AbuseIPDB » 185.220.102.242

185.220.102.242 was found in our database!

This IP was reported 12,731 times. Confidence of Abuse is 100%: ?

100%

This address is a Tor exit node. Neither the owner nor the provider are directly behind the offending action.

ISP	Zwiebelfreunde E.V.
Usage Type	Data Center/Web Hosting/Transit
Hostname(s)	185-220-102-242.torservers.net
Domain Name	zwiebelfreunde.de
Country	Netherlands
City	Amsterdam, Noord-Holland

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 185.220.102.242

Whois 185.220.102.242

IP Abuse Reports for 185.220.102.242:

This IP address has been reported a total of 12,731 times from 820 distinct sources. 185.220.102.242 was first reported on November 22nd 2020, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
IrisFlower	1 hour ago	Unauthorized connection attempt detected from IP address 185.220.102.242 to port 80 [J]	Port Scan Hacking
imgzit	2 hours ago	(sshd) Failed SSH login from 185.220.102.242 (DE/Germany/185-220-102-242.torservers.net): ; Ports: * ... show more(sshd) Failed SSH login from 185.220.102.242 (DE/Germany/185-220-102-242.torservers.net): ; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 25 17:24:11 temporary sshd[2131230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.102.242 user=root show less	Brute-Force SSH
el-brujo	5 hours ago	06/25/2022-22:46:38.599724 185.220.102.242 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 49	Hacking
Anonymous	6 hours ago	port scan and connect, tcp 80 (http)	Port Scan
Anonymous	13 hours ago	Form spam	Web Spam
SpaceHost-Server	15 hours ago	185.220.102.242 - - [25/Jun/2022:12:53:58 +0200] "POST /xmlrpc.php HTTP/1.0" 200 932 "-" "Mozilla/5. ... show more185.220.102.242 - - [25/Jun/2022:12:53:58 +0200] "POST /xmlrpc.php HTTP/1.0" 200 932 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/18.17763" 185.220.102.242 - - [25/Jun/2022:12:54:00 +0200] "POST /xmlrpc.php HTTP/1.0" 200 932 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/18.17763" 185.220.102.242 - - [25/Jun/2022:12:54:05 +0200] "POST /xmlrpc.php HTTP/1.0" 200 932 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/18.17763" show less	Hacking Web App Attack
IrisFlower	16 hours ago	Unauthorized connection attempt detected from IP address 185.220.102.242 to port 22 [J]	Port Scan Hacking
IrisFlower	20 hours ago	Unauthorized connection attempt detected from IP address 185.220.102.242 to port 8443 [J]	Port Scan Hacking
IrisFlower	21 hours ago	Unauthorized connection attempt detected from IP address 185.220.102.242 to port 53 [J]	Port Scan Hacking
dagami.org	23 hours ago	"SSH brute force auth login attempt."	Brute-Force SSH
IrisFlower	23 hours ago	Unauthorized connection attempt detected from IP address 185.220.102.242 to port 22 [J]	Port Scan Hacking
nick	24 Jun 2022	Jun 25 02:45:34 helios sshd[3292701]: Failed password for root from 185.220.102.242 port 25658 ssh2< ... show moreJun 25 02:45:34 helios sshd[3292701]: Failed password for root from 185.220.102.242 port 25658 ssh2 Jun 25 02:45:38 helios sshd[3292701]: Failed password for root from 185.220.102.242 port 25658 ssh2 Jun 25 02:45:42 helios sshd[3292701]: Failed password for root from 185.220.102.242 port 25658 ssh2 Jun 25 02:45:45 helios sshd[3292701]: Failed password for root from 185.220.102.242 port 25658 ssh2 Jun 25 02:45:48 helios sshd[3292701]: Failed password for root from 185.220.102.242 port 25658 ssh2 show less	Brute-Force SSH
IrisFlower	24 Jun 2022	Unauthorized connection attempt detected from IP address 185.220.102.242 to port 22 [J]	Port Scan Hacking
el-brujo	24 Jun 2022	06/24/2022-20:16:23.557612 185.220.102.242 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 49	Hacking
apn	24 Jun 2022	Jun 24 19:35:47 icecube sshd[28039]: User root from 185.220.102.242 not allowed because not listed i ... show moreJun 24 19:35:47 icecube sshd[28039]: User root from 185.220.102.242 not allowed because not listed in AllowUsers ... show less	Brute-Force SSH

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