JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 170.130.201.42

170.130.201.42 was found in our database!

This IP was reported 453 times. Confidence of Abuse is 100%: ?

100%

ISP	ServerHub Dallas
Usage Type	Data Center/Web Hosting/Transit
ASN	AS62904
Hostname(s)	fileagi.com
Domain Name	serverhub.com
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 170.130.201.42

Whois 170.130.201.42

IP Abuse Reports for 170.130.201.42:

This IP address has been reported a total of 453 times from 287 distinct sources. 170.130.201.42 was first reported on April 20th 2026, and the most recent report was 7 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Watto	2026-05-17 00:51:57 (2 weeks ago)	Honeypot caught web brute force / scanning from United States; 46 events recorded by kiosk-watchtowe ... show more Honeypot caught web brute force / scanning from United States; 46 events recorded by kiosk-watchtower (Cowrie + canary stack). Automated report from honeypot, please do not contact owner. show less	Bad Web Bot Web App Attack
🇺🇸 sh97	2026-05-16 16:22:47 (2 weeks ago)	US910-RN-LAX-RYZ7950.vps.992969.xyz: SSH Brute Force from 170.130.201.42 at 2026-05-16 21:52:47 IST	Brute-Force SSH
🇪🇸 Gem	2026-05-15 22:09:23 (2 weeks ago)	Unauthorized web scan.	Web App Attack
🇩🇪 phil2k	2026-05-15 04:16:19 (2 weeks ago)	ICMP + TCP portscan or auth bruteforce on ports: 2222 domain ssh telnet : Firewall: Within 2026-05-1 ... show more ICMP + TCP portscan or auth bruteforce on ports: 2222 domain ssh telnet : Firewall: Within 2026-05-10 16:01:23 - 2026-05-10 16:01:23 CEST(+0200) identified: unallowed access from 170.130.201.42/32 on port 23(telnet) (1 trial) Fail2ban: Within 2026-05-10 16:01:23 - 2026-05-10 16:01:24 CEST(+0200) banned: 5 times by fail2ban[firewall]; 5 times by fail2ban[recidive] show less	Port Scan Brute-Force SSH Ping of Death
🇦🇹 urnilxfgbez	2026-05-11 22:45:00 (3 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇧🇷 SOC-BR	2026-05-11 07:22:51 (3 weeks ago)	Attack detected by Fortinet - apache: Apache.HTTP.Server.cgi-bin.Path.Traversal - 2026-05-10 18:49:5 ... show more Attack detected by Fortinet - apache: Apache.HTTP.Server.cgi-bin.Path.Traversal - 2026-05-10 18:49:51 - Source Port 46346 show less	Port Scan Hacking
🇫🇷 service Informatique	2026-05-11 04:00:37 (3 weeks ago)	/cgi-bin	Web App Attack
🇸🇰 sh97	2026-05-11 01:45:25 (3 weeks ago)	SK01-Hosteroid: SSH Brute Force from 170.130.201.42 at 2026-05-11 07:15:25 IST	Brute-Force SSH
Anonymous	2026-05-11 01:45:12 (3 weeks ago)	SSH brute force attempt. User: root, Pass: [REDACTED]	Brute-Force SSH
🇸🇪 donarev419	2026-05-11 01:41:06 (3 weeks ago)	Connection to port 80 with data transfer. Data preview: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/ ... show more Connection to port 80 with data transfer. Data preview: POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1 Host: 51.21.134.169 show less	Port Scan Hacking
🇺🇸 RAP	2026-05-11 01:38:45 (3 weeks ago)	2026-05-11 01:38:45 UTC Unauthorized activity to TCP port 22. SSH	SSH
Anonymous	2026-05-11 01:36:48 (3 weeks ago)	/cgi-bin probe	Web App Attack
🇺🇸 Your_Top	2026-05-11 01:36:33 (3 weeks ago)	2026-05-10T18:30:58.894380-07:00 cm0app00.cyberstadium.com sshd[4091607]: Invalid user admin from 17 ... show more 2026-05-10T18:30:58.894380-07:00 cm0app00.cyberstadium.com sshd[4091607]: Invalid user admin from 170.130.201.42 port 35342 2026-05-10T18:31:29.418812-07:00 cm0app00.cyberstadium.com sshd[4091845]: Invalid user orangepi from 170.130.201.42 port 50074 2026-05-10T18:35:01.925833-07:00 cm0app00.cyberstadium.com sshd[4093553]: Invalid user test from 170.130.201.42 port 48724 2026-05-10T18:35:32.247197-07:00 cm0app00.cyberstadium.com sshd[4093784]: Invalid user user from 170.130.201.42 port 45774 2026-05-10T18:36:32.870503-07:00 cm0app00.cyberstadium.com sshd[4094268]: Invalid user admin from 170.130.201.42 port 36578 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-11 01:32:07 (3 weeks ago)	(sshd) Failed SSH login from 170.130.201.42 (US/-/fileagi.com): 5 in the last 3600 secs; Ports: ; D ... show more (sshd) Failed SSH login from 170.130.201.42 (US/-/fileagi.com): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: May 10 20:30:47 14506 sshd[24474]: Invalid user admin from 170.130.201.42 port 60594 May 10 20:30:49 14506 sshd[24474]: Failed password for invalid user admin from 170.130.201.42 port 60594 ssh2 May 10 20:31:19 14506 sshd[24573]: Invalid user orangepi from 170.130.201.42 port 47132 May 10 20:31:21 14506 sshd[24573]: Failed password for invalid user orangepi from 170.130.201.42 port 47132 ssh2 May 10 20:31:52 14506 sshd[24625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.130.201.42 user=root show less	Brute-Force SSH
🇰🇷 Woodie	2026-05-11 01:32:05 (3 weeks ago)	2026-05-10T21:31:27.838109-04:00 debian sshd[379226]: Invalid user orangepi from 170.130.201.42 port ... show more 2026-05-10T21:31:27.838109-04:00 debian sshd[379226]: Invalid user orangepi from 170.130.201.42 port 34634 2026-05-10T21:31:27.841282-04:00 debian sshd[379226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.130.201.42 2026-05-10T21:31:30.111124-04:00 debian sshd[379226]: Failed password for invalid user orangepi from 170.130.201.42 port 34634 ssh2 2026-05-10T21:32:02.658984-04:00 debian sshd[379300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.130.201.42 user=root 2026-05-10T21:32:04.731905-04:00 debian sshd[379300]: Failed password for root from 170.130.201.42 port 45818 ssh2 ... show less	Brute-Force SSH

Showing 106 to 120 of 453 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 212.87.199.64

🇲🇰 188.44.20.33

🇻🇳 103.130.213.223

🇩🇪 69.5.169.201

🇩🇪 69.5.169.50

🇮🇳 47.11.14.187

🇯🇵 160.251.169.213

🇺🇸 103.143.231.24

🇱🇹 45.227.254.170

🇩🇪 35.246.131.210

🇳🇱 5.255.110.56

🇮🇳 2400:d321:2277:3897::1

🇬🇧 193.163.125.196

🇺🇸 162.214.99.119

🇮🇶 150.228.105.103

🇵🇭 136.158.78.233

🇨🇩 102.216.240.61

🇨🇳 101.254.159.210

🇩🇪 91.92.240.42

🇱🇹 81.30.98.44