162.243.138.52

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt detected from IP address 162.243.138.52 to port 993	2020-05-09 19:57:57

Comments on same subnet:

IP	Type	Details	Datetime
162.243.138.127	attackspambots	[Sun Jun 14 20:12:07 2020] - DDoS Attack From IP: 162.243.138.127 Port: 47439	2020-07-16 20:51:56
162.243.138.112	attackbotsspam	Jun 15 02:19:24 mail postfix/postscreen[14056]: DNSBL rank 4 for [162.243.138.112]:51696 ...	2020-07-14 13:10:42
162.243.138.127	attack	[Sun Jun 14 20:12:09 2020] - DDoS Attack From IP: 162.243.138.127 Port: 47439	2020-07-13 03:14:52
162.243.138.96	attackbots	[Sat May 23 01:11:21 2020] - DDoS Attack From IP: 162.243.138.96 Port: 38759	2020-07-09 03:41:31
162.243.138.122	attackbots	[Sun May 24 09:17:21 2020] - DDoS Attack From IP: 162.243.138.122 Port: 43561	2020-07-09 03:34:09
162.243.138.189	attackspambots	Unauthorized connection attempt detected from IP address 162.243.138.189 to port 465	2020-06-22 07:28:19
162.243.138.177	attack	ZGrab Application Layer Scanner Detection	2020-06-21 22:07:50
162.243.138.15	attackspambots	scans once in preceeding hours on the ports (in chronological order) 8083 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:57:05
162.243.138.18	attackbots	9200/tcp 1337/tcp 8118/tcp... [2020-05-02/06-21]44pkt,32pt.(tcp),5pt.(udp)	2020-06-21 20:56:33
162.243.138.54	attackspam	scans once in preceeding hours on the ports (in chronological order) 3011 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:56:01
162.243.138.56	attack	33930/tcp 9300/tcp 28015/tcp... [2020-05-03/06-21]41pkt,34pt.(tcp)	2020-06-21 20:55:09
162.243.138.70	attackbots	scans once in preceeding hours on the ports (in chronological order) 3391 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:54:43
162.243.138.108	attackbots	scans once in preceeding hours on the ports (in chronological order) 8080 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:54:24
162.243.138.182	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-06-21 20:54:11
162.243.138.34	attackspambots	firewall-block, port(s): 2379/tcp	2020-06-21 02:45:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.138.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47839
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.138.52.			IN	A

;; AUTHORITY SECTION:
.			545	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050900 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 09 19:57:51 CST 2020
;; MSG SIZE  rcvd: 118

Host info

52.138.243.162.in-addr.arpa domain name pointer zg-0428c-230.stretchoid.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.138.243.162.in-addr.arpa	name = zg-0428c-230.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.166.170.235	attack	Honeypot attack, port: 4567, PTR: PTR record not found	2020-01-28 04:33:46
196.52.43.84	attack	Unauthorized connection attempt detected from IP address 196.52.43.84 to port 1026 [J]	2020-01-28 04:45:02
93.115.250.12	attackspambots	2019-04-30 11:49:22 H=\(pear.tecrubesizler.icu\) \[93.115.250.12\]:33016 I=\[193.107.88.166\]:25 sender verify fail for \: Unrouteable address 2019-04-30 11:49:22 H=\(pear.tecrubesizler.icu\) \[93.115.250.12\]:33016 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-04-30 11:52:05 H=\(pear.tecrubesizler.icu\) \[93.115.250.12\]:43527 I=\[193.107.88.166\]:25 sender verify fail for \: Unrouteable address 2019-04-30 11:52:05 H=\(pear.tecrubesizler.icu\) \[93.115.250.12\]:43527 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-28 04:18:44
195.142.112.244	attack	Honeypot attack, port: 445, PTR: host-195-142-112-244.reverse.superonline.net.	2020-01-28 04:24:57
138.68.146.186	attack	Aug 24 20:01:15 dallas01 sshd[2393]: Failed password for root from 138.68.146.186 port 49328 ssh2 Aug 24 20:06:04 dallas01 sshd[3196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.146.186 Aug 24 20:06:07 dallas01 sshd[3196]: Failed password for invalid user jerry from 138.68.146.186 port 36388 ssh2	2020-01-28 04:57:41
59.120.142.184	attackspambots	RDP Bruteforce	2020-01-28 04:47:23
59.175.62.117	attackbotsspam	23/tcp 23/tcp 23/tcp... [2020-01-25/27]155pkt,1pt.(tcp)	2020-01-28 04:27:56
95.180.40.163	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-01-28 04:44:12
46.38.144.49	attack	Rude login attack (1231 tries in 1d)	2020-01-28 04:22:44
210.16.100.169	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2020-01-28 04:55:46
46.38.144.146	attackbotsspam	Jan 27 21:52:41 relay postfix/smtpd\[14092\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 27 21:53:15 relay postfix/smtpd\[9550\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 27 21:53:37 relay postfix/smtpd\[15866\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 27 21:54:12 relay postfix/smtpd\[9550\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 27 21:54:32 relay postfix/smtpd\[14092\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-28 04:57:16
112.164.146.83	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-01-28 04:39:01
103.62.235.221	attack	445/tcp [2020-01-27]1pkt	2020-01-28 04:42:15
92.76.170.210	attack	2019-07-06 14:58:26 1hjkGo-0007sF-Hb SMTP connection from dslb-092-076-170-210.092.076.pools.vodafone-ip.de \[92.76.170.210\]:18003 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-06 14:58:38 1hjkGz-0007sU-7U SMTP connection from dslb-092-076-170-210.092.076.pools.vodafone-ip.de \[92.76.170.210\]:18100 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-06 14:58:43 1hjkH4-0007sd-Pw SMTP connection from dslb-092-076-170-210.092.076.pools.vodafone-ip.de \[92.76.170.210\]:18161 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 04:48:51
93.107.22.126	attackbots	2019-10-23 17:22:46 1iNITF-0008HH-RC SMTP connection from \(\[93.107.22.126\]\) \[93.107.22.126\]:14258 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 17:22:52 1iNITL-0008HS-HR SMTP connection from \(\[93.107.22.126\]\) \[93.107.22.126\]:14335 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 17:22:55 1iNITO-0008HT-Iv SMTP connection from \(\[93.107.22.126\]\) \[93.107.22.126\]:14369 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 04:29:40

Recently Reported IPs

116.100.16.51	186.121.247.70	185.230.224.37	1.55.183.9
112.5.37.66	54.37.154.248	45.10.175.80	185.224.102.211
185.216.128.180	37.99.145.226	185.213.110.65	180.117.7.64
156.223.49.75	117.36.175.240	185.156.214.22	140.0.249.126
110.137.151.195	184.61.4.27	45.172.108.84	183.89.86.85