JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.42.116.108

192.42.116.108 was found in our database!

This IP was reported 426 times. Confidence of Abuse is 100%: ?

100%

This address is a Tor exit node. Neither the owner nor the provider are directly behind the offending action.

ISP	TOR EXIT AND MORE
Usage Type	Data Center/Web Hosting/Transit
ASN	AS215125
Domain Name	cyberology.nl
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.42.116.108

Whois 192.42.116.108

IP Abuse Reports for 192.42.116.108:

This IP address has been reported a total of 426 times from 204 distinct sources. 192.42.116.108 was first reported on April 2nd 2026, and the most recent report was 41 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇰🇷 PROJECT ELIV	2026-06-24 01:43:50 (41 minutes ago)	SSH honeypot: attacker brute-forced in as "root"; ran 1 command(s): LC_ALL=C top -bn1	Hacking Brute-Force SSH
🇨🇿 ptlab	2026-06-24 00:45:58 (1 hour ago)	Detected wp_login attack from WP-host.	Hacking Web App Attack
🇫🇷 Duggy_Tuxy🧱	2026-06-23 12:54:35 (13 hours ago)	[HP02-SRV02-FR] Blocked by SysWarden Firewall (Port Scan / Probing)	Port Scan
🇪🇸 whatda	2026-06-22 21:27:04 (1 day ago)	SSH brute-force login detected. Automated IDS report.	SSH Brute-Force
🇰🇷 2048	2026-06-22 21:12:20 (1 day ago)	SSH credential brute-force observed by honeypot. Source IP: 192.42.116.108 Targeted device: DVR Firs ... show more SSH credential brute-force observed by honeypot. Source IP: 192.42.116.108 Targeted device: DVR First seen: 22 Jun 2026 21:12:19 UTC Last seen: 22 Jun 2026 21:12:20 UTC Attempts: 2 Client: SSH-2.0-OpenSSH_9.9 Sample credentials: root:[public-key ssh-rsa], root:root show less	Brute-Force SSH IoT Targeted
🇩🇪 todix	2026-06-22 17:08:47 (1 day ago)	Wordpress brute force or spam attempt from 192.42.116.108	Brute-Force
🇰🇷 PROJECT ELIV	2026-06-22 14:18:07 (1 day ago)	SSH honeypot: attacker brute-forced in as "root"; ran 1 command(s): LC_ALL=C top -bn1	Hacking Brute-Force SSH
🇮🇩 securejdprop	2026-06-22 06:11:35 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET TOR Known Tor E ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET TOR Known Tor Exit Node Traffic group 53). Ip 192.42.116.108 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-22 06:11:34.240259526 +0000 UTC show less	Hacking Web App Attack
🇩🇪 www.Examensfragen.de	2026-06-22 05:51:14 (1 day ago)		Open Proxy Web Spam Bad Web Bot
🇮🇩 securejdprop	2026-06-22 05:12:49 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET TOR Known Tor E ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET TOR Known Tor Exit Node Traffic group 53). Ip 192.42.116.108 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-22 05:12:48.269149254 +0000 UTC show less	Hacking Web App Attack
🇮🇩 securejdprop	2026-06-22 04:55:46 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET TOR Known Tor E ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET TOR Known Tor Exit Node Traffic group 53). Ip 192.42.116.108 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-22 04:55:45.04096443 +0000 UTC show less	Hacking Web App Attack
🇯🇵 SentinalX by uzumaru	2026-06-22 04:07:40 (1 day ago)	Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was ... show more Detected by SentinelX honeypot: sent HTTP CONNECT request probing for an open proxy. Connection was hijacked and held in a tarpit to slow down the scan. Probed target: d3ivqzdymldr3c.cloudfront.net:80 show less	Open Proxy Port Scan
Anonymous	2026-06-22 03:40:13 (1 day ago)	Attac	Brute-Force
🇧🇬 pa4080	2026-06-21 10:55:15 (2 days ago)	Detected by ModSecurity. Request URI: /index.php?s=/admin/think%5Capp/invokeMethod&method[0]=think%5 ... show more Detected by ModSecurity. Request URI: /index.php?s=/admin/think%5Capp/invokeMethod&method[0]=think%5Cview%5Cdriver%5CPhp&method[1]=display&vars[0]=%3C?php%20echo%20md5(%27a3233a3800f8cba9dd419d1997d27412%27); show less	Hacking Web App Attack
🇦🇹 René Hickersberger	2026-06-21 05:08:31 (2 days ago)	malicious bot detected: violations="hit-honeypot"; user_agent="Go-http-client/1.1"	Web App Attack

Showing 1 to 15 of 426 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 213.152.161.54

🇹🇭 203.154.158.195

🇲🇽 187.191.48.4

🇨🇳 180.184.176.148

🇮🇳 59.179.31.237

🇸🇬 54.179.0.203

🇨🇳 49.72.111.25

🇺🇸 20.64.105.115

🇺🇸 216.25.89.130

🇩🇪 213.209.159.225

🇩🇪 151.243.11.245

🇳🇱 91.92.40.231

🇸🇬 68.183.236.1

🇺🇸 65.49.20.69

🇫🇷 51.159.149.103

🇫🇷 51.83.10.173

🇨🇦 45.3.52.42

🇺🇸 18.236.154.173

🇸🇪 2.71.215.156

🇺🇸 216.25.89.128