JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 31.172.72.242

31.172.72.242 was found in our database!

This IP was reported 71 times. Confidence of Abuse is 100%: ?

100%

ISP	www.fornex.com, Fornex Hosting S.L.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS44051
Hostname(s)	272556.fornex.cloud
Domain Name	fornex.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 31.172.72.242

Whois 31.172.72.242

IP Abuse Reports for 31.172.72.242:

This IP address has been reported a total of 71 times from 55 distinct sources. 31.172.72.242 was first reported on June 7th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 junk99	2026-06-09 00:00:00 (4 days ago)	SSH brute-force attack. 1 failed login attempts from fail2ban jails: sshd-honeypot	Brute-Force
🇫🇷 suble.org	2026-06-08 05:51:28 (5 days ago)	$f2bV_matches	Brute-Force SSH
🇭🇺 szasa	2026-06-08 04:40:56 (5 days ago)	Jun 8 06:34:59 mail010 sshd[1210564]: Invalid user steam from 31.172.72.242 port 46864 Jun 8 06:41 ... show more Jun 8 06:34:59 mail010 sshd[1210564]: Invalid user steam from 31.172.72.242 port 46864 Jun 8 06:41:21 mail010 sshd[1210762]: Invalid user estest from 31.172.72.242 port 48576 ... show less	Brute-Force SSH
🇭🇺 szasa	2026-06-08 04:05:53 (5 days ago)	Jun 8 05:51:42 mail010 sshd[1209331]: Invalid user a from 31.172.72.242 port 48142 Jun 8 05:57:01 ... show more Jun 8 05:51:42 mail010 sshd[1209331]: Invalid user a from 31.172.72.242 port 48142 Jun 8 05:57:01 mail010 sshd[1209393]: Invalid user ems from 31.172.72.242 port 53432 Jun 8 06:00:00 mail010 sshd[1209431]: Invalid user nick from 31.172.72.242 port 56080 Jun 8 06:06:17 mail010 sshd[1209495]: Invalid user sim from 31.172.72.242 port 40586 ... show less	Brute-Force SSH
🇫🇷 [email protected]	2026-06-08 02:13:13 (5 days ago)	Jun 8 04:02:41 mail6 sshd-session[791329]: Failed password for invalid user root from 31.172.72.242 ... show more Jun 8 04:02:41 mail6 sshd-session[791329]: Failed password for invalid user root from 31.172.72.242 port 45958 ssh2 Jun 8 04:10:05 mail6 sshd-session[794450]: Invalid user ts from 31.172.72.242 port 59806 Jun 8 04:10:05 mail6 sshd-session[794450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.172.72.242 Jun 8 04:10:06 mail6 sshd-session[794450]: Failed password for invalid user ts from 31.172.72.242 port 59806 ssh2 Jun 8 04:13:13 mail6 sshd-session[795525]: Invalid user monaco from 31.172.72.242 port 45834 ... show less	Brute-Force SSH
🇸🇪 Kotiacat_one	2026-06-08 02:09:22 (5 days ago)	2026-06-08T05:09:20.772171+03:00 kotia.ptr.network sshd-session[30028]: Invalid user ts from 31.172. ... show more 2026-06-08T05:09:20.772171+03:00 kotia.ptr.network sshd-session[30028]: Invalid user ts from 31.172.72.242 port 41212 ... show less	Brute-Force SSH
🇺🇸 yzfdude1	2026-06-08 02:08:54 (5 days ago)	Jun 7 20:08:52 b146-48 sshd[60969]: Invalid user ts from 31.172.72.242 port 51078 Jun 7 20:08:52 b ... show more Jun 7 20:08:52 b146-48 sshd[60969]: Invalid user ts from 31.172.72.242 port 51078 Jun 7 20:08:52 b146-48 sshd[60969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.172.72.242 Jun 7 20:08:53 b146-48 sshd[60969]: Failed password for invalid user ts from 31.172.72.242 port 51078 ssh2 ... show less	Brute-Force SSH
🇳🇱 AS213449.net	2026-06-08 01:58:05 (5 days ago)	06/08/2026-03:58:05.142379 src=31.172.72.242 dst=5.175.170.15:22 proto=6 msg=ET SCAN Potential SSH S ... show more 06/08/2026-03:58:05.142379 src=31.172.72.242 dst=5.175.170.15:22 proto=6 msg=ET SCAN Potential SSH Scan show less	Brute-Force SSH
