162.243.143.139

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-02 00:43:40

Comments on same subnet:

IP	Type	Details	Datetime
162.243.143.84	attack	[Thu Jun 18 03:36:39 2020] - DDoS Attack From IP: 162.243.143.84 Port: 45912	2020-07-16 20:23:56
162.243.143.84	attackspam	[Thu Jun 18 03:36:41 2020] - DDoS Attack From IP: 162.243.143.84 Port: 45912	2020-07-13 02:57:37
162.243.143.93	attack	SASL LOGIN authentication failed: authentication failure	2020-06-22 16:54:50
162.243.143.28	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 8088 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:45:29
162.243.143.71	attackbots	scans once in preceeding hours on the ports (in chronological order) 7777 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:45:11
162.243.143.188	attackspam	scans once in preceeding hours on the ports (in chronological order) 7443 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:44:46
162.243.143.234	attackbots	scans once in preceeding hours on the ports (in chronological order) 2000 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:44:29
162.243.143.71	attack	110/tcp 8081/tcp 5351/udp... [2020-05-05/06-19]30pkt,27pt.(tcp),1pt.(udp)	2020-06-20 06:31:42
162.243.143.193	attack	" "	2020-06-17 19:09:57
162.243.143.79	attack	Port scan denied	2020-06-17 14:46:54
162.243.143.71	attackspam	404 NOT FOUND	2020-06-17 13:47:21
162.243.143.225	attackspam	162.243.143.225 - - \[17/Jun/2020:05:55:53 +0200\] "GET /owa/auth/logon.aspx\?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 404 162 "-" "Mozilla/5.0 zgrab/0.x" ...	2020-06-17 13:14:29
162.243.143.243	attack	Scanned 237 unique addresses for 4 unique ports in 24 hours (ports 264,993,8998,47808)	2020-06-16 03:20:15
162.243.143.142	attackspambots	TCP (SYN) 162.243.143.142:42307 -> port 21, len 40	2020-06-16 01:31:07
162.243.143.92	attackspambots	15-6-2020 00:51:22 Unauthorized connection attempt (Brute-Force). 15-6-2020 00:51:22 Connection from IP address: 162.243.143.92 on port: 993 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=162.243.143.92	2020-06-15 19:24:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.143.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38120
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.143.139.		IN	A

;; AUTHORITY SECTION:
.			525	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050101 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 02 00:43:36 CST 2020
;; MSG SIZE  rcvd: 119

Host info

139.143.243.162.in-addr.arpa domain name pointer zg-0428c-570.stretchoid.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.143.243.162.in-addr.arpa	name = zg-0428c-570.stretchoid.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
64.225.64.215	attackbots	Jun 7 07:21:33 PorscheCustomer sshd[30486]: Failed password for root from 64.225.64.215 port 49522 ssh2 Jun 7 07:24:29 PorscheCustomer sshd[30574]: Failed password for root from 64.225.64.215 port 46084 ssh2 ...	2020-06-07 13:27:42
140.213.54.234	attackbotsspam	1591502250 - 06/07/2020 05:57:30 Host: 140.213.54.234/140.213.54.234 Port: 445 TCP Blocked	2020-06-07 13:24:41
185.103.245.18	attack	Automatic report - Port Scan Attack	2020-06-07 13:01:31
122.51.125.71	attackbotsspam	(sshd) Failed SSH login from 122.51.125.71 (CN/China/-): 5 in the last 3600 secs	2020-06-07 12:51:57
36.7.159.235	attackspambots	DATE:2020-06-07 05:58:12, IP:36.7.159.235, PORT:ssh SSH brute force auth (docker-dc)	2020-06-07 12:55:22
14.142.143.138	attack	Jun 6 18:49:53 eddieflores sshd\[17703\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 user=root Jun 6 18:49:56 eddieflores sshd\[17703\]: Failed password for root from 14.142.143.138 port 56958 ssh2 Jun 6 18:52:17 eddieflores sshd\[17869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 user=root Jun 6 18:52:19 eddieflores sshd\[17869\]: Failed password for root from 14.142.143.138 port 37984 ssh2 Jun 6 18:54:45 eddieflores sshd\[18012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 user=root	2020-06-07 13:17:38
106.12.15.230	attackbotsspam	Jun 7 06:48:46 jane sshd[6947]: Failed password for root from 106.12.15.230 port 39334 ssh2 ...	2020-06-07 13:21:41
118.69.186.104	attackspambots	Unauthorised access (Jun 7) SRC=118.69.186.104 LEN=52 TTL=110 ID=5443 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-07 13:10:34
192.3.255.139	attackbots	Jun 7 10:14:58 gw1 sshd[26018]: Failed password for root from 192.3.255.139 port 42166 ssh2 ...	2020-06-07 13:19:14
51.89.64.18	attack	MYH,DEF POST /downloader/	2020-06-07 12:55:37
106.12.89.173	attack	Jun 7 05:52:58 amit sshd\[12965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.173 user=root Jun 7 05:52:59 amit sshd\[12965\]: Failed password for root from 106.12.89.173 port 39998 ssh2 Jun 7 05:57:48 amit sshd\[13030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.173 user=root ...	2020-06-07 13:08:45
62.234.94.202	attackspambots	Jun 7 06:36:54 localhost sshd\[10884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.94.202 user=root Jun 7 06:36:56 localhost sshd\[10884\]: Failed password for root from 62.234.94.202 port 59588 ssh2 Jun 7 06:42:00 localhost sshd\[11147\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.94.202 user=root Jun 7 06:42:03 localhost sshd\[11147\]: Failed password for root from 62.234.94.202 port 59378 ssh2 Jun 7 06:46:38 localhost sshd\[11442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.94.202 user=root ...	2020-06-07 12:47:00
46.38.145.253	attack	Jun 7 06:44:39 relay postfix/smtpd\[22650\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 7 06:44:58 relay postfix/smtpd\[4386\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 7 06:46:12 relay postfix/smtpd\[21924\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 7 06:46:28 relay postfix/smtpd\[27791\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 7 06:47:49 relay postfix/smtpd\[22650\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-07 12:53:43
175.6.35.140	attack	Jun 7 05:54:58 [host] sshd[20452]: pam_unix(sshd: Jun 7 05:55:00 [host] sshd[20452]: Failed passwor Jun 7 05:58:21 [host] sshd[20658]: pam_unix(sshd:	2020-06-07 12:48:57
2.177.143.97	attackbotsspam	DATE:2020-06-07 05:57:41, IP:2.177.143.97, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-06-07 13:14:51

Recently Reported IPs

229.196.21.118	109.42.1.170	204.188.134.41	166.158.168.163
111.23.94.55	7.138.209.251	214.78.137.46	190.114.205.4
191.26.229.150	232.217.53.216	39.70.46.233	158.214.91.181
52.44.154.245	27.176.234.209	146.120.85.68	57.133.200.225
94.102.49.117	90.133.81.205	209.69.216.12	83.73.25.67