162.243.139.246

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	[Wed Jun 17 21:52:27 2020] - DDoS Attack From IP: 162.243.139.246 Port: 58139	2020-07-16 20:26:41
attackspam	[Wed Jun 17 21:52:29 2020] - DDoS Attack From IP: 162.243.139.246 Port: 58139	2020-07-13 03:00:05
attack	[Wed Jun 17 21:52:32 2020] - DDoS Attack From IP: 162.243.139.246 Port: 58139	2020-07-08 22:37:05
attack	scans once in preceeding hours on the ports (in chronological order) 9200 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:49:47
attack	From CCTV User Interface Log ...::ffff:162.243.139.246 - - [11/May/2020:12:51:24 +0000] "GET /portal/redlion HTTP/1.1" 404 203 ...	2020-05-12 01:25:26

Comments on same subnet:

IP	Type	Details	Datetime
162.243.139.21	proxy	VPN fraud	2023-02-24 13:44:38
162.243.139.19	proxy	VPN	2023-01-23 14:02:03
162.243.139.98	attack	[Fri Jun 12 03:31:39 2020] - DDoS Attack From IP: 162.243.139.98 Port: 51724	2020-07-16 21:22:30
162.243.139.167	attack	[Sun Jun 14 03:12:01 2020] - DDoS Attack From IP: 162.243.139.167 Port: 58412	2020-07-16 20:56:22
162.243.139.150	attack	[Wed Jun 17 15:34:21 2020] - DDoS Attack From IP: 162.243.139.150 Port: 57028	2020-07-16 20:29:09
162.243.139.98	attackspam	[Fri Jun 12 03:31:41 2020] - DDoS Attack From IP: 162.243.139.98 Port: 51724	2020-07-13 03:31:45
162.243.139.167	attackspambots	[Sun Jun 14 03:12:03 2020] - DDoS Attack From IP: 162.243.139.167 Port: 58412	2020-07-13 03:17:58
162.243.139.150	attackbotsspam	[Wed Jun 17 15:34:23 2020] - DDoS Attack From IP: 162.243.139.150 Port: 57028	2020-07-13 03:02:20
162.243.139.196	attack	[Fri May 22 02:56:34 2020] - DDoS Attack From IP: 162.243.139.196 Port: 39583	2020-07-09 03:49:00
162.243.139.226	attackspam	[Mon May 25 12:06:40 2020] - DDoS Attack From IP: 162.243.139.226 Port: 59688	2020-07-09 03:24:42
162.243.139.40	attackspam	[Thu May 28 02:37:02 2020] - DDoS Attack From IP: 162.243.139.40 Port: 48945	2020-07-09 03:18:45
162.243.139.241	attackbotsspam	[Thu May 28 12:09:43 2020] - DDoS Attack From IP: 162.243.139.241 Port: 46028	2020-07-09 03:12:30
162.243.139.141	attackbots	[Fri May 29 12:54:48 2020] - DDoS Attack From IP: 162.243.139.141 Port: 55461	2020-07-09 02:53:20
162.243.139.192	attackspambots	[Sun May 31 03:23:04 2020] - DDoS Attack From IP: 162.243.139.192 Port: 37847	2020-07-09 02:19:54
162.243.139.215	attackspam	[Sun May 31 07:21:00 2020] - DDoS Attack From IP: 162.243.139.215 Port: 60515	2020-07-09 02:14:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.139.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3352
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.139.246.		IN	A

;; AUTHORITY SECTION:
.			342	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051101 1800 900 604800 86400

;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 12 01:25:18 CST 2020
;; MSG SIZE  rcvd: 119

