162.243.99.164

Basic Info

City: New York

Region: New York

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	repeated SSH login attempts	2020-10-07 01:40:29
attackbots	SSH login attempts.	2020-10-06 17:34:06
attack	SSH Invalid Login	2020-10-04 08:06:20
attackspam	Oct 3 11:41:26 ns382633 sshd\[28014\]: Invalid user postgres from 162.243.99.164 port 32913 Oct 3 11:41:26 ns382633 sshd\[28014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 Oct 3 11:41:28 ns382633 sshd\[28014\]: Failed password for invalid user postgres from 162.243.99.164 port 32913 ssh2 Oct 3 11:56:10 ns382633 sshd\[29649\]: Invalid user postgres from 162.243.99.164 port 41516 Oct 3 11:56:10 ns382633 sshd\[29649\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164	2020-10-04 00:29:56
attack	Oct 3 10:10:44 vps647732 sshd[16463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 Oct 3 10:10:45 vps647732 sshd[16463]: Failed password for invalid user test2 from 162.243.99.164 port 57727 ssh2 ...	2020-10-03 16:18:28
attackspam	SSH login attempts.	2020-09-29 04:10:55
attack	Failed password for invalid user anirudh from 162.243.99.164 port 60803 ssh2	2020-09-28 12:30:33
attack	Failed password for invalid user wyd from 162.243.99.164 port 47318 ssh2	2020-08-20 01:02:17
attackspam	SSH Brute Force	2020-08-15 15:37:19
attackspambots	Aug 14 08:37:14 hidden sshd[19181]: Failed password for hidden from 162.243.99.164 port 47804 ssh2 Aug 14 08:47:00 hidden sshd[20871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 user=root Aug 14 08:47:02 hidden sshd[20871]: Failed password for hidden from 162.243.99.164 port 53390 ssh2	2020-08-14 18:32:37
attack	Jul 18 00:02:13 haigwepa sshd[11241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 Jul 18 00:02:15 haigwepa sshd[11241]: Failed password for invalid user apache from 162.243.99.164 port 51980 ssh2 ...	2020-07-18 08:38:48
attackbotsspam	Invalid user goz from 162.243.99.164 port 34529	2020-07-17 15:22:51
attackbots	Jul 16 15:25:40 ns392434 sshd[27206]: Invalid user james from 162.243.99.164 port 37619 Jul 16 15:25:40 ns392434 sshd[27206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 Jul 16 15:25:40 ns392434 sshd[27206]: Invalid user james from 162.243.99.164 port 37619 Jul 16 15:25:42 ns392434 sshd[27206]: Failed password for invalid user james from 162.243.99.164 port 37619 ssh2 Jul 16 15:38:27 ns392434 sshd[27367]: Invalid user vc from 162.243.99.164 port 49296 Jul 16 15:38:27 ns392434 sshd[27367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 Jul 16 15:38:27 ns392434 sshd[27367]: Invalid user vc from 162.243.99.164 port 49296 Jul 16 15:38:28 ns392434 sshd[27367]: Failed password for invalid user vc from 162.243.99.164 port 49296 ssh2 Jul 16 15:47:58 ns392434 sshd[27536]: Invalid user godfrey from 162.243.99.164 port 56129	2020-07-17 00:15:14
attackspam	Jul 12 16:31:04 django-0 sshd[21316]: Invalid user wilson from 162.243.99.164 Jul 12 16:31:05 django-0 sshd[21316]: Failed password for invalid user wilson from 162.243.99.164 port 50206 ssh2 Jul 12 16:40:00 django-0 sshd[21414]: Invalid user localhost from 162.243.99.164 ...	2020-07-13 00:46:26
attackspam	$f2bV_matches	2020-06-23 03:12:53
attackspam	SSH Brute Force	2020-06-09 14:32:53
