162.243.139.116

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-02 00:19:06

Comments on same subnet:

IP	Type	Details	Datetime
162.243.139.21	proxy	VPN fraud	2023-02-24 13:44:38
162.243.139.19	proxy	VPN	2023-01-23 14:02:03
162.243.139.98	attack	[Fri Jun 12 03:31:39 2020] - DDoS Attack From IP: 162.243.139.98 Port: 51724	2020-07-16 21:22:30
162.243.139.167	attack	[Sun Jun 14 03:12:01 2020] - DDoS Attack From IP: 162.243.139.167 Port: 58412	2020-07-16 20:56:22
162.243.139.150	attack	[Wed Jun 17 15:34:21 2020] - DDoS Attack From IP: 162.243.139.150 Port: 57028	2020-07-16 20:29:09
162.243.139.246	attack	[Wed Jun 17 21:52:27 2020] - DDoS Attack From IP: 162.243.139.246 Port: 58139	2020-07-16 20:26:41
162.243.139.98	attackspam	[Fri Jun 12 03:31:41 2020] - DDoS Attack From IP: 162.243.139.98 Port: 51724	2020-07-13 03:31:45
162.243.139.167	attackspambots	[Sun Jun 14 03:12:03 2020] - DDoS Attack From IP: 162.243.139.167 Port: 58412	2020-07-13 03:17:58
162.243.139.150	attackbotsspam	[Wed Jun 17 15:34:23 2020] - DDoS Attack From IP: 162.243.139.150 Port: 57028	2020-07-13 03:02:20
162.243.139.246	attackspam	[Wed Jun 17 21:52:29 2020] - DDoS Attack From IP: 162.243.139.246 Port: 58139	2020-07-13 03:00:05
162.243.139.196	attack	[Fri May 22 02:56:34 2020] - DDoS Attack From IP: 162.243.139.196 Port: 39583	2020-07-09 03:49:00
162.243.139.226	attackspam	[Mon May 25 12:06:40 2020] - DDoS Attack From IP: 162.243.139.226 Port: 59688	2020-07-09 03:24:42
162.243.139.40	attackspam	[Thu May 28 02:37:02 2020] - DDoS Attack From IP: 162.243.139.40 Port: 48945	2020-07-09 03:18:45
162.243.139.241	attackbotsspam	[Thu May 28 12:09:43 2020] - DDoS Attack From IP: 162.243.139.241 Port: 46028	2020-07-09 03:12:30
162.243.139.141	attackbots	[Fri May 29 12:54:48 2020] - DDoS Attack From IP: 162.243.139.141 Port: 55461	2020-07-09 02:53:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.139.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50541
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.139.116.		IN	A

;; AUTHORITY SECTION:
.			222	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050101 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 02 00:19:00 CST 2020
;; MSG SIZE  rcvd: 119

