162.243.138.97

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	8998/tcp 7001/tcp 8181/tcp... [2019-06-27/08-27]62pkt,56pt.(tcp),4pt.(udp)	2019-08-28 09:57:24
attackbots	" "	2019-08-26 04:20:54
attack	Unauthorized connection attempt from IP address 162.243.138.97 on Port 465(SMTPS)	2019-07-29 12:55:35
attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-12 04:18:58
attackspam	firewall-block, port(s): 9042/tcp	2019-06-30 05:06:44

Comments on same subnet:

IP	Type	Details	Datetime
162.243.138.127	attackspambots	[Sun Jun 14 20:12:07 2020] - DDoS Attack From IP: 162.243.138.127 Port: 47439	2020-07-16 20:51:56
162.243.138.112	attackbotsspam	Jun 15 02:19:24 mail postfix/postscreen[14056]: DNSBL rank 4 for [162.243.138.112]:51696 ...	2020-07-14 13:10:42
162.243.138.127	attack	[Sun Jun 14 20:12:09 2020] - DDoS Attack From IP: 162.243.138.127 Port: 47439	2020-07-13 03:14:52
162.243.138.96	attackbots	[Sat May 23 01:11:21 2020] - DDoS Attack From IP: 162.243.138.96 Port: 38759	2020-07-09 03:41:31
162.243.138.122	attackbots	[Sun May 24 09:17:21 2020] - DDoS Attack From IP: 162.243.138.122 Port: 43561	2020-07-09 03:34:09
162.243.138.189	attackspambots	Unauthorized connection attempt detected from IP address 162.243.138.189 to port 465	2020-06-22 07:28:19
162.243.138.177	attack	ZGrab Application Layer Scanner Detection	2020-06-21 22:07:50
162.243.138.15	attackspambots	scans once in preceeding hours on the ports (in chronological order) 8083 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:57:05
162.243.138.18	attackbots	9200/tcp 1337/tcp 8118/tcp... [2020-05-02/06-21]44pkt,32pt.(tcp),5pt.(udp)	2020-06-21 20:56:33
162.243.138.54	attackspam	scans once in preceeding hours on the ports (in chronological order) 3011 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:56:01
162.243.138.56	attack	33930/tcp 9300/tcp 28015/tcp... [2020-05-03/06-21]41pkt,34pt.(tcp)	2020-06-21 20:55:09
162.243.138.70	attackbots	scans once in preceeding hours on the ports (in chronological order) 3391 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:54:43
162.243.138.108	attackbots	scans once in preceeding hours on the ports (in chronological order) 8080 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:54:24
162.243.138.182	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-06-21 20:54:11
162.243.138.34	attackspambots	firewall-block, port(s): 2379/tcp	2020-06-21 02:45:54

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.138.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43302
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.138.97.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019043002 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed May 01 12:15:08 +08 2019
;; MSG SIZE  rcvd: 118