attackspam	Invalid user admin from 162.243.99.164 port 39508	2020-04-23 21:17:15
attackbotsspam	Apr 22 10:05:00 gw1 sshd[17927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 Apr 22 10:05:01 gw1 sshd[17927]: Failed password for invalid user rl from 162.243.99.164 port 47747 ssh2 ...	2020-04-22 13:38:29
attackspambots	Apr 20 22:03:36 minden010 sshd[27991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 Apr 20 22:03:38 minden010 sshd[27991]: Failed password for invalid user admin from 162.243.99.164 port 44249 ssh2 Apr 20 22:09:49 minden010 sshd[30202]: Failed password for mysql from 162.243.99.164 port 53311 ssh2 ...	2020-04-21 04:16:53
attackspambots	2020-04-07T05:31:46.186043ionos.janbro.de sshd[71643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 2020-04-07T05:31:46.088940ionos.janbro.de sshd[71643]: Invalid user user from 162.243.99.164 port 35470 2020-04-07T05:31:48.124332ionos.janbro.de sshd[71643]: Failed password for invalid user user from 162.243.99.164 port 35470 ssh2 2020-04-07T05:37:15.063882ionos.janbro.de sshd[71646]: Invalid user ubuntu from 162.243.99.164 port 41148 2020-04-07T05:37:15.269772ionos.janbro.de sshd[71646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 2020-04-07T05:37:15.063882ionos.janbro.de sshd[71646]: Invalid user ubuntu from 162.243.99.164 port 41148 2020-04-07T05:37:16.715948ionos.janbro.de sshd[71646]: Failed password for invalid user ubuntu from 162.243.99.164 port 41148 ssh2 2020-04-07T05:42:50.984721ionos.janbro.de sshd[71664]: pam_unix(sshd:auth): authentication failure; logname= ...	2020-04-07 16:51:25
attack	Invalid user zl from 162.243.99.164 port 59599	2020-03-25 08:54:23
attackspam	Mar 8 13:16:54 *** sshd[6570]: User root from 162.243.99.164 not allowed because not listed in AllowUsers	2020-03-09 00:43:58
attackbots	DATE:2020-03-05 19:27:42, IP:162.243.99.164, PORT:ssh SSH brute force auth (docker-dc)	2020-03-06 03:58:27
attack	Feb 29 07:42:06 plusreed sshd[18875]: Invalid user divya from 162.243.99.164 ...	2020-02-29 21:01:44
attack	20 attempts against mh-ssh on echoip	2020-02-29 05:16:01
attackspam	Feb 15 17:54:33 MK-Soft-VM3 sshd[20948]: Failed password for root from 162.243.99.164 port 54677 ssh2 Feb 15 17:58:03 MK-Soft-VM3 sshd[21131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 ...	2020-02-16 03:23:13
attackbots	Jan 16 06:09:43 meumeu sshd[18430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 Jan 16 06:09:46 meumeu sshd[18430]: Failed password for invalid user dis from 162.243.99.164 port 48972 ssh2 Jan 16 06:18:18 meumeu sshd[19675]: Failed password for root from 162.243.99.164 port 46435 ssh2 ...	2020-01-16 13:39:14
attackbotsspam	Unauthorized connection attempt detected from IP address 162.243.99.164 to port 2220 [J]	2020-01-06 08:21:48
attackbots	Unauthorized connection attempt detected from IP address 162.243.99.164 to port 2220 [J]	2020-01-05 17:41:07
attackspambots	Dec 25 08:00:41 markkoudstaal sshd[8975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 Dec 25 08:00:43 markkoudstaal sshd[8975]: Failed password for invalid user MELSEC from 162.243.99.164 port 40762 ssh2 Dec 25 08:03:45 markkoudstaal sshd[9205]: Failed password for root from 162.243.99.164 port 56496 ssh2	2019-12-25 15:08:16

