162.241.142.85

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
162.241.142.103	attack	" "	2020-08-31 07:38:46
162.241.142.103	attackbotsspam	TCP (SYN) 162.241.142.103:53322 -> port 717, len 44	2020-08-30 20:08:16
162.241.142.103	attackbotsspam	firewall-block, port(s): 662/tcp	2020-08-14 00:55:30
162.241.142.103	attack	Fail2Ban Ban Triggered	2020-08-13 05:36:58
162.241.142.103	attackbotsspam	08/07/2020-16:25:01.385162 162.241.142.103 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-08-08 07:17:07
162.241.142.103	attackspambots	Jul 22 17:31:04 debian-2gb-nbg1-2 kernel: \[17690394.020531\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=162.241.142.103 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=50485 PROTO=TCP SPT=58066 DPT=25413 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-23 01:36:08
162.241.142.103	attackbots	Port Scan ...	2020-07-14 04:19:37
162.241.142.103	attackspambots	Scanned 333 unique addresses for 2 unique TCP ports in 24 hours (ports 4649,9606)	2020-06-30 01:06:15
162.241.142.103	attack	" "	2020-06-24 06:08:51
162.241.142.103	attackspambots	Unauthorized connection attempt detected from IP address 162.241.142.103 to port 9680 [T]	2020-06-24 03:31:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.241.142.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63143
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;162.241.142.85.			IN	A

;; AUTHORITY SECTION:
.			543	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 20:02:15 CST 2022
;; MSG SIZE  rcvd: 107

Host info

85.142.241.162.in-addr.arpa domain name pointer 162-241-142-85.unifiedlayer.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.142.241.162.in-addr.arpa	name = 162-241-142-85.unifiedlayer.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.89.199.182	attack	Aug 2 14:06:01 sso sshd[26346]: Failed password for root from 159.89.199.182 port 44100 ssh2 ...	2020-08-02 23:48:46
138.204.78.249	attack	2020-08-02T09:45:17.278622morrigan.ad5gb.com sshd[1436029]: Failed password for root from 138.204.78.249 port 59278 ssh2 2020-08-02T09:45:17.588328morrigan.ad5gb.com sshd[1436029]: Disconnected from authenticating user root 138.204.78.249 port 59278 [preauth]	2020-08-02 23:35:01
103.146.202.160	attack	Aug 2 14:05:16 nextcloud sshd\[29198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.146.202.160 user=root Aug 2 14:05:18 nextcloud sshd\[29198\]: Failed password for root from 103.146.202.160 port 33994 ssh2 Aug 2 14:09:50 nextcloud sshd\[1583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.146.202.160 user=root	2020-08-02 23:53:47
124.165.233.238	attackspambots	DATE:2020-08-02 14:09:50, IP:124.165.233.238, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-08-02 23:44:48
158.69.246.141	attack	[2020-08-02 11:44:00] NOTICE[1248][C-00002d60] chan_sip.c: Call from '' (158.69.246.141:64952) to extension '441519470489' rejected because extension not found in context 'public'. [2020-08-02 11:44:00] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-02T11:44:00.917-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="441519470489",SessionID="0x7f27205a5c28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/158.69.246.141/64952",ACLName="no_extension_match" [2020-08-02 11:44:32] NOTICE[1248][C-00002d61] chan_sip.c: Call from '' (158.69.246.141:51721) to extension '00441519470489' rejected because extension not found in context 'public'. [2020-08-02 11:44:32] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-02T11:44:32.887-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00441519470489",SessionID="0x7f272007c5b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/158.6 ...	2020-08-02 23:58:42
167.172.51.245	attackbots	firewall-block, port(s): 38081/tcp	2020-08-03 00:03:39
203.150.243.176	attackspambots	Aug 2 09:50:18 vps46666688 sshd[4633]: Failed password for root from 203.150.243.176 port 54450 ssh2 ...	2020-08-02 23:26:40
106.12.5.137	attack	Aug 2 14:24:44 vps647732 sshd[10797]: Failed password for root from 106.12.5.137 port 45568 ssh2 ...	2020-08-02 23:57:49
106.13.190.84	attackbotsspam	Aug 2 16:29:02 server sshd[32732]: Failed password for root from 106.13.190.84 port 50210 ssh2 Aug 2 16:33:49 server sshd[34094]: Failed password for root from 106.13.190.84 port 32964 ssh2 Aug 2 16:38:23 server sshd[35605]: Failed password for root from 106.13.190.84 port 42038 ssh2	2020-08-02 23:50:40
78.152.222.91	attack	Aug 2 05:32:19 web9 sshd\[10528\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.152.222.91 user=root Aug 2 05:32:20 web9 sshd\[10528\]: Failed password for root from 78.152.222.91 port 52242 ssh2 Aug 2 05:37:24 web9 sshd\[11119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.152.222.91 user=root Aug 2 05:37:26 web9 sshd\[11119\]: Failed password for root from 78.152.222.91 port 40724 ssh2 Aug 2 05:42:17 web9 sshd\[11640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.152.222.91 user=root	2020-08-02 23:59:15
120.53.22.204	attackbotsspam	Aug 2 14:27:28 Ubuntu-1404-trusty-64-minimal sshd\[5226\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.22.204 user=root Aug 2 14:27:30 Ubuntu-1404-trusty-64-minimal sshd\[5226\]: Failed password for root from 120.53.22.204 port 39178 ssh2 Aug 2 14:48:04 Ubuntu-1404-trusty-64-minimal sshd\[24442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.22.204 user=root Aug 2 14:48:06 Ubuntu-1404-trusty-64-minimal sshd\[24442\]: Failed password for root from 120.53.22.204 port 58992 ssh2 Aug 2 14:54:07 Ubuntu-1404-trusty-64-minimal sshd\[30462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.22.204 user=root	2020-08-02 23:41:28
51.38.186.244	attackspambots	Aug 2 12:47:32 IngegnereFirenze sshd[32647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.244 user=root ...	2020-08-02 23:29:29
123.57.208.161	attack	Aug 2 09:07:02 firewall sshd[31645]: Failed password for root from 123.57.208.161 port 52562 ssh2 Aug 2 09:10:07 firewall sshd[31774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.57.208.161 user=root Aug 2 09:10:09 firewall sshd[31774]: Failed password for root from 123.57.208.161 port 47875 ssh2 ...	2020-08-02 23:40:08
195.70.59.121	attackbots	Aug 2 14:10:35 h2829583 sshd[6541]: Failed password for root from 195.70.59.121 port 47726 ssh2	2020-08-02 23:18:53
118.101.192.81	attack	firewall-block, port(s): 3635/tcp	2020-08-02 23:35:33

Recently Reported IPs

162.241.141.56	162.241.143.29	162.241.148.158	162.241.143.109
162.241.143.19	162.241.148.13	162.241.148.214	162.241.148.31
162.241.148.25	162.241.151.155	162.241.151.161	162.241.149.210
162.241.148.229	162.241.148.190	162.241.151.166	162.241.151.167
162.241.151.156	162.241.151.168	162.241.152.201	162.241.152.40