Host info

97.138.243.162.in-addr.arpa domain name pointer zg-0301d-3.stretchoid.com.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
97.138.243.162.in-addr.arpa	name = zg-0301d-3.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.71.80.130	attackspam	Jun 27 12:16:50 ip-172-31-62-245 sshd\[23052\]: Failed password for ubuntu from 167.71.80.130 port 54156 ssh2\ Jun 27 12:19:25 ip-172-31-62-245 sshd\[23065\]: Invalid user ftp from 167.71.80.130\ Jun 27 12:19:27 ip-172-31-62-245 sshd\[23065\]: Failed password for invalid user ftp from 167.71.80.130 port 45354 ssh2\ Jun 27 12:22:03 ip-172-31-62-245 sshd\[23093\]: Invalid user anthony from 167.71.80.130\ Jun 27 12:22:06 ip-172-31-62-245 sshd\[23093\]: Failed password for invalid user anthony from 167.71.80.130 port 36550 ssh2\	2020-06-27 20:51:25
141.98.81.208	attack	Jun 27 14:22:25 debian64 sshd[5391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.208 Jun 27 14:22:27 debian64 sshd[5391]: Failed password for invalid user Administrator from 141.98.81.208 port 1249 ssh2 ...	2020-06-27 20:31:10
134.175.111.215	attack	Jun 27 14:14:29 eventyay sshd[17749]: Failed password for postgres from 134.175.111.215 port 57830 ssh2 Jun 27 14:18:06 eventyay sshd[17876]: Failed password for root from 134.175.111.215 port 49028 ssh2 Jun 27 14:21:56 eventyay sshd[17947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.111.215 ...	2020-06-27 21:04:02
118.24.158.42	attackspambots	Jun 27 17:49:47 dhoomketu sshd[1076782]: Invalid user mfa from 118.24.158.42 port 45640 Jun 27 17:49:47 dhoomketu sshd[1076782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.158.42 Jun 27 17:49:47 dhoomketu sshd[1076782]: Invalid user mfa from 118.24.158.42 port 45640 Jun 27 17:49:49 dhoomketu sshd[1076782]: Failed password for invalid user mfa from 118.24.158.42 port 45640 ssh2 Jun 27 17:52:05 dhoomketu sshd[1076796]: Invalid user chen from 118.24.158.42 port 43500 ...	2020-06-27 20:52:17
206.189.26.171	attackbots	2020-06-27T14:21:27.961552+02:00 sshd[32191]: Failed password for invalid user edi from 206.189.26.171 port 52964 ssh2	2020-06-27 20:53:05
179.124.34.9	attackspam	Jun 27 08:59:48 firewall sshd[27472]: Failed password for invalid user brody from 179.124.34.9 port 44421 ssh2 Jun 27 09:03:36 firewall sshd[27645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.124.34.9 user=root Jun 27 09:03:38 firewall sshd[27645]: Failed password for root from 179.124.34.9 port 44071 ssh2 ...	2020-06-27 20:20:45
117.50.41.136	attackspambots	Jun 27 12:20:58 onepixel sshd[201274]: Failed password for invalid user rachel from 117.50.41.136 port 46852 ssh2 Jun 27 12:22:23 onepixel sshd[202126]: Invalid user kn from 117.50.41.136 port 60334 Jun 27 12:22:23 onepixel sshd[202126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.41.136 Jun 27 12:22:23 onepixel sshd[202126]: Invalid user kn from 117.50.41.136 port 60334 Jun 27 12:22:24 onepixel sshd[202126]: Failed password for invalid user kn from 117.50.41.136 port 60334 ssh2	2020-06-27 20:35:00
104.140.84.23	attackspam	Jun 22 10:56:14 Host-KEWR-E amavis[6968]: (06968-13) Blocked SPAM {RejectedOutbound}, AM.PDP-SOCK LOCAL [104.140.84.23] [104.140.84.23] <14758-1078-214609-3861-bob=vestibtech.com@mail.lifthair.bid> -> , Queue-ID: DA2F8BA8, Message-ID: , mail_id: ujwkxWHSC6UW, Hits: 22.074, size: 10583, 141437 ms Jun 27 08:22:21 Host-KEWR-E amavis[7328]: (07328-13) Blocked SPAM {RejectedOutbound}, AM.PDP-SOCK LOCAL [104.140.84.23] [104.140.84.23] <15013-74-531682-3931-baganco=vestibtech.com@mail.soniketo.guru> -> , Queue-ID: 013177F9, Message-ID: , mail_id: UxP4_JAWDPsu, Hits: 14.252, size: 15702, 96182 ms ...	2020-06-27 20:36:58
185.220.102.8	attack	Jun 27 13:22:22 cdc sshd[5342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.102.8 user=sshd Jun 27 13:22:24 cdc sshd[5342]: Failed password for invalid user sshd from 185.220.102.8 port 38567 ssh2	2020-06-27 20:34:22
111.229.122.177	attackspam	$f2bV_matches	2020-06-27 20:56:38
138.197.132.143	attackspambots	Jun 27 02:18:40 php1 sshd\[18484\]: Invalid user ubuntu from 138.197.132.143 Jun 27 02:18:40 php1 sshd\[18484\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.132.143 Jun 27 02:18:42 php1 sshd\[18484\]: Failed password for invalid user ubuntu from 138.197.132.143 port 39232 ssh2 Jun 27 02:22:29 php1 sshd\[18741\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.132.143 user=root Jun 27 02:22:31 php1 sshd\[18741\]: Failed password for root from 138.197.132.143 port 39980 ssh2	2020-06-27 20:23:44
138.99.216.112	attackbots	Automatic report - Banned IP Access	2020-06-27 20:39:48
40.76.233.45	attackspambots	$f2bV_matches	2020-06-27 20:25:05
103.126.172.6	attackspambots	Jun 27 13:18:37 ajax sshd[29832]: Failed password for root from 103.126.172.6 port 58936 ssh2	2020-06-27 21:05:12
51.140.64.37	attack	Jun 27 15:12:52 pkdns2 sshd\[61225\]: Invalid user testuser from 51.140.64.37Jun 27 15:12:54 pkdns2 sshd\[61225\]: Failed password for invalid user testuser from 51.140.64.37 port 46392 ssh2Jun 27 15:18:54 pkdns2 sshd\[61586\]: Invalid user testuser from 51.140.64.37Jun 27 15:18:56 pkdns2 sshd\[61586\]: Failed password for invalid user testuser from 51.140.64.37 port 1561 ssh2Jun 27 15:21:58 pkdns2 sshd\[61842\]: Invalid user testuser from 51.140.64.37Jun 27 15:22:00 pkdns2 sshd\[61842\]: Failed password for invalid user testuser from 51.140.64.37 port 11767 ssh2 ...	2020-06-27 20:58:27

Recently Reported IPs

165.233.154.32	185.91.116.213	150.68.230.124	177.76.225.18
220.225.133.166	100.134.112.251	91.191.180.151	148.236.110.191
9.38.243.209	134.209.101.250	194.224.229.234	115.159.106.132
157.122.183.218	82.196.14.222	200.228.86.78	208.100.26.241
154.126.113.158	159.93.83.53	94.191.15.73	28.33.191.89