Host info

246.139.243.162.in-addr.arpa domain name pointer zg-0428c-395.stretchoid.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
246.139.243.162.in-addr.arpa	name = zg-0428c-395.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.95.137.19	attackbots	May 11 22:04:55 server1 sshd\[27027\]: Invalid user ubnt from 212.95.137.19 May 11 22:04:55 server1 sshd\[27027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.19 May 11 22:04:56 server1 sshd\[27027\]: Failed password for invalid user ubnt from 212.95.137.19 port 55024 ssh2 May 11 22:09:59 server1 sshd\[28565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.19 user=root May 11 22:10:01 server1 sshd\[28565\]: Failed password for root from 212.95.137.19 port 35356 ssh2 ...	2020-05-12 13:08:33
111.67.195.129	attack	2020-05-12T00:49:11.5492221495-001 sshd[5378]: Invalid user user from 111.67.195.129 port 43864 2020-05-12T00:49:13.5911651495-001 sshd[5378]: Failed password for invalid user user from 111.67.195.129 port 43864 ssh2 2020-05-12T00:53:39.0469321495-001 sshd[5611]: Invalid user echo from 111.67.195.129 port 37506 2020-05-12T00:53:39.0500311495-001 sshd[5611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.195.129 2020-05-12T00:53:39.0469321495-001 sshd[5611]: Invalid user echo from 111.67.195.129 port 37506 2020-05-12T00:53:41.2134801495-001 sshd[5611]: Failed password for invalid user echo from 111.67.195.129 port 37506 ssh2 ...	2020-05-12 13:24:44
41.76.169.43	attackspam	Invalid user test from 41.76.169.43 port 39706	2020-05-12 13:20:59
51.15.214.21	attackspam	May 12 01:13:20 NPSTNNYC01T sshd[12383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.214.21 May 12 01:13:23 NPSTNNYC01T sshd[12383]: Failed password for invalid user trial from 51.15.214.21 port 50288 ssh2 May 12 01:17:28 NPSTNNYC01T sshd[12745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.214.21 ...	2020-05-12 13:19:34
111.231.87.245	attackspambots	Invalid user derek from 111.231.87.245 port 49242	2020-05-12 13:46:43
118.96.152.166	attack	May 12 05:53:55 ArkNodeAT sshd\[13312\]: Invalid user support from 118.96.152.166 May 12 05:53:55 ArkNodeAT sshd\[13312\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.96.152.166 May 12 05:53:57 ArkNodeAT sshd\[13312\]: Failed password for invalid user support from 118.96.152.166 port 58346 ssh2	2020-05-12 13:19:14
119.18.194.130	attackbots	Invalid user deploy from 119.18.194.130 port 53814	2020-05-12 13:29:22
112.85.42.176	attackbotsspam	May 12 07:02:36 vps sshd[950679]: Failed password for root from 112.85.42.176 port 26435 ssh2 May 12 07:02:39 vps sshd[950679]: Failed password for root from 112.85.42.176 port 26435 ssh2 May 12 07:02:43 vps sshd[950679]: Failed password for root from 112.85.42.176 port 26435 ssh2 May 12 07:02:46 vps sshd[950679]: Failed password for root from 112.85.42.176 port 26435 ssh2 May 12 07:02:50 vps sshd[950679]: Failed password for root from 112.85.42.176 port 26435 ssh2 ...	2020-05-12 13:03:38
122.51.18.119	attackbotsspam	May 12 07:18:23 lukav-desktop sshd\[21520\]: Invalid user hoster from 122.51.18.119 May 12 07:18:23 lukav-desktop sshd\[21520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.18.119 May 12 07:18:25 lukav-desktop sshd\[21520\]: Failed password for invalid user hoster from 122.51.18.119 port 39112 ssh2 May 12 07:22:19 lukav-desktop sshd\[21648\]: Invalid user vnstat from 122.51.18.119 May 12 07:22:19 lukav-desktop sshd\[21648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.18.119	2020-05-12 13:28:39
116.196.105.232	attackspambots	2020-05-12T05:51:06.615157v22018076590370373 sshd[2379]: Failed password for invalid user test from 116.196.105.232 port 60024 ssh2 2020-05-12T05:53:59.823785v22018076590370373 sshd[1661]: Invalid user admin from 116.196.105.232 port 36328 2020-05-12T05:53:59.830335v22018076590370373 sshd[1661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.105.232 2020-05-12T05:53:59.823785v22018076590370373 sshd[1661]: Invalid user admin from 116.196.105.232 port 36328 2020-05-12T05:54:02.191223v22018076590370373 sshd[1661]: Failed password for invalid user admin from 116.196.105.232 port 36328 ssh2 ...	2020-05-12 13:27:49
35.200.180.182	attack	35.200.180.182 - - \[12/May/2020:05:54:08 +0200\] "POST /wp-login.php HTTP/1.0" 200 2797 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 35.200.180.182 - - \[12/May/2020:05:54:12 +0200\] "POST /wp-login.php HTTP/1.0" 200 2727 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 35.200.180.182 - - \[12/May/2020:05:54:17 +0200\] "POST /wp-login.php HTTP/1.0" 200 2764 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-05-12 13:11:25
152.67.7.117	attackspam	May 12 07:02:23 mout sshd[28013]: Invalid user abc from 152.67.7.117 port 22954	2020-05-12 13:13:51
175.24.36.114	attackspam	May 12 07:05:10 legacy sshd[31171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.36.114 May 12 07:05:12 legacy sshd[31171]: Failed password for invalid user usrdata from 175.24.36.114 port 35394 ssh2 May 12 07:10:43 legacy sshd[31425]: Failed password for root from 175.24.36.114 port 35930 ssh2 ...	2020-05-12 13:26:11
183.234.36.42	attackspam	Dovecot Invalid User Login Attempt.	2020-05-12 13:28:08
159.138.129.228	attackbots	2020-05-12T03:51:32.372972randservbullet-proofcloud-66.localdomain sshd[359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.138.129.228 user=root 2020-05-12T03:51:34.888256randservbullet-proofcloud-66.localdomain sshd[359]: Failed password for root from 159.138.129.228 port 47462 ssh2 2020-05-12T03:53:35.322282randservbullet-proofcloud-66.localdomain sshd[562]: Invalid user hadoop from 159.138.129.228 port 32277 ...	2020-05-12 13:50:11

Recently Reported IPs

36.79.255.188	134.209.242.224	46.242.61.39	20.204.220.104
221.149.8.48	174.138.40.149	85.198.161.15	124.156.55.244
59.27.78.16	202.146.220.65	69.61.59.203	123.231.223.18
3.113.7.106	128.199.158.68	171.246.84.140	61.0.251.12
66.183.37.184	165.22.234.212	146.30.232.192	92.173.251.245