162.142.125.20

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Censys Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	cannot locate HMAC[162.142.125.20:17976]	2020-10-02 05:07:36
attackbotsspam	TCP (SYN) 162.142.125.20:24687 -> port 2, len 44	2020-10-01 21:25:56
attackbotsspam	TCP (SYN) 162.142.125.20:62233 -> port 3306, len 44	2020-10-01 13:41:26
attack	TCP (SYN) 162.142.125.20:18390 -> port 143, len 44	2020-08-23 00:32:15

Comments on same subnet:

IP	Type	Details	Datetime
162.142.125.86	botsattack	Bad IP	2025-03-06 19:09:23
162.142.125.197	attackproxy	Fraud connect	2024-09-05 12:48:39
162.142.125.12	proxy	Scan	2023-06-05 16:37:12
162.142.125.11	proxy	VPN fraud	2023-06-05 12:59:49
162.142.125.223	proxy	VPN fraud	2023-05-31 21:46:50
162.142.125.225	proxy	VPN fraud	2023-05-29 12:47:59
162.142.125.84	proxy	VPN scan	2023-05-22 12:51:31
162.142.125.224	proxy	VPN fraud	2023-05-18 12:47:47
162.142.125.89	proxy	VPN f	2023-05-13 12:57:08
162.142.125.217	proxy	VPN fraud	2023-05-13 12:54:50
162.142.125.14	proxy	VPN fraud	2023-05-12 14:21:18
162.142.125.214	proxy	VPN fraud	2023-03-31 12:54:37
162.142.125.87	proxy	VPN fraud	2023-03-29 12:58:45
162.142.125.13	proxy	VPN fraud	2023-03-29 12:56:42
162.142.125.10	attack	DANGER DUDE ATTACK	2022-02-18 10:02:36

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.142.125.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3904
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.142.125.20.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082200 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 23 00:34:14 CST 2020
;; MSG SIZE  rcvd: 118

Host info

20.125.142.162.in-addr.arpa domain name pointer scanner-01.ch1.censys-scanner.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.125.142.162.in-addr.arpa	name = scanner-01.ch1.censys-scanner.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.14.224.80	attackbots	UDP 45.14.224.80:64437 -> port 11211, len 46	2020-08-30 15:17:41
175.10.50.80	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-08-30 15:15:52
141.98.9.162	attackbots	Aug 30 06:13:58 game-panel sshd[11265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.162 Aug 30 06:13:59 game-panel sshd[11265]: Failed password for invalid user operator from 141.98.9.162 port 33610 ssh2 Aug 30 06:14:25 game-panel sshd[11318]: Failed password for support from 141.98.9.162 port 44446 ssh2	2020-08-30 15:32:21
87.233.223.184	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-30 15:32:47
49.234.124.225	attackbotsspam	2020-08-30T13:21:02.093841hostname sshd[16645]: Invalid user aac from 49.234.124.225 port 44904 2020-08-30T13:21:04.061581hostname sshd[16645]: Failed password for invalid user aac from 49.234.124.225 port 44904 ssh2 2020-08-30T13:26:16.910986hostname sshd[18188]: Invalid user wang from 49.234.124.225 port 37488 ...	2020-08-30 15:27:05
149.202.40.210	attackbots	2020-08-30T02:06:30.2365101495-001 sshd[56190]: Invalid user logviewer from 149.202.40.210 port 44180 2020-08-30T02:06:31.8068851495-001 sshd[56190]: Failed password for invalid user logviewer from 149.202.40.210 port 44180 ssh2 2020-08-30T02:12:58.3114691495-001 sshd[56434]: Invalid user opuser from 149.202.40.210 port 48038 2020-08-30T02:12:58.3153381495-001 sshd[56434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-eba9509d.vps.ovh.net 2020-08-30T02:12:58.3114691495-001 sshd[56434]: Invalid user opuser from 149.202.40.210 port 48038 2020-08-30T02:12:59.8113911495-001 sshd[56434]: Failed password for invalid user opuser from 149.202.40.210 port 48038 ssh2 ...	2020-08-30 14:56:56
49.88.112.73	attackspam	Aug 30 09:19:55 MainVPS sshd[27845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.73 user=root Aug 30 09:19:57 MainVPS sshd[27845]: Failed password for root from 49.88.112.73 port 60546 ssh2 Aug 30 09:21:13 MainVPS sshd[28200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.73 user=root Aug 30 09:21:15 MainVPS sshd[28200]: Failed password for root from 49.88.112.73 port 60420 ssh2 Aug 30 09:23:10 MainVPS sshd[28970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.73 user=root Aug 30 09:23:11 MainVPS sshd[28970]: Failed password for root from 49.88.112.73 port 32253 ssh2 ...	2020-08-30 15:29:27
192.241.224.91	attack	Input Traffic from this IP, but critial abuseconfidencescore	2020-08-30 15:13:46
186.220.67.73	attackspam	Aug 30 05:48:59 [host] sshd[18176]: Invalid user u Aug 30 05:48:59 [host] sshd[18176]: pam_unix(sshd: Aug 30 05:49:01 [host] sshd[18176]: Failed passwor	2020-08-30 14:59:28
163.44.159.123	attackbots	Aug 30 11:43:31 doubuntu sshd[15454]: Did not receive identification string from 163.44.159.123 port 34890 Aug 30 11:48:20 doubuntu sshd[15464]: Did not receive identification string from 163.44.159.123 port 55224 Aug 30 11:49:11 doubuntu sshd[15466]: Did not receive identification string from 163.44.159.123 port 34370 ...	2020-08-30 15:06:12
222.186.175.202	attackbots	Aug 30 00:20:26 dignus sshd[25271]: Failed password for root from 222.186.175.202 port 25478 ssh2 Aug 30 00:20:29 dignus sshd[25271]: Failed password for root from 222.186.175.202 port 25478 ssh2 Aug 30 00:20:32 dignus sshd[25271]: Failed password for root from 222.186.175.202 port 25478 ssh2 Aug 30 00:20:36 dignus sshd[25271]: Failed password for root from 222.186.175.202 port 25478 ssh2 Aug 30 00:20:39 dignus sshd[25271]: Failed password for root from 222.186.175.202 port 25478 ssh2 ...	2020-08-30 15:23:13
118.24.202.34	attack	"$f2bV_matches"	2020-08-30 14:58:53
116.250.178.62	attackbots	Port 22 Scan, PTR: None	2020-08-30 15:21:38
3.20.201.135	attackbotsspam	3.20.201.135 - - [30/Aug/2020:05:48:48 +0200] "GET /wp-login.php HTTP/1.1" 200 9040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.20.201.135 - - [30/Aug/2020:05:49:04 +0200] "POST /wp-login.php HTTP/1.1" 200 9291 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.20.201.135 - - [30/Aug/2020:05:49:18 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-30 15:02:00
51.105.120.80	attackspambots	51.105.120.80 - - [30/Aug/2020:07:16:25 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1867 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.105.120.80 - - [30/Aug/2020:07:16:26 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.105.120.80 - - [30/Aug/2020:07:16:26 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-30 15:01:07

Recently Reported IPs

45.129.33.52	103.141.174.77	52.100.161.232	37.123.150.177
222.188.32.217	45.135.206.49	36.236.105.191	198.98.59.69
36.225.118.200	51.158.66.95	103.225.244.29	111.46.51.19
192.111.142.136	23.96.12.20	135.154.173.145	88.173.40.248
177.9.55.218	149.26.252.89	188.147.22.223	104.255.178.47