🇩🇪 rollenspiel.network	2026-06-08 01:18:46 (5 days ago)	2026-06-08T03:15:43.205219+02:00 pbs sshd-session[601746]: Invalid user rancid from 31.172.72.242 po ... show more 2026-06-08T03:15:43.205219+02:00 pbs sshd-session[601746]: Invalid user rancid from 31.172.72.242 port 51144 2026-06-08T03:18:45.273548+02:00 pbs sshd-session[601757]: Connection from 31.172.72.242 port 41034 on 195.201.241.169 port 22 rdomain "" 2026-06-08T03:18:45.387515+02:00 pbs sshd-session[601757]: Invalid user abdollahi from 31.172.72.242 port 41034 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-08 01:16:06 (5 days ago)	(sshd) Failed SSH login from 31.172.72.242 (DE/Germany/272556.fornex.cloud): 5 in the last 3600 secs ... show more (sshd) Failed SSH login from 31.172.72.242 (DE/Germany/272556.fornex.cloud): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jun 7 20:06:04 21573 sshd[25285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.172.72.242 user=root Jun 7 20:06:07 21573 sshd[25285]: Failed password for root from 31.172.72.242 port 52580 ssh2 Jun 7 20:09:40 21573 sshd[26989]: Invalid user openkm from 31.172.72.242 port 56944 Jun 7 20:09:42 21573 sshd[26989]: Failed password for invalid user openkm from 31.172.72.242 port 56944 ssh2 Jun 7 20:15:56 21573 sshd[30138]: Invalid user rancid from 31.172.72.242 port 40380 show less	Brute-Force SSH
Anonymous	2026-06-08 01:11:43 (5 days ago)	ez: User root from 31.172.72.242 not allowed because not listed in AllowUsers ez: User root from 31. ... show more ez: User root from 31.172.72.242 not allowed because not listed in AllowUsers ez: User root from 31.172.72.242 not allowed because not listed in AllowUsers show less	Brute-Force SSH
🇬🇧 andypiper	2026-06-08 01:02:54 (5 days ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇩🇪 NetWatch	2026-06-08 00:54:23 (5 days ago)	The IP 31.172.72.242 tried multiple SSH_BRUTE_FORCE logins	Brute-Force
🇱🇹 nar.lt	2026-06-08 00:29:46 (5 days ago)	2026-06-08T03:26:19.705929nar.lt sshd[26750]: Failed password for invalid user foo from 31.172.72.24 ... show more 2026-06-08T03:26:19.705929nar.lt sshd[26750]: Failed password for invalid user foo from 31.172.72.242 port 48280 ssh2 2026-06-08T03:26:17.851757nar.lt sshd[26750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=272556.fornex.cloud 2026-06-08T03:26:19.705929nar.lt sshd[26750]: Failed password for invalid user foo from 31.172.72.242 port 48280 ssh2 2026-06-08T03:29:44.087123nar.lt sshd[26772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=272556.fornex.cloud user=root 2026-06-08T03:29:45.780202nar.lt sshd[26772]: Failed password for root from 31.172.72.242 port 60446 ssh2 show less	Brute-Force SSH
🇩🇪 LoNET	2026-06-08 00:10:07 (5 days ago)	Report 2442253 with IP 3489820 for SSH brute-force attack by source 3484478 via ssh-honeypot/0.2.1+h ... show more Report 2442253 with IP 3489820 for SSH brute-force attack by source 3484478 via ssh-honeypot/0.2.1+http show less	Brute-Force SSH

Showing 1 to 15 of 71 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.185.4.35

🇫🇮 147.185.133.76

🇻🇳 103.200.25.79

🇱🇾 102.38.3.104

🇷🇴 92.118.39.145

🇷🇴 80.94.95.242

🇷🇴 80.94.92.123

🇫🇷 79.143.189.61

🇨🇳 218.206.136.24

🇭🇰 156.251.179.157

🇺🇸 124.198.131.163

🇨🇳 124.174.35.48

🇹🇳 102.159.227.204

🇸🇬 101.47.156.170

🇺🇸 91.230.168.227

🇷🇴 80.94.92.102

🇳🇱 45.156.87.34

🇭🇰 45.142.154.10

🇺🇸 43.110.38.5

🇮🇳 40.81.224.200