AbuseIPDB » 185.220.101.42

185.220.101.42 was found in our database!

This IP was reported 3,928 times. Confidence of Abuse is 100%: ?

100%

This address is a Tor exit node. Neither the owner nor the provider are directly behind the offending action.

ISP	Zwiebelfreunde E.V.
Usage Type	Data Center/Web Hosting/Transit
Hostname(s)	tor-exit-42.for-privacy.net
Domain Name	zwiebelfreunde.de
Country	Netherlands
City	Amsterdam, Noord-Holland

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 185.220.101.42

Whois 185.220.101.42

IP Abuse Reports for 185.220.101.42:

This IP address has been reported a total of 3,928 times from 240 distinct sources. 185.220.101.42 was first reported on December 21st 2020, and the most recent report was 54 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
el-brujo	54 minutes ago	08/11/2022-22:50:53.124342 185.220.101.42 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 44	Hacking
Anonymous	3 hours ago	ft-1848-fussball.de 185.220.101.42 [11/Aug/2022:20:40:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5935 ... show moreft-1848-fussball.de 185.220.101.42 [11/Aug/2022:20:40:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5935 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.24 Safari/537.36" ft-1848-fussball.de 185.220.101.42 [11/Aug/2022:20:40:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 5935 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.24 Safari/537.36" show less	Web App Attack
nowyouknow	5 hours ago	(From [email protected]) ttiwmm	Phishing Web Spam
Anonymous	8 hours ago	Form spam	Web Spam
IrisFlower	18 hours ago	Unauthorized connection attempt detected from IP address 185.220.101.42 to port 8080 [J]	Port Scan Hacking
el-brujo	10 Aug 2022	08/10/2022-19:12:54.621901 185.220.101.42 Protocol: 6 ET SCAN Potential VNC Scan 5900-5920	Port Scan
ad5gb.com	10 Aug 2022	...	Brute-Force
el-brujo	10 Aug 2022	08/10/2022-15:39:00.917236 185.220.101.42 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 44	Hacking
IrisFlower	10 Aug 2022	Unauthorized connection attempt detected from IP address 185.220.101.42 to port 80 [J]	Port Scan Hacking
rakkor	10 Aug 2022	2022/02/10 17:31:08 [crit] 20586#20586: *316078 SSL_do_handshake() failed (SSL: error:141CF06C:lib(2 ... show more2022/02/10 17:31:08 [crit] 20586#20586: *316078 SSL_do_handshake() failed (SSL: error:141CF06C:lib(20):func(463):reason(108)) while SSL handshaking, client: 185.220.101.42, server: 0.0.0.0:443 show less	Brute-Force Web App Attack
el-brujo	10 Aug 2022	08/10/2022-08:24:22.736226 185.220.101.42 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 44	Hacking
Anonymous	10 Aug 2022	Form spam	Web Spam
Unwasted	09 Aug 2022	Abusive content scan (abuse_score:>80)	Hacking Brute-Force Web App Attack
IrisFlower	09 Aug 2022	Unauthorized connection attempt detected from IP address 185.220.101.42 to port 21 [J]	Port Scan Hacking
IrisFlower	09 Aug 2022	Unauthorized connection attempt detected from IP address 185.220.101.42 to port 8080 [J]	Port Scan Hacking

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