhost sshd[313292]: Invalid user manager from 107.172.42.28 port 35722 ...	Port Scan Hacking Brute-Force Exploited Host Web App Attack
🇩🇪 vereinshosting	2024-03-10 22:32:50 (2 years ago)	Invalid user github from 107.172.42.28 port 50606	Brute-Force SSH
🇩🇪 Antti	2024-03-10 21:32:36 (2 years ago)	2024-03-10T21:29:54.359624+00:00 melon sshd[2873219]: User root from 107.172.42.28 not allowed becau ... show more 2024-03-10T21:29:54.359624+00:00 melon sshd[2873219]: User root from 107.172.42.28 not allowed because none of user's groups are listed in AllowGroups 2024-03-10T21:31:10.573743+00:00 melon sshd[2874516]: Connection from 107.172.42.28 port 59020 on 65.108.201.187 port 22 rdomain "" 2024-03-10T21:31:11.178275+00:00 melon sshd[2874516]: User root from 107.172.42.28 not allowed because none of user's groups are listed in AllowGroups 2024-03-10T21:32:34.829285+00:00 melon sshd[2875715]: Connection from 107.172.42.28 port 55342 on 65.108.201.187 port 22 rdomain "" 2024-03-10T21:32:35.477539+00:00 melon sshd[2875715]: Invalid user github from 107.172.42.28 port 55342 show less	Brute-Force SSH

Showing 1 to 15 of 470 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 221.131.139.70

🇮🇶 185.166.25.150

🇰🇷 183.98.212.74

🇳🇱 51.15.120.216

🇳🇨 203.147.75.53

🇳🇱 195.170.172.128

🇺🇸 172.236.228.208

🇬🇧 165.154.174.108

🇮🇩 108.137.8.107

🇸🇬 103.13.207.26

🇷🇺 95.86.231.237

🇦🇪 86.98.209.247

🇺🇸 23.95.217.16

🇨🇳 221.198.83.195

🇰🇪 196.216.85.57

🇨🇳 180.76.176.249

🇺🇸 161.35.124.147

🇫🇷 109.205.181.77

🇨🇳 103.208.15.150

🇲🇦 81.192.46.32