AbuseIPDB » 162.142.125.213

162.142.125.213 was found in our database!

This IP was reported 7,545 times. Confidence of Abuse is 0%: ?

ISP	Censys Inc.
Usage Type	Search Engine Spider
Hostname(s)	scanner-05.ch1.censys-scanner.com
Domain Name	censys.io
Country	United States of America
City	Ann Arbor, Michigan

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Important Note: 162.142.125.213 is an IP address from within our whitelist. Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

According to our records, this IP belongs to the subnet 162.142.125.0/24, identified as: "Censys (https://about.censys.io/)"

Report 162.142.125.213

Whois 162.142.125.213

IP Abuse Reports for 162.142.125.213:

This IP address has been reported a total of 7,545 times from 622 distinct sources. 162.142.125.213 was first reported on October 24th 2022, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp	Comment	Categories
sid3windr	2023-12-08 17:01:09 (2 hours ago)	SSH port scan (Tarpitted for 10s, wasted 0B)	Port Scan SSH
gbetsis	2023-12-08 12:01:55 (7 hours ago)	TCP Port Scanning	Port Scan Exploited Host
Warex	2023-12-08 10:09:12 (9 hours ago)	Dec 8 11:09:10 syscgn kernel: [603810.139075] [UFW BLOCK] IN=eth0 OUT= MAC=0a:d1:7f:3c:98:09:10:0e: ... show moreDec 8 11:09:10 syscgn kernel: [603810.139075] [UFW BLOCK] IN=eth0 OUT= MAC=0a:d1:7f:3c:98:09:10:0e:7e:26:f1:c0:08:00 SRC=162.142.125.213 DST=185.194.141.106 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=18387 DF PROTO=TCP SPT=43124 DPT=7081 WINDOW=42340 RES=0x00 SYN URGP=0 ... show less	Hacking
psauxit	2023-12-08 07:52:48 (11 hours ago)	Fail2Ban - UFW port probing on unauthorized port	Port Scan
MPL	2023-12-08 07:48:51 (11 hours ago)	tcp/60002 (4 or more attempts)	Port Scan
gu-alvareza	2023-12-08 07:05:15 (12 hours ago)	Censys.io.Scanner	Port Scan
MPL	2023-12-08 06:14:17 (13 hours ago)	tcp/60002 (10 or more attempts)	Port Scan
onkeltom	2023-12-08 05:32:53 (13 hours ago)	Multiple unauthorized connection attempts	Hacking Brute-Force
ut-addicted.com	2023-12-08 05:27:57 (13 hours ago)	Dec 8 06:27:55 www postfix/smtpd\[22345\]: lost connection after CONNECT from scanner-05.ch1.censys ... show moreDec 8 06:27:55 www postfix/smtpd\[22345\]: lost connection after CONNECT from scanner-05.ch1.censys-scanner.com\[162.142.125.213\] show less	Hacking Brute-Force
SiyCah	2023-12-08 04:00:02 (15 hours ago)	162.142.125.213 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total tim ... show more162.142.125.213 fell into Endlessh tarpit; 0/1 total connections are currently still open. Total time wasted: 4s. Total bytes sent by tarpit: 468B. Report generated by Endlessh Report Generator v1.2.3 show less	Port Scan Hacking Brute-Force SSH
SaferWeb	2023-12-08 03:57:47 (15 hours ago)	#4 Port Scan detected from 162.142.125.213 (US/United States/scanner-05.ch1.censys-scanner.com). 1 ... show more#4 Port Scan detected from 162.142.125.213 (US/United States/scanner-05.ch1.censys-scanner.com). 11 hits in the last 35 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Dec 8 04:57:22 kernel: Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=162.142.125.213 DST=0.0.0.x LEN show less	Port Scan
RiSec	2023-12-08 02:36:35 (16 hours ago)	162.142.125.213 \| Triggered sCandy Pot 0.3b \| [RiSecHPOT4] \| ON PORT: 5900	Port Scan Hacking
marcel-knorr.de	2023-12-08 02:03:55 (17 hours ago)	[MK-Root1] Blocked by UFW	Port Scan Brute-Force
ghostwarriors	2023-12-08 01:50:15 (17 hours ago)	Unauthorized connection attempt detected, SSH Brute-Force	Port Scan Brute-Force SSH
Kraften	2023-12-08 01:45:42 (17 hours ago)	Postfix DDOS ...	DDoS Attack Brute-Force