JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.227.159.125

192.227.159.125 was found in our database!

This IP was reported 168 times. Confidence of Abuse is 10%: ?

10%

ISP	HostPapa
Usage Type	Data Center/Web Hosting/Transit
ASN	AS36352
Hostname(s)	192-227-159-125-host.colocrossing.com
Domain Name	colocrossing.com
Country	🇺🇸 United States of America
City	Buffalo, New York

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.227.159.125

Whois 192.227.159.125

IP Abuse Reports for 192.227.159.125:

This IP address has been reported a total of 168 times from 93 distinct sources. 192.227.159.125 was first reported on March 18th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 micropedro	2026-06-10 17:33:43 (6 days ago)	6 incidents: malicious activity. First: 2026-05-27 11:31, Last: 2026-06-10 13:33 UTC. Triggers: ufw- ... show more 6 incidents: malicious activity. First: 2026-05-27 11:31, Last: 2026-06-10 13:33 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-05-20 14:34:51 (3 weeks ago)	6 incidents: malicious activity. First: 2026-05-06 08:33, Last: 2026-05-20 10:34 UTC. Triggers: ufw- ... show more 6 incidents: malicious activity. First: 2026-05-06 08:33, Last: 2026-05-20 10:34 UTC. Triggers: ufw-repeater. show less	Port Scan
🇮🇳 evicky2002	2026-04-30 13:04:29 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=100, sources=1)	Hacking Brute-Force SSH
🇺🇸 micropedro	2026-04-29 11:34:46 (1 month ago)	5 incidents: malicious activity. First: 2026-03-27 08:30, Last: 2026-04-29 07:34 UTC. Triggers: ufw- ... show more 5 incidents: malicious activity. First: 2026-03-27 08:30, Last: 2026-04-29 07:34 UTC. Triggers: ufw-repeater. show less	Port Scan
🇧🇾 StatsMe	2026-03-20 21:24:17 (2 months ago)	2026-03-20T01:25:29.883478+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇩🇪 Da_tschek	2026-03-20 19:50:15 (2 months ago)	Port scanning	Port Scan Hacking
🇹🇷 rtbh.com.tr	2026-03-20 16:12:09 (2 months ago)	list.rtbh.com.tr report: tcp/8181	Brute-Force
🇺🇸 MPL	2026-03-20 13:00:41 (2 months ago)	tcp/8181 (2 or more attempts)	Port Scan
🇫🇷 vincent_EUDIER	2026-03-20 12:40:01 (2 months ago)	ET SCAN NMAP -sS window 1024	Port Scan
🇨🇿 Countryman	2026-03-20 12:31:47 (2 months ago)	repeated unauthorized connection attempts, host sweep, port scan	Port Scan
🇵🇱 IROK	2026-03-20 12:30:01 (2 months ago)	Firewall Blocked - Unauthorized Port Scanning ...	Port Scan
🇩🇪 london2038.com	2026-03-20 12:28:01 (2 months ago)	Connection atttempts against closed TCP ports Mar 20 07:27:17 BLOCK SRC=192.227.159.125 LEN=40 TOS=0 ... show more Connection atttempts against closed TCP ports Mar 20 07:27:17 BLOCK SRC=192.227.159.125 LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=45240 PROTO=TCP SPT=44528 DPT=8086 WINDOW=1024 RES=0x00 SYN Mar 20 11:36:17 BLOCK SRC=192.227.159.125 LEN=40 TOS=0x08 PREC=0x00 TTL=240 ID=53159 PROTO=TCP SPT=56681 DPT=8090 WINDOW=1024 RES=0x00 SYN Mar 20 13:27:59 BLOCK SRC=192.227.159.125 LEN=40 TOS=0x08 PREC=0x20 TTL=240 ID=20668 PROTO=TCP SPT=49526 DPT=8181 WINDOW=1024 RES=0x00 SYN show less	Port Scan
🇺🇸 MPL	2026-03-20 12:26:43 (2 months ago)	tcp/8181 (20 or more attempts)	Port Scan
🇹🇷 rtbh.com.tr	2026-03-20 12:12:10 (2 months ago)	list.rtbh.com.tr report: tcp/8090	Brute-Force
🇩🇪 Moritz	2026-03-20 12:05:40 (2 months ago)	Honeypot hit: HTTP/1.1 request on 8090 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 15_ ... show more Honeypot hit: HTTP/1.1 request on 8090 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 15_7_3) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/26.0 Safari/605.1.15 Accept: / Accept-Encoding: gzip; 8090 [2] TCP show less	Hacking Bad Web Bot

Showing 1 to 15 of 168 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 185.92.26.121

🇮🇳 172.253.222.219

🇺🇸 172.214.209.153

🇻🇳 113.177.27.200

🇦🇿 109.205.208.215

🇧🇩 103.183.62.2

🇨🇳 101.96.215.50

🇫🇷 85.217.140.5

🇦🇺 34.40.145.110

🇷🇴 2.57.122.177

🇨🇳 223.76.158.107

🇺🇸 165.154.172.92

🇸🇬 152.32.218.149

🇨🇳 120.46.184.6

🇮🇹 82.55.100.159

🇺🇸 54.82.253.146

🇻🇳 27.78.70.85

🇬🇧 2a06:4880:2000::3c

🇨🇳 220.202.112.13

🇩🇪 209.38.255.6