162.243.141.75

Basic Info

City: San Francisco

Region: California

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	10409/tcp 7199/tcp 47440/tcp... [2019-05-02/06-30]64pkt,51pt.(tcp),4pt.(udp)	2019-07-01 03:24:19
attackbots	48410/tcp 1080/tcp 57738/tcp... [2019-04-22/06-22]63pkt,46pt.(tcp),4pt.(udp)	2019-06-23 00:05:14

Comments on same subnet:

IP	Type	Details	Datetime
162.243.141.19	attack	Malicious IP	2024-04-17 12:08:10
162.243.141.23	proxy	VPN	2023-01-31 13:52:10
162.243.141.131	attack	[Fri Jun 12 15:58:06 2020] - DDoS Attack From IP: 162.243.141.131 Port: 36986	2020-07-16 21:12:38
162.243.141.131	attackspam	[Fri Jun 12 15:58:08 2020] - DDoS Attack From IP: 162.243.141.131 Port: 36986	2020-07-13 03:26:33
162.243.141.36	attackbotsspam	[Sun Jun 21 23:01:54 2020] - DDoS Attack From IP: 162.243.141.36 Port: 49125	2020-07-13 02:40:21
162.243.141.131	attackbotsspam	[Fri Jun 12 15:58:11 2020] - DDoS Attack From IP: 162.243.141.131 Port: 36986	2020-07-08 23:11:43
162.243.141.36	attack	[Sun Jun 21 23:01:57 2020] - DDoS Attack From IP: 162.243.141.36 Port: 49125	2020-07-08 22:06:23
162.243.141.37	attack	Jun 21 23:55:38 Host-KEWR-E postfix/smtps/smtpd[2301]: lost connection after CONNECT from unknown[162.243.141.37] ...	2020-06-22 12:13:57
162.243.141.77	attackbots	scans once in preceeding hours on the ports (in chronological order) 1931 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:48:03
162.243.141.142	attack	scans once in preceeding hours on the ports (in chronological order) 20547 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:47:50
162.243.141.165	attackspam	9042/tcp 9200/tcp 139/tcp... [2020-04-29/06-15]45pkt,35pt.(tcp),3pt.(udp)	2020-06-15 17:57:09
162.243.141.131	attackspambots	Unauthorized connection attempt from IP address 162.243.141.131 on Port 445(SMB)	2020-06-14 15:50:12
162.243.141.37	attackspambots	SSH login attempts.	2020-06-09 19:44:20
162.243.141.47	attack	2020-06-06 20:04:04 Unauthorized connection attempt to IMAP/POP	2020-06-07 17:25:23
162.243.141.232	attack	Misuse of DNS Server sending dot requests	2020-06-07 03:08:41

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.141.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51370
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.141.75.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu Apr 18 21:03:56 +08 2019
;; MSG SIZE  rcvd: 118

Host info

75.141.243.162.in-addr.arpa domain name pointer zg-0326a-46.stretchoid.com.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
75.141.243.162.in-addr.arpa	name = zg-0326a-46.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
87.255.193.18	attackbotsspam	Unauthorized connection attempt from IP address 87.255.193.18 on Port 445(SMB)	2019-11-21 00:13:28
197.61.214.195	attackspam	Unauthorized connection attempt from IP address 197.61.214.195 on Port 445(SMB)	2019-11-21 00:06:44
103.119.140.97	attack	2019-11-20 13:59:56 H=(ip-140-97.balifiber.id) [103.119.140.97]:14951 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.119.140.97) 2019-11-20 13:59:57 unexpected disconnection while reading SMTP command from (ip-140-97.balifiber.id) [103.119.140.97]:14951 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-11-20 15:41:33 H=(ip-140-97.balifiber.id) [103.119.140.97]:18432 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.119.140.97) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.119.140.97	2019-11-21 00:09:14
183.81.75.36	attackspambots	Unauthorized connection attempt from IP address 183.81.75.36 on Port 445(SMB)	2019-11-20 23:46:15
27.54.214.63	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-11-20 23:44:59
222.186.180.41	attackbotsspam	Nov 20 17:01:46 v22019058497090703 sshd[17388]: Failed password for root from 222.186.180.41 port 3452 ssh2 Nov 20 17:01:49 v22019058497090703 sshd[17388]: Failed password for root from 222.186.180.41 port 3452 ssh2 Nov 20 17:01:52 v22019058497090703 sshd[17388]: Failed password for root from 222.186.180.41 port 3452 ssh2 Nov 20 17:01:57 v22019058497090703 sshd[17388]: Failed password for root from 222.186.180.41 port 3452 ssh2 ...	2019-11-21 00:11:17
185.162.235.95	attackbotsspam	MAIL: User Login Brute Force Attempt	2019-11-21 00:17:23
219.143.218.163	attack	Nov 20 12:49:31 firewall sshd[4395]: Invalid user tour from 219.143.218.163 Nov 20 12:49:33 firewall sshd[4395]: Failed password for invalid user tour from 219.143.218.163 port 16130 ssh2 Nov 20 12:54:24 firewall sshd[4479]: Invalid user jack from 219.143.218.163 ...	2019-11-20 23:58:44
222.186.173.238	attack	2019-11-20T16:11:48.112034abusebot-3.cloudsearch.cf sshd\[27010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root	2019-11-21 00:13:48
181.115.185.42	attack	Unauthorized connection attempt from IP address 181.115.185.42 on Port 445(SMB)	2019-11-20 23:47:16
92.50.249.166	attackbotsspam	Nov 20 16:00:03 markkoudstaal sshd[7644]: Failed password for root from 92.50.249.166 port 60624 ssh2 Nov 20 16:04:07 markkoudstaal sshd[7997]: Failed password for root from 92.50.249.166 port 39960 ssh2 Nov 20 16:08:07 markkoudstaal sshd[8419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.50.249.166	2019-11-20 23:46:59
42.113.164.229	attackspam	Unauthorized connection attempt from IP address 42.113.164.229 on Port 445(SMB)	2019-11-21 00:24:43
76.73.206.90	attackbotsspam	Nov 20 17:46:05 hosting sshd[27150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.73.206.90 user=root Nov 20 17:46:07 hosting sshd[27150]: Failed password for root from 76.73.206.90 port 40314 ssh2 ...	2019-11-20 23:44:01
125.227.13.141	attack	Nov 20 05:34:45 php1 sshd\[11348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.227.13.141 user=root Nov 20 05:34:47 php1 sshd\[11348\]: Failed password for root from 125.227.13.141 port 52986 ssh2 Nov 20 05:38:50 php1 sshd\[11690\]: Invalid user taneva from 125.227.13.141 Nov 20 05:38:50 php1 sshd\[11690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.227.13.141 Nov 20 05:38:51 php1 sshd\[11690\]: Failed password for invalid user taneva from 125.227.13.141 port 60784 ssh2	2019-11-20 23:43:32
61.61.218.23	attackspam	Telnet Server BruteForce Attack	2019-11-21 00:06:22

Recently Reported IPs

185.69.144.17	59.99.66.179	202.40.190.210	190.104.39.228
78.40.189.84	197.149.125.50	180.108.76.126	34.229.91.96
14.52.95.114	106.12.202.85	51.252.54.115	61.173.39.108
195.211.142.87	84.201.152.63	37.139.104.195	36.90.68.102
193.0.151.133	112.135.2.98	103.81.139.48	82.165.162.65