162.243.136.144

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	scans once in preceeding hours on the ports (in chronological order) 1931 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 21:03:02
attackbots	Port Scan detected! ...	2020-05-27 00:13:47
attackspambots	scans 2 times in preceeding hours on the ports (in chronological order) 9200 39057 resulting in total of 54 scans from 162.243.0.0/16 block.	2020-05-22 01:15:55

Type

Details

Datetime

attackspambots

scans once in preceeding hours on the ports (in chronological order) 1931 resulting in total of 51 scans from 162.243.0.0/16 block.

2020-06-21 21:03:02

attackbots

Port Scan detected!
...

2020-05-27 00:13:47

attackspambots

scans 2 times in preceeding hours on the ports (in chronological order) 9200 39057 resulting in total of 54 scans from 162.243.0.0/16 block.

2020-05-22 01:15:55

Comments on same subnet:

IP	Type	Details	Datetime
162.243.136.186	attack	[Wed Jun 10 05:55:45 2020] - DDoS Attack From IP: 162.243.136.186 Port: 40597	2020-07-13 03:51:17
162.243.136.60	attackspambots	[Sun May 31 02:48:40 2020] - DDoS Attack From IP: 162.243.136.60 Port: 49864	2020-07-09 02:28:35
162.243.136.88	attack	scans 2 times in preceeding hours on the ports (in chronological order) 4545 60001 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 21:03:56
162.243.136.115	attackbotsspam	3011/tcp 7547/tcp 502/tcp... [2020-05-05/06-21]31pkt,27pt.(tcp),1pt.(udp)	2020-06-21 21:03:39
162.243.136.158	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 3011 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 21:02:40
162.243.136.160	attack	1720/tcp 8005/tcp 7777/tcp... [2020-04-29/06-21]42pkt,34pt.(tcp),2pt.(udp)	2020-06-21 21:02:12
162.243.136.182	attackbotsspam	2000/tcp 646/tcp 10880/tcp... [2020-04-30/06-21]57pkt,46pt.(tcp),4pt.(udp)	2020-06-21 20:59:23
162.243.136.192	attack	scans once in preceeding hours on the ports (in chronological order) 33930 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:58:58
162.243.136.27	attackbotsspam	firewall-block, port(s): 50070/tcp	2020-06-20 21:15:28
162.243.136.200	attackbots	RDP brute force attack detected by fail2ban	2020-06-20 14:05:31
162.243.136.27	attackspam	9001/tcp 47808/tcp 5984/tcp... [2020-05-03/06-19]31pkt,24pt.(tcp),2pt.(udp)	2020-06-20 06:28:31
162.243.136.192	attackspambots	Port scan denied	2020-06-18 17:45:40
162.243.136.24	attackbots	404 NOT FOUND	2020-06-17 14:44:54
162.243.136.216	attackspambots	162.243.136.216 - - - [17/Jun/2020:05:56:02 +0200] "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 404 162 "-" "Mozilla/5.0 zgrab/0.x" "-" "-"	2020-06-17 13:09:29
162.243.136.95	attackspambots	20/6/15@23:54:21: FAIL: IoT-SSH address from=162.243.136.95 ...	2020-06-16 13:02:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.136.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33109
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.136.144.		IN	A

;; AUTHORITY SECTION:
.			428	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052101 1800 900 604800 86400

;; Query time: 147 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 22 01:15:52 CST 2020
;; MSG SIZE  rcvd: 119

Host info

144.136.243.162.in-addr.arpa domain name pointer zg-0428c-96.stretchoid.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
144.136.243.162.in-addr.arpa	name = zg-0428c-96.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
196.27.127.61	attackspam	Nov 26 10:59:03 meumeu sshd[22847]: Failed password for root from 196.27.127.61 port 36777 ssh2 Nov 26 11:03:48 meumeu sshd[23407]: Failed password for root from 196.27.127.61 port 52791 ssh2 ...	2019-11-26 18:27:22
203.135.4.146	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:43.	2019-11-26 18:05:11
49.151.166.244	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:48.	2019-11-26 17:56:01
59.99.31.110	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:50.	2019-11-26 17:52:27
111.246.30.120	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:30.	2019-11-26 18:28:38
36.72.70.169	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:45.	2019-11-26 18:03:35
42.114.191.11	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:46.	2019-11-26 17:59:55
124.160.83.138	attack	Nov 25 23:47:23 hanapaa sshd\[24426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.160.83.138 user=lp Nov 25 23:47:25 hanapaa sshd\[24426\]: Failed password for lp from 124.160.83.138 port 45781 ssh2 Nov 25 23:52:04 hanapaa sshd\[24775\]: Invalid user ils from 124.160.83.138 Nov 25 23:52:04 hanapaa sshd\[24775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.160.83.138 Nov 25 23:52:06 hanapaa sshd\[24775\]: Failed password for invalid user ils from 124.160.83.138 port 33675 ssh2	2019-11-26 18:01:17
180.242.88.6	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:39.	2019-11-26 18:11:57
203.115.104.60	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:43.	2019-11-26 18:06:43
63.88.23.209	attackbotsspam	63.88.23.209 was recorded 9 times by 7 hosts attempting to connect to the following ports: 80,110. Incident counter (4h, 24h, all-time): 9, 73, 708	2019-11-26 17:49:10
36.62.37.204	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:44.	2019-11-26 18:03:55
118.172.29.94	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:33.	2019-11-26 18:22:35
181.123.90.147	attack	Nov 26 05:29:33 ahost sshd[9215]: reveeclipse mapping checking getaddrinfo for pool-147-90-123-181.telecel.com.py [181.123.90.147] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 26 05:29:33 ahost sshd[9215]: Invalid user schymanietz from 181.123.90.147 Nov 26 05:29:33 ahost sshd[9215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.123.90.147 Nov 26 05:29:36 ahost sshd[9215]: Failed password for invalid user schymanietz from 181.123.90.147 port 55222 ssh2 Nov 26 05:29:36 ahost sshd[9215]: Received disconnect from 181.123.90.147: 11: Bye Bye [preauth] Nov 26 05:54:58 ahost sshd[11539]: reveeclipse mapping checking getaddrinfo for pool-147-90-123-181.telecel.com.py [181.123.90.147] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 26 05:54:58 ahost sshd[11539]: Invalid user apache from 181.123.90.147 Nov 26 05:54:58 ahost sshd[11539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.123.90.147 Nov 26 ........ ------------------------------	2019-11-26 18:23:27
31.23.120.224	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 06:25:44.	2019-11-26 18:05:53

Recently Reported IPs

123.23.171.134	87.117.9.245	224.148.92.14	23.108.216.242
83.102.135.203	109.197.194.34	128.9.63.139	27.3.193.120
198.55.103.210	188.165.231.68	147.210.25.46	185.243.12.60
193.189.200.253	154.2.55.93	60.77.43.242	33.139.135.92
131.113.34.100	94.119.182.89	5.101.107.190	83.110.213.216