JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 162.249.125.150

162.249.125.150 was found in our database!

This IP was reported 140 times. Confidence of Abuse is 100%: ?

100%

ISP	INTERKVM HOST SRL
Usage Type	Data Center/Web Hosting/Transit
ASN	AS25198
Domain Name	zetservers.com
Country	🇷🇴 Romania
City	Bucharest, Bucharest

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 162.249.125.150

Whois 162.249.125.150

IP Abuse Reports for 162.249.125.150:

This IP address has been reported a total of 140 times from 111 distinct sources. 162.249.125.150 was first reported on June 2nd 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Random	2026-06-17 22:55:43 (1 week ago)	Fail2Ban sshd jail triggered for 162.249.125.150	Brute-Force SSH
🇺🇸 Rayulcifer	2026-06-10 06:58:04 (2 weeks ago)	[Sat Jun 06 07:07:24.030035 2026] [authz_core:error] [pid 1295126:tid 125172610733760] [client 162.2 ... show more [Sat Jun 06 07:07:24.030035 2026] [authz_core:error] [pid 1295126:tid 125172610733760] [client 162.249.125.150:54192] AH01630: client denied by server configuration: proxy:http://localhost:4000/hello.world [Sat Jun 06 07:07:24.199290 2026] [authz_core:error] [pid 1295126:tid 125173155997376] [client 162.249.125.150:54192] AH01630: client denied by server configuration: proxy:http://localhost:4000/ [Sat Jun 06 07:07:24.425608 2026] [authz_core:error] [pid 1295126:tid 125172073862848] [client 162.249.125.150:54192] AH01630: client denied by server configuration: proxy:http://localhost:4000/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php [Sat Jun 06 07:07:24.624544 2026] [authz_core:error] [pid 1295126:tid 125174655477440] [client 162.249.125.150:54192] AH01630: client denied by server configuration: proxy:http://localhost:4000/vendor/phpunit/phpunit/Util/PHP/eval-stdin.php [Sat Jun 06 07:07:24.798463 2026] [authz_core:error] [pid 1295126:tid 125174766610112] [client 162.249.125.150:54 ... show less	Brute-Force SSH
🇸🇬 sh97	2026-06-10 01:05:51 (2 weeks ago)	rooted: SSH Brute Force from 162.249.125.150 at 2026-06-10 06:35:51 IST	Brute-Force SSH
🇸🇮 administrator	2026-06-09 22:09:18 (2 weeks ago)	2026-06-07 02:03:16,405 fail2ban.actions [1128]: NOTICE [error-bots] Ban 162.249.125.150 202 ... show more 2026-06-07 02:03:16,405 fail2ban.actions [1128]: NOTICE [error-bots] Ban 162.249.125.150 2026-06-09 00:08:01,854 fail2ban.actions [1104]: NOTICE [error-bots] Ban 162.249.125.150 2026-06-10 00:07:29,748 fail2ban.actions [1080]: NOTICE [apache-badbots] Ban 162.249.125.150 2026-06-10 00:09:00,820 fail2ban.actions [1080]: NOTICE [error-bots] Ban 162.249.125.150 ... show less	Bad Web Bot Web Spam Email Spam Blog Spam Port Scan Brute-Force Web App Attack
🇩🇪 Random	2026-06-09 06:24:57 (2 weeks ago)	Fail2Ban sshd jail triggered for 162.249.125.150	Brute-Force SSH
🇸🇬 sh97	2026-06-09 01:00:44 (2 weeks ago)	rooted: SSH Brute Force from 162.249.125.150 at 2026-06-09 06:30:44 IST	Brute-Force SSH
Anonymous	2026-06-08 00:10:37 (2 weeks ago)	eval-stdin.php	Hacking Brute-Force Web App Attack
🇦🇹 urnilxfgbez	2026-06-07 22:45:00 (2 weeks ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇫🇮 tjs	2026-06-07 21:55:00 (2 weeks ago)	web attack, shell attempt	Hacking Web App Attack
🇧🇷 SOC-BR	2026-06-07 07:23:52 (2 weeks ago)	Attack detected by Fortinet - apache: Apache.HTTP.Server.cgi-bin.Path.Traversal - 2026-06-06 18:11:1 ... show more Attack detected by Fortinet - apache: Apache.HTTP.Server.cgi-bin.Path.Traversal - 2026-06-06 18:11:11 - Source Port 39996 show less	Port Scan Hacking
🇩🇪 bescared	2026-06-07 02:38:53 (2 weeks ago)	F2B - Malicious activity detected. Unauthorized connection attempt: Telnet. -8ff06ede-	Port Scan
🇵🇱 dzpk	2026-06-07 02:35:49 (2 weeks ago)	162.249.125.150 - - [07/Jun/2026:04:35:49 +0200] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/. ... show more 162.249.125.150 - - [07/Jun/2026:04:35:49 +0200] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 400 150 "-" "-" show less	Web App Attack
🇺🇸 jfz-abuse	2026-06-07 02:11:22 (2 weeks ago)	fail2ban: apache-filepath-recon ...	Web App Attack
🇳🇱 ParaBug	2026-06-07 02:11:09 (2 weeks ago)	162.249.125.150 - - [07/Jun/2026:04:11:08 +0200] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/. ... show more 162.249.125.150 - - [07/Jun/2026:04:11:08 +0200] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 400 3050 "-" "libredtail-http" ... show less	Phishing Brute-Force Web App Attack
Anonymous	2026-06-07 02:11:07 (2 weeks ago)	Http Port:443 (http_status:400) - Agent:libredtail-http	Web App Attack

Showing 1 to 15 of 140 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇪 34.77.237.15

🇳🇱 5.61.209.92

🇨🇦 2a09:bac5:18ea:1ed2::312:9d

🇮🇳 206.1.62.130

🇺🇸 205.210.31.46

🇨🇳 117.72.195.41

🇨🇳 114.234.101.12

🇮🇩 103.105.55.46

🇮🇳 103.86.180.10

🇷🇺 95.188.91.101

🇺🇸 91.230.168.24

🇫🇷 89.84.41.104

🇫🇷 51.68.107.142

🇮🇳 49.207.243.175

🇬🇧 31.14.254.122

🇨🇦 2a09:bac5:18ec:1ed2::312:9d

🇬🇧 195.140.214.19

🇳🇱 185.189.182.234

🇺🇸 162.216.150.194

🇭🇰 152.32.215.244