162.243.166.20 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 162.243.166.20 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 40/100

Host and Network Information

• Tags: cisco, cowrie, digital ocean, dionaea, fatt, honeytrap, LAMP, mailoney, malicious, p0f, portscan, scanners, sensor-tagged, sentrypeer, sftp, sip, ssh, suricata, tanner, tpot, vultr

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 9 times
• Protocols Attacked: portscan
• Passive DNS Results: coloringpageinfo.com hongbei02.zoho-cloud.icu huntington-support.com www.huntington-support.com planetpop.io www.planetpop.io nuvemgram.com.br

Malware Detected on Host

Count: 5 f2f726b15045311a7d018a4f3073fb191bc46c9f5ca650350e47f570cd1d45f5 a1d8f8c20324bb1d488ec71d6492d61ac76367527e0583109c6720693380bbd9 a6b82a89f91a27095d3007ffda91d8d925a97fb1191b731ae1383575fd181b31 bcb31df2d9f8caca87ab49c6e056b6f25251123d0028ca94d45a459f6350fff2 45d518573ca06ca015853f10dd1d321cc902c53d67922fb81f913bb740421809

Open Ports Detected

22

Map

Whois Information

• NetRange: 162.243.0.0 - 162.243.255.255
• CIDR: 162.243.0.0/16
• NetName: DIGITALOCEAN-162-243-0-0
• NetHandle: NET-162-243-0-0-1
• Parent: NET162 (NET-162-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: DigitalOcean, LLC (DO-13)
• RegDate: 2013-09-06
• Updated: 2020-04-03
• Comment: Routing and Peering Policy can be found at https://www.as14061.net
• Comment:
• Ref: https://rdap.arin.net/registry/ip/162.243.0.0
• OrgName: DigitalOcean, LLC
• OrgId: DO-13
• Address: 105 Edgeview Drive, Suite 425
• City: Broomfield
• StateProv: CO
• PostalCode: 80021
• Country: US
• RegDate: 2012-05-14
• Updated: 2025-04-11
• Ref: https://rdap.arin.net/registry/entity/DO-13
• OrgTechHandle: NOC32014-ARIN
• OrgTechName: Network Operations Center
• OrgTechPhone: +1-646-827-4366
• OrgTechEmail: noc@digitalocean.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgAbuseHandle: DIGIT19-ARIN
• OrgAbuseName: DigitalOcean Abuse
• OrgAbusePhone: +1-646-827-4366
• OrgAbuseEmail: abuse@digitalocean.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN
• OrgNOCHandle: NOC32014-ARIN
• OrgNOCName: Network Operations Center
• OrgNOCPhone: +1-646-827-4366
• OrgNOCEmail: noc@digitalocean.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN