162.142.125.71

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Censys Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Fail2Ban Ban Triggered	2020-09-25 03:10:04
attack	TCP (SYN) 162.142.125.71:37238 -> port 25000, len 44	2020-09-24 18:53:02

Comments on same subnet:

IP	Type	Details	Datetime
162.142.125.86	botsattack	Bad IP	2025-03-06 19:09:23
162.142.125.197	attackproxy	Fraud connect	2024-09-05 12:48:39
162.142.125.12	proxy	Scan	2023-06-05 16:37:12
162.142.125.11	proxy	VPN fraud	2023-06-05 12:59:49
162.142.125.223	proxy	VPN fraud	2023-05-31 21:46:50
162.142.125.225	proxy	VPN fraud	2023-05-29 12:47:59
162.142.125.84	proxy	VPN scan	2023-05-22 12:51:31
162.142.125.224	proxy	VPN fraud	2023-05-18 12:47:47
162.142.125.89	proxy	VPN f	2023-05-13 12:57:08
162.142.125.217	proxy	VPN fraud	2023-05-13 12:54:50
162.142.125.14	proxy	VPN fraud	2023-05-12 14:21:18
162.142.125.214	proxy	VPN fraud	2023-03-31 12:54:37
162.142.125.87	proxy	VPN fraud	2023-03-29 12:58:45
162.142.125.13	proxy	VPN fraud	2023-03-29 12:56:42
162.142.125.10	attack	DANGER DUDE ATTACK	2022-02-18 10:02:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.142.125.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55136
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.142.125.71.			IN	A

;; AUTHORITY SECTION:
.			577	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092400 1800 900 604800 86400

;; Query time: 150 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 24 18:52:57 CST 2020
;; MSG SIZE  rcvd: 118

Host info

71.125.142.162.in-addr.arpa domain name pointer scanner-10.ch1.censys-scanner.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
71.125.142.162.in-addr.arpa	name = scanner-10.ch1.censys-scanner.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.253.1.227	attack	Unauthorized connection attempt detected from IP address 103.253.1.227 to port 5555 [J]	2020-03-03 09:27:28
109.226.194.25	attackspambots	Mar 3 02:10:15 ns381471 sshd[29681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.226.194.25 Mar 3 02:10:17 ns381471 sshd[29681]: Failed password for invalid user husty from 109.226.194.25 port 33688 ssh2	2020-03-03 09:31:51
175.24.47.222	attack	Mar 2 22:26:04 vps46666688 sshd[15493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.47.222 Mar 2 22:26:05 vps46666688 sshd[15493]: Failed password for invalid user update from 175.24.47.222 port 50026 ssh2 ...	2020-03-03 09:30:48
186.188.228.161	attackbotsspam	Honeypot attack, port: 5555, PTR: PTR record not found	2020-03-03 09:25:49
222.186.173.180	attack	Mar 3 02:11:03 server sshd[643678]: Failed none for root from 222.186.173.180 port 61422 ssh2 Mar 3 02:11:06 server sshd[643678]: Failed password for root from 222.186.173.180 port 61422 ssh2 Mar 3 02:11:10 server sshd[643678]: Failed password for root from 222.186.173.180 port 61422 ssh2	2020-03-03 09:16:02
188.120.244.60	attack	Mar 2 15:11:41 tdfoods sshd\[4767\]: Invalid user hduser from 188.120.244.60 Mar 2 15:11:41 tdfoods sshd\[4767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.120.244.60 Mar 2 15:11:43 tdfoods sshd\[4767\]: Failed password for invalid user hduser from 188.120.244.60 port 34139 ssh2 Mar 2 15:20:24 tdfoods sshd\[6009\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.120.244.60 user=root Mar 2 15:20:26 tdfoods sshd\[6009\]: Failed password for root from 188.120.244.60 port 52221 ssh2	2020-03-03 09:20:56
114.23.220.120	attack	(sshd) Failed SSH login from 114.23.220.120 (NZ/New Zealand/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 3 01:55:58 amsweb01 sshd[8863]: Invalid user www from 114.23.220.120 port 36902 Mar 3 01:56:00 amsweb01 sshd[8863]: Failed password for invalid user www from 114.23.220.120 port 36902 ssh2 Mar 3 01:59:53 amsweb01 sshd[9189]: User admin from 114.23.220.120 not allowed because not listed in AllowUsers Mar 3 01:59:54 amsweb01 sshd[9189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.23.220.120 user=admin Mar 3 01:59:56 amsweb01 sshd[9189]: Failed password for invalid user admin from 114.23.220.120 port 36274 ssh2	2020-03-03 09:11:47
175.6.133.182	attackspam	Mar 3 01:35:43 websrv1.aknwsrv.net postfix/smtpd[21910]: warning: unknown[175.6.133.182]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 3 01:35:50 websrv1.aknwsrv.net postfix/smtpd[21910]: warning: unknown[175.6.133.182]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 3 01:36:01 websrv1.aknwsrv.net postfix/smtpd[21910]: warning: unknown[175.6.133.182]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-03-03 09:05:11
218.92.0.145	attack	Mar 3 04:23:06 server sshd\[25479\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.145 user=root Mar 3 04:23:09 server sshd\[25479\]: Failed password for root from 218.92.0.145 port 33466 ssh2 Mar 3 04:23:11 server sshd\[25479\]: Failed password for root from 218.92.0.145 port 33466 ssh2 Mar 3 04:23:15 server sshd\[25479\]: Failed password for root from 218.92.0.145 port 33466 ssh2 Mar 3 04:23:19 server sshd\[25479\]: Failed password for root from 218.92.0.145 port 33466 ssh2 ...	2020-03-03 09:31:40
171.6.146.85	attackspam	RDP Brute-Force (honeypot 4)	2020-03-03 09:31:08
125.45.91.209	attackspam	Unauthorized connection attempt detected from IP address 125.45.91.209 to port 23 [J]	2020-03-03 08:52:52
207.107.139.150	attack	Mar 2 23:03:56 [snip] sshd[4421]: Invalid user onion from 207.107.139.150 port 43232 Mar 2 23:03:56 [snip] sshd[4421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.107.139.150 Mar 2 23:03:58 [snip] sshd[4421]: Failed password for invalid user onion from 207.107.139.150 port 43232 ssh2[...]	2020-03-03 09:03:40
92.118.161.17	attackbots	Unauthorized connection attempt detected from IP address 92.118.161.17 to port 7547 [J]	2020-03-03 08:58:58
108.184.46.50	attackspam	Unauthorized connection attempt detected from IP address 108.184.46.50 to port 8080 [J]	2020-03-03 09:01:44
51.159.0.98	attackspam	Blocked by UFW	2020-03-03 09:32:22

Recently Reported IPs

207.131.112.203	114.143.158.186	167.130.240.53	5.161.58.181
27.3.43.54	195.218.255.70	103.82.140.153	76.20.145.176
195.19.102.173	190.62.136.51	161.35.23.27	119.197.87.204
14.236.238.196	95.10.200.151	56.241.230.79	72.230.59.45
193.70.21.159	160.146.181.23	183.103.109.194	69.169.129.58