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.99.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60500
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.99.164.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040402 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 05 09:33:37 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 164.99.243.162.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 164.99.243.162.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.161.67.88	attack	Attempted Brute Force (dovecot)	2020-09-18 01:40:35
46.238.197.12	attack	smtp probe/invalid login attempt	2020-09-18 01:41:21
177.154.230.53	attack	Brute force attempt	2020-09-18 01:33:02
220.248.95.178	attack	SSH Brute-Force reported by Fail2Ban	2020-09-18 01:23:26
181.114.211.83	attackspambots	smtp probe/invalid login attempt	2020-09-18 01:48:24
51.89.42.8	attack	Fail2Ban Ban Triggered	2020-09-18 01:18:42
189.90.254.156	attackspambots	Sep 16 18:49:26 mail.srvfarm.net postfix/smtpd[3601023]: warning: ip-189-90-254-156.isp.valenet.com.br[189.90.254.156]: SASL PLAIN authentication failed: Sep 16 18:49:27 mail.srvfarm.net postfix/smtpd[3601023]: lost connection after AUTH from ip-189-90-254-156.isp.valenet.com.br[189.90.254.156] Sep 16 18:51:11 mail.srvfarm.net postfix/smtpd[3603883]: warning: ip-189-90-254-156.isp.valenet.com.br[189.90.254.156]: SASL PLAIN authentication failed: Sep 16 18:51:11 mail.srvfarm.net postfix/smtpd[3603883]: lost connection after AUTH from ip-189-90-254-156.isp.valenet.com.br[189.90.254.156] Sep 16 18:52:44 mail.srvfarm.net postfix/smtpd[3603173]: warning: ip-189-90-254-156.isp.valenet.com.br[189.90.254.156]: SASL PLAIN authentication failed:	2020-09-18 01:29:47
170.80.41.167	attack	Sep 16 18:25:45 mail.srvfarm.net postfix/smtps/smtpd[3588326]: warning: unknown[170.80.41.167]: SASL PLAIN authentication failed: Sep 16 18:25:45 mail.srvfarm.net postfix/smtps/smtpd[3588326]: lost connection after AUTH from unknown[170.80.41.167] Sep 16 18:26:15 mail.srvfarm.net postfix/smtpd[3600860]: warning: unknown[170.80.41.167]: SASL PLAIN authentication failed: Sep 16 18:26:16 mail.srvfarm.net postfix/smtpd[3600860]: lost connection after AUTH from unknown[170.80.41.167] Sep 16 18:35:33 mail.srvfarm.net postfix/smtpd[3603173]: warning: unknown[170.80.41.167]: SASL PLAIN authentication failed:	2020-09-18 01:33:47
58.208.84.93	attackspambots	Invalid user testing from 58.208.84.93 port 40728	2020-09-18 01:13:13
114.67.110.58	attack	Automatic Fail2ban report - Trying login SSH	2020-09-18 01:24:23
191.240.116.173	attackspam	Sep 16 18:34:08 mail.srvfarm.net postfix/smtps/smtpd[3603058]: warning: unknown[191.240.116.173]: SASL PLAIN authentication failed: Sep 16 18:34:08 mail.srvfarm.net postfix/smtps/smtpd[3603058]: lost connection after AUTH from unknown[191.240.116.173] Sep 16 18:37:32 mail.srvfarm.net postfix/smtpd[3601767]: warning: unknown[191.240.116.173]: SASL PLAIN authentication failed: Sep 16 18:37:32 mail.srvfarm.net postfix/smtpd[3601767]: lost connection after AUTH from unknown[191.240.116.173] Sep 16 18:41:09 mail.srvfarm.net postfix/smtps/smtpd[3605274]: warning: unknown[191.240.116.173]: SASL PLAIN authentication failed:	2020-09-18 01:28:44
222.186.175.216	attackbotsspam	2020-09-17T20:20:06.628671afi-git.jinr.ru sshd[20347]: Failed password for root from 222.186.175.216 port 54674 ssh2 2020-09-17T20:20:11.421393afi-git.jinr.ru sshd[20347]: Failed password for root from 222.186.175.216 port 54674 ssh2 2020-09-17T20:20:14.714834afi-git.jinr.ru sshd[20347]: Failed password for root from 222.186.175.216 port 54674 ssh2 2020-09-17T20:20:14.714957afi-git.jinr.ru sshd[20347]: error: maximum authentication attempts exceeded for root from 222.186.175.216 port 54674 ssh2 [preauth] 2020-09-17T20:20:14.714972afi-git.jinr.ru sshd[20347]: Disconnecting: Too many authentication failures [preauth] ...	2020-09-18 01:20:47
148.203.151.248	attack	Sep 17 18:47:29 mail.srvfarm.net postfix/smtpd[163451]: NOQUEUE: reject: RCPT from mailrelay5.vw.com.mx[148.203.151.248]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 17 18:47:30 mail.srvfarm.net postfix/smtpd[163451]: NOQUEUE: reject: RCPT from mailrelay5.vw.com.mx[148.203.151.248]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 17 18:47:31 mail.srvfarm.net postfix/smtpd[163451]: NOQUEUE: reject: RCPT from mailrelay5.vw.com.mx[148.203.151.248]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 17 18:47:32 mail.srvfarm.net postfix/smtpd[163451]: NOQUEUE: reject:	2020-09-18 01:50:35
181.174.144.213	attackbots	Sep 16 18:36:09 mail.srvfarm.net postfix/smtps/smtpd[3598103]: warning: unknown[181.174.144.213]: SASL PLAIN authentication failed: Sep 16 18:36:10 mail.srvfarm.net postfix/smtps/smtpd[3598103]: lost connection after AUTH from unknown[181.174.144.213] Sep 16 18:38:55 mail.srvfarm.net postfix/smtpd[3601023]: warning: unknown[181.174.144.213]: SASL PLAIN authentication failed: Sep 16 18:38:56 mail.srvfarm.net postfix/smtpd[3601023]: lost connection after AUTH from unknown[181.174.144.213] Sep 16 18:39:39 mail.srvfarm.net postfix/smtps/smtpd[3600149]: warning: unknown[181.174.144.213]: SASL PLAIN authentication failed:	2020-09-18 01:31:39
103.58.65.181	attackbotsspam	Sep 17 10:17:03 mail.srvfarm.net postfix/smtps/smtpd[4150001]: warning: unknown[103.58.65.181]: SASL PLAIN authentication failed: Sep 17 10:17:04 mail.srvfarm.net postfix/smtps/smtpd[4150001]: lost connection after AUTH from unknown[103.58.65.181] Sep 17 10:17:08 mail.srvfarm.net postfix/smtpd[4138017]: warning: unknown[103.58.65.181]: SASL PLAIN authentication failed: Sep 17 10:17:10 mail.srvfarm.net postfix/smtpd[4138017]: lost connection after AUTH from unknown[103.58.65.181] Sep 17 10:19:08 mail.srvfarm.net postfix/smtps/smtpd[4147027]: warning: unknown[103.58.65.181]: SASL PLAIN authentication failed:	2020-09-18 01:36:47

Recently Reported IPs

176.123.220.57	169.0.238.232	85.100.17.242	195.9.118.110
192.3.157.84	113.160.86.198	222.154.228.183	151.80.152.189
210.5.13.35	193.70.109.193	186.24.43.28	171.97.100.77
187.174.216.212	186.5.221.105	202.138.247.147	198.199.106.97
198.108.66.53	187.123.107.42	223.39.149.106	52.83.214.230