Host info

116.139.243.162.in-addr.arpa domain name pointer zg-0428c-352.stretchoid.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
116.139.243.162.in-addr.arpa	name = zg-0428c-352.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.87.178.65	attack	firewall-block, port(s): 23/tcp	2019-08-26 04:49:54
157.230.18.195	attackspam	Brute force SMTP login attempted. ...	2019-08-26 04:19:18
111.121.45.62	attackbotsspam	Aug 25 10:48:53 kapalua sshd\[3322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.121.45.62 user=mysql Aug 25 10:48:55 kapalua sshd\[3322\]: Failed password for mysql from 111.121.45.62 port 8851 ssh2 Aug 25 10:54:04 kapalua sshd\[3816\]: Invalid user fernando from 111.121.45.62 Aug 25 10:54:04 kapalua sshd\[3816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.121.45.62 Aug 25 10:54:06 kapalua sshd\[3816\]: Failed password for invalid user fernando from 111.121.45.62 port 6041 ssh2	2019-08-26 05:01:00
202.169.46.82	attackspambots	Aug 25 15:15:56 aat-srv002 sshd[26906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.169.46.82 Aug 25 15:15:57 aat-srv002 sshd[26906]: Failed password for invalid user 123 from 202.169.46.82 port 57265 ssh2 Aug 25 15:23:37 aat-srv002 sshd[27140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.169.46.82 Aug 25 15:23:39 aat-srv002 sshd[27140]: Failed password for invalid user spike from 202.169.46.82 port 51034 ssh2 ...	2019-08-26 04:44:39
144.217.84.164	attack	Aug 25 19:53:34 MK-Soft-VM5 sshd\[18608\]: Invalid user javed from 144.217.84.164 port 56066 Aug 25 19:53:34 MK-Soft-VM5 sshd\[18608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.84.164 Aug 25 19:53:36 MK-Soft-VM5 sshd\[18608\]: Failed password for invalid user javed from 144.217.84.164 port 56066 ssh2 ...	2019-08-26 04:23:38
50.28.33.173	attackbotsspam	invalid username 'admin'	2019-08-26 04:37:09
131.108.244.132	attack	Attempt to login to email server on SMTP service on 25-08-2019 19:51:28.	2019-08-26 04:19:59
186.4.184.218	attack	Aug 25 22:34:11 vps647732 sshd[24685]: Failed password for root from 186.4.184.218 port 52586 ssh2 ...	2019-08-26 05:02:44
139.198.120.96	attack	Aug 25 20:37:07 hb sshd\[9206\]: Invalid user coffee from 139.198.120.96 Aug 25 20:37:07 hb sshd\[9206\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.120.96 Aug 25 20:37:10 hb sshd\[9206\]: Failed password for invalid user coffee from 139.198.120.96 port 34580 ssh2 Aug 25 20:41:48 hb sshd\[9614\]: Invalid user tmp from 139.198.120.96 Aug 25 20:41:48 hb sshd\[9614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.120.96	2019-08-26 04:56:47
46.161.61.100	attackbotsspam	1.825.468,34-05/04 [bc19/m143] concatform PostRequest-Spammer scoring: Lusaka01	2019-08-26 04:39:13
92.24.11.134	attackspambots	NAME : OPAL-DSL + e-mail abuse : abuse@talktalkplc.com CIDR : 92.24.0.0/14 \| STATUS : 403 {Looking for resource vulnerabilities} DDoS Attack GB - block certain countries :) IP: 92.24.11.134 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-08-26 04:52:50
178.62.108.111	attackbotsspam	Aug 25 21:37:24 debian sshd\[19629\]: Invalid user sun from 178.62.108.111 port 45642 Aug 25 21:37:24 debian sshd\[19629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.108.111 ...	2019-08-26 04:37:33
107.180.111.12	attackspambots	invalid username 'tectus.net'	2019-08-26 04:52:32
206.81.8.171	attackbots	Feb 3 23:32:53 vtv3 sshd\[3833\]: Invalid user mapp from 206.81.8.171 port 58862 Feb 3 23:32:53 vtv3 sshd\[3833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.8.171 Feb 3 23:32:54 vtv3 sshd\[3833\]: Failed password for invalid user mapp from 206.81.8.171 port 58862 ssh2 Feb 3 23:36:55 vtv3 sshd\[5040\]: Invalid user ftptest from 206.81.8.171 port 34532 Feb 3 23:36:55 vtv3 sshd\[5040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.8.171 Feb 15 04:51:13 vtv3 sshd\[30149\]: Invalid user me from 206.81.8.171 port 45946 Feb 15 04:51:13 vtv3 sshd\[30149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.8.171 Feb 15 04:51:16 vtv3 sshd\[30149\]: Failed password for invalid user me from 206.81.8.171 port 45946 ssh2 Feb 15 04:55:50 vtv3 sshd\[31461\]: Invalid user bq from 206.81.8.171 port 36004 Feb 15 04:55:50 vtv3 sshd\[31461\]: pam_unix\(sshd:auth\): authe	2019-08-26 05:01:25
12.180.224.90	attack	Aug 25 10:52:31 php1 sshd\[28477\]: Invalid user sylvia from 12.180.224.90 Aug 25 10:52:31 php1 sshd\[28477\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=12.180.224.90 Aug 25 10:52:32 php1 sshd\[28477\]: Failed password for invalid user sylvia from 12.180.224.90 port 41492 ssh2 Aug 25 10:56:56 php1 sshd\[28880\]: Invalid user vestel from 12.180.224.90 Aug 25 10:56:56 php1 sshd\[28880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=12.180.224.90	2019-08-26 05:03:40

Recently Reported IPs

181.127.5.51	105.11.103.144	160.169.239.81	20.169.207.7
139.227.55.14	64.249.65.10	84.16.116.51	175.131.90.68
97.230.102.199	97.59.124.48	135.53.6.61	102.42.62.77
182.46.131.186	42.118.136.125	73.129.115.185	64.17.160.227
114.211.109.41	138.197.68.228	15.238.192.42	214.186.229.147