JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.42.116.114

192.42.116.114 was found in our database!

This IP was reported 332 times. Confidence of Abuse is 100%: ?

100%

This address is a Tor exit node. Neither the owner nor the provider are directly behind the offending action.

ISP	TOR EXIT AND MORE
Usage Type	Data Center/Web Hosting/Transit
ASN	AS215125
Domain Name	cyberology.nl
Country	🇳🇱 Netherlands
City	Amsterdam, North Holland

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.42.116.114

Whois 192.42.116.114

IP Abuse Reports for 192.42.116.114:

This IP address has been reported a total of 332 times from 177 distinct sources. 192.42.116.114 was first reported on April 18th 2026, and the most recent report was 56 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-06-24 01:33:01 (56 minutes ago)	Repeated requests on blocked xmlrpc.php, blocked by fail2ban in custom-503-xmlrpc jail	Bad Web Bot Web App Attack
🇳🇱 debestelapp	2026-06-23 23:25:07 (3 hours ago)		Web App Attack
🇰🇷 2048	2026-06-23 21:13:34 (5 hours ago)	SSH credential brute-force observed by honeypot. Source IP: 192.42.116.114 Targeted device: DVR Firs ... show more SSH credential brute-force observed by honeypot. Source IP: 192.42.116.114 Targeted device: DVR First seen: 23 Jun 2026 21:13:34 UTC Last seen: 23 Jun 2026 21:13:34 UTC Attempts: 2 Client: SSH-2.0-OpenSSH_9.9 Sample credentials: root:[public-key ssh-rsa], root:root show less	Brute-Force SSH IoT Targeted
🇺🇸 nowyouknow	2026-06-23 12:23:12 (14 hours ago)	Malicious Traffic/Form Submission	Phishing Web Spam
🇮🇩 xveil	2026-06-23 11:57:54 (14 hours ago)	2026-06-23T18:57:51.913799 mail-honeypot postfix/submission/smtpd[1988]: warning: unknown[192.42.116 ... show more 2026-06-23T18:57:51.913799 mail-honeypot postfix/submission/smtpd[1988]: warning: unknown[192.42.116.114]: SASL PLAIN authentication failed: authentication failure ... show less	Brute-Force
🇺🇸 nodepile	2026-06-23 00:40:27 (1 day ago)	Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/browse-by-car-model/tesla.html ua= ... show more Requests denied due to proxy/VPN risk (tenant=82 method=GET path=/browse-by-car-model/tesla.html ua='Mozilla/5.0 (Linux; Android 4.4.2; SM-P601) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.117 Safari/537.36') show less	Open Proxy VPN IP
🇫🇷 Duggy_Tuxy🧱	2026-06-22 19:20:16 (1 day ago)	[HP02-SRV02-FR] Blocked by SysWarden Firewall (SSH Attack)	Brute-Force SSH Port Scan
🇺🇸 MrCbrue	2026-06-22 18:24:47 (1 day ago)	Cowrie Activity: Successful login (user: root) \| Failed login (user: root)	Brute-Force SSH
🇮🇩 securejdprop	2026-06-22 06:31:58 (1 day ago)	This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET TOR Known Tor E ... show more This IP was detected by CrowdSec triggering crowdsecurity/suricata-major-severity(ET TOR Known Tor Exit Node Traffic group 54). Ip 192.42.116.114 performed 'crowdsecurity/suricata-major-severity' (1 events over 0s) at 2026-06-22 06:31:57.752261817 +0000 UTC show less	Hacking Web App Attack
🇺🇸 chronos	2026-06-22 06:28:27 (1 day ago)	[AUTORAVALT][[22/06/2026 - 03:28:27 -03:00 UTC] Attack from [RIPE Network Coordination Centre] [192. ... show more [AUTORAVALT][[22/06/2026 - 03:28:27 -03:00 UTC] Attack from [RIPE Network Coordination Centre] [192.42.116.114] Action: BLocKed Phishing -> Phishing websites and/or email. Email Spam -> Spam email content, infected attachments, and phishing emails. Hacking... Unauthorized attempts to access the server. Spoofing -> Email sender spoofing. Brute-Force -> Credenti] ... show less	Brute-Force Email Spam Spoofing Phishing Hacking
🇺🇸 COMPLEX	2026-06-22 02:45:00 (1 day ago)	Unsolicited TCP traffic \| Action: DROP \| Port 8000	Brute-Force
🇨🇦 Luhte	2026-06-21 21:57:29 (2 days ago)	Unauthorised SSH/Telnet login attempt with user "root" at 2026-06-21T21:57:29Z	Brute-Force SSH
🇿🇦 maximonline.co.za	2026-06-21 21:40:26 (2 days ago)	Brute Force IMAP AUTH Attack	Brute-Force
🇨🇦 dpinse	2026-06-21 21:36:42 (2 days ago)	Honeypot [honeypot-ca-sensor1]: Brute-force attack detected on 22/SSH • Credential used: root:undefi ... show more Honeypot [honeypot-ca-sensor1]: Brute-force attack detected on 22/SSH • Credential used: root:undefined • Number of login attempts: 1 • Client: SSH-2.0-OpenSSH_9.9 • SSH key fingerprints: d4:98:c4:f3:12:ef:3e:29:38:34:62:21:fd:99:ec:ef show less	SSH
🇫🇮 FlamingMojo	2026-06-21 21:26:40 (2 days ago)	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2026-06-21T21:26:40Z	Brute-Force SSH

Showing 1 to 15 of 332 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇱 2.54.85.220

🇺🇸 195.184.76.92

🇪🇨 191.99.65.71

🇨🇦 165.140.229.134

🇳🇱 160.119.71.133

🇮🇳 143.110.245.211

🇪🇸 139.47.126.10

🇨🇳 116.4.144.92

🇵🇭 112.203.131.56

🇨🇦 96.30.129.165

🇳🇱 88.151.34.218

🇺🇸 76.114.10.62

🇳🇱 45.148.10.157

🇺🇸 20.169.105.181

🇮🇳 203.192.224.97

🇧🇷 187.181.96.40

🇨🇳 182.54.23.54

🇮🇳 172.253.211.212

🇨🇳 150.255.249.186

🇹🇭 147.50.231.135