162.243.142.225

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Port scan: Attack repeated for 24 hours	2020-06-19 22:47:00

Comments on same subnet:

IP	Type	Details	Datetime
162.243.142.176	attackspam	[Mon Jun 08 14:17:27 2020] - DDoS Attack From IP: 162.243.142.176 Port: 57285	2020-07-13 04:03:26
162.243.142.146	attackspambots	[Tue Jun 09 15:57:57 2020] - DDoS Attack From IP: 162.243.142.146 Port: 54460	2020-07-13 03:56:26
162.243.142.61	attack	firewall-block, port(s): 81/tcp	2020-06-22 18:47:27
162.243.142.200	attack	ZGrab Application Layer Scanner Detection	2020-06-21 22:16:22
162.243.142.207	attackspambots	TCP (SYN) 162.243.142.207:60667 -> port 81, len 40	2020-06-21 22:07:30
162.243.142.10	attackbots	scans once in preceeding hours on the ports (in chronological order) 63814 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:47:31
162.243.142.124	attackbots	scans once in preceeding hours on the ports (in chronological order) 5631 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:47:07
162.243.142.155	attackspambots	scans once in preceeding hours on the ports (in chronological order) 5632 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:46:53
162.243.142.16	attack	Port scan denied	2020-06-17 14:11:54
162.243.142.219	attack	nginx/IPasHostname/a4a6f	2020-06-17 13:19:25
162.243.142.6	attackspam	Unauthorized connection attempt IP: 162.243.142.6 Ports affected IMAP over TLS protocol (993) Abuse Confidence rating 100% Found in DNSBL('s) ASN Details AS14061 DIGITALOCEAN-ASN United States (US) CIDR 162.243.0.0/16 Log Date: 15/06/2020 2:07:10 PM UTC	2020-06-15 22:30:26
162.243.142.200	attackspam	162.243.142.200 - - - [11/Jun/2020:07:01:57 +0200] "GET /portal/redlion HTTP/1.1" 404 162 "-" "Mozilla/5.0 zgrab/0.x" "-" "-"	2020-06-11 18:02:00
162.243.142.143	attack	" "	2020-06-11 16:00:27
162.243.142.64	attackspambots	TCP (SYN) 162.243.142.64:45035 -> port 1527, len 44	2020-06-10 17:18:17
162.243.142.143	attackbots	" "	2020-06-07 18:40:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.142.225
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19092
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.142.225.		IN	A

;; AUTHORITY SECTION:
.			383	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061900 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 19 22:46:56 CST 2020
;; MSG SIZE  rcvd: 119

Host info

225.142.243.162.in-addr.arpa domain name pointer zg-0428c-535.stretchoid.com.

Nslookup info:

