JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 72.167.56.142

72.167.56.142 was found in our database!

This IP was reported 60 times. Confidence of Abuse is 0%: ?

ISP	GoDaddy.com, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS398101
Hostname(s)	142.56.167.72.host.secureserver.net
Domain Name	godaddy.com
Country	🇺🇸 United States of America
City	Phoenix, Arizona

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 72.167.56.142

Whois 72.167.56.142

IP Abuse Reports for 72.167.56.142:

This IP address has been reported a total of 60 times from 45 distinct sources. 72.167.56.142 was first reported on April 9th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Linuxmalwarehuntingnl	2024-07-01 10:58:09 (1 year ago)	Unauthorized connection attempt	Brute-Force
Anonymous	2024-06-17 13:11:14 (1 year ago)	Brute-force login attempts at RD-Web	Brute-Force
🇩🇪 NxtGenIT	2024-06-16 23:10:17 (1 year ago)	72.167.56.142 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attem ... show more 72.167.56.142 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attempt show less	Brute-Force
🇺🇸 TPI-Abuse	2024-06-15 03:31:49 (1 year ago)	(mod_security) mod_security (id:210730) triggered by 72.167.56.142 (142.56.167.72.host.secureserver. ... show more (mod_security) mod_security (id:210730) triggered by 72.167.56.142 (142.56.167.72.host.secureserver.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 14 23:31:45.283204 2024] [security2:error] [pid 22510] [client 72.167.56.142:23902] [client 72.167.56.142] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|flyingdodostudio.com\|F\|2"] [data ".bak"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "flyingdodostudio.com"] [uri "/wp-includes.bak"] [unique_id "Zm0LIXcr4GBkByls4v-LRwAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 NxtGenIT	2024-06-13 12:16:44 (1 year ago)	72.167.56.142 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attem ... show more 72.167.56.142 has been observed attacking Port 1812. Observed Threat: RADIUS Login Brute Force Attempt show less	Brute-Force
🇩🇪 futuremakers.gr	2024-06-08 19:15:54 (2 years ago)	(wordpress) Failed wordpress login from 72.167.56.142 (US/United States/142.56.167.72.host.secureser ... show more (wordpress) Failed wordpress login from 72.167.56.142 (US/United States/142.56.167.72.host.secureserver.net) show less	Brute-Force
🇱🇰 Hasa	2024-05-28 03:21:00 (2 years ago)	Searched for Backup files.	VPN IP Web App Attack
🇦🇺 weblite	2024-03-13 17:20:58 (2 years ago)	WP_MALWARE_PROBE	Hacking Web App Attack
Anonymous	2024-03-10 20:50:02 (2 years ago)	Bot / scanning and/or hacking attempts: GET /admin.php HTTP/1.1, done, streams: 0/1/1/0/0 (open/recv ... show more Bot / scanning and/or hacking attempts: GET /admin.php HTTP/1.1, done, streams: 0/1/1/0/0 (open/recv/resp/push/rst) show less	Hacking Web App Attack
🇦🇺 MAGIC	2024-03-10 17:08:41 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 mnsf	2024-03-10 14:07:27 (2 years ago)	Too many Status 40X (12)	Brute-Force Web App Attack
🇩🇪 FeG Deutschland	2024-03-10 07:24:04 (2 years ago)	Looking for CMS/PHP/SQL vulnerablilities - 1	Exploited Host Web App Attack
🇦🇺 MAGIC	2024-03-07 08:09:20 (2 years ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 mnsf	2024-03-07 03:03:28 (2 years ago)	Too many Status 40X (13)	Brute-Force Web App Attack
🇬🇧 Mendip_Defender	2024-03-06 10:33:04 (2 years ago)	72.167.56.142 - - [06/Mar/2024:10:03:39 +0000] "GET /wp-content/admin.php HTTP/1.0" 404 714 "http:// ... show more 72.167.56.142 - - [06/Mar/2024:10:03:39 +0000] "GET /wp-content/admin.php HTTP/1.0" 404 714 "http://mylittleblueduck.co.uk/wp-content/admin.php" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/533.4 (KHTML, like Gecko) Chrome/5.0.375.99 Safari/533.4" 72.167.56.142 - - [06/Mar/2024:10:33:04 +0000] "GET /wp-admin/user/network.php HTTP/1.0" 404 714 "http://mylittleblueduck.co.uk/wp-admin/user/network.php" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US) AppleWebKit/533.4 (KHTML, like Gecko) Chrome/5.0.375.99 Safari/533.4" ... show less	Hacking Web App Attack

Showing 1 to 15 of 60 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 208.68.37.246

🇩🇪 194.88.98.87

🇺🇸 185.180.141.5

🇧🇷 177.11.196.79

🇺🇸 172.56.163.79

🇺🇸 107.173.70.115

🇹🇷 78.178.171.159

🇳🇱 45.148.10.151

🇻🇳 14.225.7.70

🇮🇪 185.192.16.95

🇫🇷 185.157.247.92

🇸🇪 171.25.158.70

🇯🇵 152.32.146.182

🇫🇮 147.185.133.33

🇮🇳 98.70.48.241

🇦🇱 79.106.16.209

🇺🇸 74.125.224.67

🇺🇸 64.62.156.146

🇺🇸 47.251.70.145

🇱🇹 45.227.254.170