AbuseIPDB » 162.142.125.216

162.142.125.216 was found in our database!

This IP was reported 17,486 times. Confidence of Abuse is 0%: ?

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	scanner-05.ch1.censys-scanner.com
Domain Name	censys.com
Country	United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Important Note: 162.142.125.216 is an IP address from within our whitelist belonging to the subnet 162.142.125.0/24, which we identify as: "Censys (https://about.censys.io/)".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 162.142.125.216

Whois 162.142.125.216

IP Abuse Reports for 162.142.125.216:

This IP address has been reported a total of 17,486 times from 909 distinct sources. 162.142.125.216 was first reported on November 3rd 2022, and the most recent report was 9 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Study Bitcoin 🤗	2025-06-17 19:26:23 (9 hours ago)	Port probe to tcp/8080 (http) [srv129]	Port Scan Bad Web Bot Web App Attack
sefinek.net	2025-06-17 19:18:59 (9 hours ago)	Honeypot hit: Empty payload (likely service probe); 14940 [1] TCP	Port Scan
Study Bitcoin 🤗	2025-06-17 18:34:33 (10 hours ago)	Port probe to tcp/111 (sun remote procedure call) [srv131]	Port Scan
Anonymous	2025-06-17 18:20:45 (10 hours ago)	$f2bV_matches	Brute-Force SSH
sid3windr	2025-06-17 17:37:25 (11 hours ago)	SSH port scan (Tarpitted for 10s, wasted 0B)	Port Scan SSH
IP Analyzer	2025-06-17 17:30:36 (11 hours ago)	Unauthorized connection attempt from IP address 162.142.125.216 on Port 3389(RDP)	Port Scan
stroytrest	2025-06-17 17:25:30 (11 hours ago)	2025-06-17T20:25:29.384552+03:00 debian kernel: [238504.730150] nftables: SCAN-SSH IN=ens1 OUT= MAC= ... show more2025-06-17T20:25:29.384552+03:00 debian kernel: [238504.730150] nftables: SCAN-SSH IN=ens1 OUT= MAC= SRC=162.142.125.216 DST=xxx.xxx.xxx.xxx LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=37352 DF PROTO=TCP SPT=39282 DPT=22 WINDOW=21900 RES=0x00 SYN URGP=0 ... show less	Port Scan
Study Bitcoin 🤗	2025-06-17 17:02:25 (12 hours ago)	Port probe to tcp/3306 (mysql) [srv124]	Port Scan
Birdo	2025-06-17 16:33:41 (12 hours ago)	[Birdo SSH Honeypot] SSH login attempt	Port Scan Hacking Brute-Force Exploited Host SSH
Study Bitcoin 🤗	2025-06-17 16:20:32 (12 hours ago)	Port probe to tcp/4190 [srv128]	Port Scan
Study Bitcoin 🤗	2025-06-17 12:32:19 (16 hours ago)	Port probe to tcp/3306 (mysql) [srv128]	Port Scan
diego	2025-06-17 11:22:49 (17 hours ago)	[rede-168-134] Port Scan detected from 162.142.125.216 (US/United States/scanner-05.ch1.censys-sca ... show more[rede-168-134] Port Scan detected from 162.142.125.216 (US/United States/scanner-05.ch1.censys-scanner.com). 11 hits in the last 120 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Jun 17 08:22:31 kernel: Firewall: TCP_IN Blocked* IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=162.142.125.216 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=26888 DF PROTO=TCP SPT=43042 DPT=9922 WINDOW=21900 RES=0x00 SYN URGP=0 Jun 17 08:22:32 kernel: Firewall: TCP_IN Blocked IN=ethX OUT= MAC=xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx:xx00 SRC=162.142.125.216 DST=0.0.0.x LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=27425 DF PROTO=TCP SPT=36902 DPT=9091 WINDOW=21900 RES=0x00 SY show less	Port Scan
PaulSep	2025-06-17 10:12:16 (19 hours ago)	2025-06-17T12:11:50+02:00 [redacted] 162.142.125.216 - - [17/Jun/2025:12:11:50 +0200] "GET / HTTP/1 ... show more2025-06-17T12:11:50+02:00 [redacted] 162.142.125.216 - - [17/Jun/2025:12:11:50 +0200] "GET / HTTP/1.1" 200 772 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +htt[redacted]://about.censys.io/)" 2025-06-17T12:11:52+02:00 [redacted] 162.142.125.216 - - [17/Jun/2025:12:11:52 +0200] "GET /favicon.ico HTTP/1.1" 200 1150 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +htt[redacted]://about.censys.io/)" 2025-06-17T12:12:15+02:00 [redacted] 162.142.125.216 - - [17/Jun/2025:12:12:15 +0200] "GET /wiki HTTP/1.1" 404 196 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +htt[redacted]://about.censys.io/)" show less	Hacking
Anonymous	2025-06-17 09:37:21 (19 hours ago)	162.142.125.216 - visio.sliver85.eu - [17/Jun/2025:11:37:03 +0200] "GET / HTTP/1.1" 444 "Mozilla/5.0 ... show more162.142.125.216 - visio.sliver85.eu - [17/Jun/2025:11:37:03 +0200] "GET / HTTP/1.1" 444 "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 162.142.125.216 - visio.sliver85.eu - [17/Jun/2025:11:37:20 +0200] "GET / HTTP/1.1" 444 "-" ... show less	Brute-Force Web App Attack
Study Bitcoin 🤗	2025-06-17 09:15:08 (19 hours ago)	Port probe to tcp/143 (internet message access) [srv136]	Port Scan

Showing 16 to 30 of 17486 reports

‹
1
2
3
4
5
6
7
8
9
10
...
1165
1166
›

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

77.90.185.56

47.250.82.167

207.81.158.101

80.94.95.112

103.181.64.0

117.232.7.115

37.140.242.109

169.224.10.161

161.35.106.11

20.52.16.104

128.199.214.193

20.115.90.228

117.50.186.151

117.232.58.196

168.80.81.240

45.148.10.240

45.147.47.55

223.205.8.157

103.20.96.172

112.123.106.241