Server:		100.100.2.138
Address:	100.100.2.138#53

Non-authoritative answer:
225.142.243.162.in-addr.arpa	name = zg-0428c-535.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.91.212.79	attackspambots	Jul 25 19:08:25 debian-2gb-nbg1-2 kernel: \[17955419.767009\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=51.91.212.79 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=59329 DPT=6006 WINDOW=65535 RES=0x00 SYN URGP=0	2020-07-26 01:13:21
167.172.163.162	attack	Jul 25 19:34:07 meumeu sshd[110330]: Invalid user linux from 167.172.163.162 port 46582 Jul 25 19:34:07 meumeu sshd[110330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.163.162 Jul 25 19:34:07 meumeu sshd[110330]: Invalid user linux from 167.172.163.162 port 46582 Jul 25 19:34:09 meumeu sshd[110330]: Failed password for invalid user linux from 167.172.163.162 port 46582 ssh2 Jul 25 19:38:05 meumeu sshd[110570]: Invalid user mc from 167.172.163.162 port 59904 Jul 25 19:38:05 meumeu sshd[110570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.163.162 Jul 25 19:38:05 meumeu sshd[110570]: Invalid user mc from 167.172.163.162 port 59904 Jul 25 19:38:07 meumeu sshd[110570]: Failed password for invalid user mc from 167.172.163.162 port 59904 ssh2 Jul 25 19:42:02 meumeu sshd[110923]: Invalid user yvonne from 167.172.163.162 port 44776 ...	2020-07-26 01:47:21
61.177.172.102	attack	2020-07-25T17:25:34.451764shield sshd\[21949\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.102 user=root 2020-07-25T17:25:36.051794shield sshd\[21949\]: Failed password for root from 61.177.172.102 port 53501 ssh2 2020-07-25T17:25:38.850154shield sshd\[21949\]: Failed password for root from 61.177.172.102 port 53501 ssh2 2020-07-25T17:25:40.720758shield sshd\[21949\]: Failed password for root from 61.177.172.102 port 53501 ssh2 2020-07-25T17:25:45.348153shield sshd\[21995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.102 user=root	2020-07-26 01:27:01
106.12.70.118	attackspam	Invalid user wl from 106.12.70.118 port 56080	2020-07-26 01:18:44
185.164.138.21	attack	Exploited Host.	2020-07-26 01:15:34
159.65.5.164	attackbotsspam	Jul 25 17:42:57 sso sshd[26318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.5.164 Jul 25 17:42:59 sso sshd[26318]: Failed password for invalid user ty from 159.65.5.164 port 53790 ssh2 ...	2020-07-26 01:23:04
176.31.234.175	attackbots	Jul 25 19:26:26 host sshd[6894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns372742.ip-176-31-234.eu user=sshd Jul 25 19:26:28 host sshd[6894]: Failed password for sshd from 176.31.234.175 port 47200 ssh2 ...	2020-07-26 01:35:28
94.23.179.193	attackbotsspam	Jul 25 18:17:09 ms-srv sshd[61509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.179.193 Jul 25 18:17:11 ms-srv sshd[61509]: Failed password for invalid user dad from 94.23.179.193 port 36393 ssh2	2020-07-26 01:25:55
45.4.5.221	attackbotsspam	...	2020-07-26 01:16:05
146.120.87.199	attackbots	Jul 25 17:13:18 scw-6657dc sshd[20940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.120.87.199 Jul 25 17:13:18 scw-6657dc sshd[20940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.120.87.199 Jul 25 17:13:20 scw-6657dc sshd[20940]: Failed password for invalid user neu from 146.120.87.199 port 59529 ssh2 ...	2020-07-26 01:24:27
62.234.78.113	attackbotsspam	Jul 25 16:02:48 plex-server sshd[2669377]: Invalid user shadwell from 62.234.78.113 port 41522 Jul 25 16:02:48 plex-server sshd[2669377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.78.113 Jul 25 16:02:48 plex-server sshd[2669377]: Invalid user shadwell from 62.234.78.113 port 41522 Jul 25 16:02:50 plex-server sshd[2669377]: Failed password for invalid user shadwell from 62.234.78.113 port 41522 ssh2 Jul 25 16:06:26 plex-server sshd[2670848]: Invalid user testuser from 62.234.78.113 port 48540 ...	2020-07-26 01:44:58
181.48.61.210	attackspambots	20/7/25@11:15:00: FAIL: Alarm-Network address from=181.48.61.210 20/7/25@11:15:00: FAIL: Alarm-Network address from=181.48.61.210 ...	2020-07-26 01:41:46
94.112.234.161	attack	Automatic report - XMLRPC Attack	2020-07-26 01:17:32
92.64.125.60	attackbotsspam	Honeypot attack, port: 445, PTR: static.kpn.net.	2020-07-26 01:39:45
82.14.14.121	attack	Honeypot attack, port: 5555, PTR: cpc147278-walt27-2-0-cust120.13-2.cable.virginm.net.	2020-07-26 01:25:02

Recently Reported IPs

189.89.223.71	117.194.93.248	180.199.134.76	123.133.86.27
5.8.123.23	103.196.137.239	114.237.188.29	77.108.18.39
109.31.80.214	208.183.173.213	52.172.185.136	45.116.114.11
122.110.83.97	106.55.26.56	170.82.115.51	92.56.67.94
103.95.29.112	45.159.16.98	181.73.197.37	212.70.149.66