162.243.149.130

Basic Info

City: San Francisco

Region: California

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port scan: Attack repeated for 24 hours	2019-08-11 09:37:32
attackspambots	[portscan] tcp/115 [sftp] *(RWIN=65535)(08041230)	2019-08-04 23:28:17
attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-07-29 15:13:39
attackbots	27357/tcp 59911/tcp 41498/tcp... [2019-04-22/06-23]64pkt,50pt.(tcp),3pt.(udp)	2019-06-24 00:09:31

Comments on same subnet:

IP	Type	Details	Datetime
162.243.149.151	attackbotsspam	Thu 29 05:46:44 52239/tcp	2019-08-30 03:07:14
162.243.149.151	attackspambots	1565900481 - 08/15/2019 22:21:21 Host: zg-0403-57.stretchoid.com/162.243.149.151 Port: 5093 UDP Blocked	2019-08-16 04:39:31
162.243.149.252	attackbots	20/tcp 25877/tcp 5351/udp... [2019-06-12/08-11]79pkt,63pt.(tcp),3pt.(udp)	2019-08-13 02:44:28
162.243.149.151	attackbotsspam	scan z	2019-08-12 05:38:20
162.243.149.6	attackbots	firewall-block, port(s): 40331/tcp	2019-08-04 23:28:50
162.243.149.6	attackspam	Port Scan detected from 162.243.149.6 (US/United States/zg-0403-19.stretchoid.com). 4 hits in the last 245 seconds	2019-07-30 13:24:01
162.243.149.252	attack	Port scan: Attack repeated for 24 hours	2019-07-09 15:40:14
162.243.149.170	attack	scan z	2019-07-07 04:15:29
162.243.149.232	attack	02.07.2019 23:15:59 Connection to port 3128 blocked by firewall	2019-07-03 09:28:56
162.243.149.170	attackspambots	Port scan: Attack repeated for 24 hours	2019-06-27 08:54:00
162.243.149.170	attackspam	" "	2019-06-25 02:08:53

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.149.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20523
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.149.130.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 29 00:47:16 +08 2019
;; MSG SIZE  rcvd: 119

Host info

130.149.243.162.in-addr.arpa domain name pointer zg-0403-53.stretchoid.com.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
130.149.243.162.in-addr.arpa	name = zg-0403-53.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.61.214.44	attackbotsspam	Apr 22 20:08:14 vlre-nyc-1 sshd\[24852\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.61.214.44 user=www-data Apr 22 20:08:17 vlre-nyc-1 sshd\[24852\]: Failed password for www-data from 124.61.214.44 port 51478 ssh2 Apr 22 20:15:30 vlre-nyc-1 sshd\[24957\]: Invalid user test from 124.61.214.44 Apr 22 20:15:30 vlre-nyc-1 sshd\[24957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.61.214.44 Apr 22 20:15:33 vlre-nyc-1 sshd\[24957\]: Failed password for invalid user test from 124.61.214.44 port 37750 ssh2 ...	2020-04-23 04:42:36
203.177.14.138	attackbotsspam	Unauthorized connection attempt from IP address 203.177.14.138 on Port 445(SMB)	2020-04-23 05:03:01
195.3.146.88	attackspambots	nft/Honeypot/3389/73e86	2020-04-23 05:05:25
196.70.250.116	attackspambots	Draytek Vigor Remote Command Execution Vulnerability	2020-04-23 05:01:32
165.225.88.106	attack	Unauthorized connection attempt from IP address 165.225.88.106 on Port 445(SMB)	2020-04-23 04:37:37
41.63.0.133	attackspambots	Triggered by Fail2Ban at Ares web server	2020-04-23 04:54:08
213.109.233.137	attackspambots	Unauthorized connection attempt from IP address 213.109.233.137 on Port 445(SMB)	2020-04-23 04:37:00
120.52.139.130	attack	(sshd) Failed SSH login from 120.52.139.130 (CN/China/-): 5 in the last 3600 secs	2020-04-23 04:53:01
201.217.138.242	attackbotsspam	Unauthorized connection attempt from IP address 201.217.138.242 on Port 445(SMB)	2020-04-23 04:49:11
89.216.81.153	attack	Apr 22 20:15:33 localhost sshd\[3988\]: Invalid user admin from 89.216.81.153 port 34136 Apr 22 20:15:33 localhost sshd\[3988\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.216.81.153 Apr 22 20:15:35 localhost sshd\[3988\]: Failed password for invalid user admin from 89.216.81.153 port 34136 ssh2 ...	2020-04-23 04:47:28
95.168.94.79	attackspambots	MVPower DVR Shell Unauthenticated Command Execution Vulnerability	2020-04-23 05:02:25
200.122.237.227	attackspambots	Unauthorized connection attempt from IP address 200.122.237.227 on Port 445(SMB)	2020-04-23 04:52:17
61.244.89.202	attack	Unauthorized connection attempt from IP address 61.244.89.202 on Port 445(SMB)	2020-04-23 04:46:03
98.100.250.202	attackspam	Apr 22 22:10:53 roki-contabo sshd\[28817\]: Invalid user admin from 98.100.250.202 Apr 22 22:10:53 roki-contabo sshd\[28817\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.100.250.202 Apr 22 22:10:56 roki-contabo sshd\[28817\]: Failed password for invalid user admin from 98.100.250.202 port 53474 ssh2 Apr 22 22:15:37 roki-contabo sshd\[28921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.100.250.202 user=root Apr 22 22:15:39 roki-contabo sshd\[28921\]: Failed password for root from 98.100.250.202 port 52364 ssh2 ...	2020-04-23 04:45:36
185.176.221.207	attackbotsspam	1587586523 - 04/23/2020 03:15:23 Host: 217189.2cloud.eu/185.176.221.207 Port: 3000 TCP Blocked ...	2020-04-23 05:03:55

Recently Reported IPs

140.143.238.12	122.242.224.56	106.132.148.179	50.76.255.241
94.49.145.95	200.147.41.211	54.71.39.113	185.36.81.182
40.231.136.203	121.54.174.211	193.197.17.161	71.8.186.75
91.100.176.255	103.47.218.76	84.217.83.135	212.99.96.196
77.42.73.158	173.113.40.118	42.236.10.107	23.19.209.179