AbuseIPDB » 162.142.125.222

Check an IP Address, Domain Name, or Subnet

e.g. 3.235.228.219, microsoft.com, or 5.188.10.0/24

162.142.125.222 was found in our database!

This IP was reported 5,845 times. Confidence of Abuse is 0%: ?

ISP	Censys Inc.
Usage Type	Search Engine Spider
Hostname(s)	scanner-25.ch1.censys-scanner.com
Domain Name	censys.io
Country	United States of America
City	Ann Arbor, Michigan

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Important Note: 162.142.125.222 is an IP address from within our whitelist. Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

According to our records, this IP belongs to the subnet 162.142.125.0/24, identified as: "Censys (https://about.censys.io/)"

Report 162.142.125.222

Whois 162.142.125.222

IP Abuse Reports for 162.142.125.222:

This IP address has been reported a total of 5,845 times from 313 distinct sources. 162.142.125.222 was first reported on February 21st 2021, and the most recent report was 24 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
IrisFlower	24 minutes ago	Unauthorized connection attempt detected from IP address 162.142.125.222 to port 5120 [J]	Port Scan Hacking
IrisFlower	54 minutes ago	Unauthorized connection attempt detected from IP address 162.142.125.222 to port 119 [J]	Port Scan Hacking
IrisFlower	1 hour ago	Unauthorized connection attempt detected from IP address 162.142.125.222 to port 8590 [J]	Port Scan Hacking
Anonymous	2 hours ago	port scan and connect, tcp 8888 (sun-answerbook)	Port Scan
gu-alvareza	3 hours ago	Censys.io.Scanner	Port Scan
HoneyPotEu-FR	4 hours ago	1657140393 - 07/06/2022 22:46:33 Host: 162.142.125.222/162.142.125.222 Port: 110 TCP Blocked . ... show more1657140393 - 07/06/2022 22:46:33 Host: 162.142.125.222/162.142.125.222 Port: 110 TCP Blocked ... show less	Port Scan Hacking Exploited Host
hermawan	5 hours ago	[Thu Jul 07 03:05:25.428802 2022] [-:error] [pid 5948:tid 140734795605760] [client 162.142.125.222:4 ... show more[Thu Jul 07 03:05:25.428802 2022] [-:error] [pid 5948:tid 140734795605760] [client 162.142.125.222:40138] [client 162.142.125.222] ModSecurity: Access denied with code 403 (phase 1). Pattern match "(?:^([\\\\d.]+\|\\\\[[\\\\da-f:]+\\\\]\|[\\\\da-f:]+)(:[\\\\d]+)?$)" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/coreruleset-4.0.0-rc1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "934"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.166.156.58:443"] [severity "WARNING"] [ver "OWASP_CRS/4.0.0-rc1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "YsXrBSdlFE3R9MuwBa202gAAAZk"] [karangploso.jatim.bmkg.go.id] [karangploso.jatim.bmkg.go.id] top=[6162] [vOZPfVhI7sE] [YsXrBSdlFE3R9MuwBa202gAAAZk] keep_alive=[0] [2022-07-07 03:05:25.428810] [R:YsXrBSdlFE3R9MuwBa202gAAAZk ... show less	Hacking Web App Attack
Lacrimosa99	7 hours ago	162.142.125.222 - - [06/Jul/2022:20:42:58 +0200] "GET / HTTP/1.1" 403 5338 "-" "Mozilla/5.0 (compati ... show more162.142.125.222 - - [06/Jul/2022:20:42:58 +0200] "GET / HTTP/1.1" 403 5338 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" 162.142.125.222 - - [06/Jul/2022:20:42:58 +0200] "GET / HTTP/1.1" 403 5338 "-" "Mozilla/5.0 (compatible; CensysInspect/1.1; +https://about.censys.io/)" ... show less	Web Spam
Ticketebo Pty. Ltd.	7 hours ago		Brute-Force
sandrzejewskipl	9 hours ago	Unauthorized connection attempt detected to port 5900 (hetzner-nbg1-1)	Port Scan Hacking
snydr	10 hours ago	connection attempt port 808 TCP	Port Scan
Anonymous	11 hours ago	port scan and connect, tcp 21 (ftp)	Port Scan
OiledAmoeba	11 hours ago	Jul 06 16:03:51 mout postfix/smtpd[13443]: lost connection after STARTTLS from scanner-25.ch1.censys ... show moreJul 06 16:03:51 mout postfix/smtpd[13443]: lost connection after STARTTLS from scanner-25.ch1.censys-scanner.com[162.142.125.222] show less	Brute-Force
NoAbuseforU	11 hours ago	"Non-browser Client,Information Leakage,HTTP Parser Attack"	Brute-Force
kolya	12 hours ago	[06/07/2022 13:08:50] Unauthorized connection attempt to port 3306, server 9a0b801d.	Port Scan