JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 143.244.139.49

143.244.139.49 was found in our database!

This IP was reported 8 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇮🇳 India
City	Bashettihalli, Karnataka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 143.244.139.49

Whois 143.244.139.49

IP Abuse Reports for 143.244.139.49:

This IP address has been reported a total of 8 times from 8 distinct sources. 143.244.139.49 was first reported on March 8th 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 rjdefrancisco	2026-03-09 07:09:04 (3 months ago)	Unwanted traffic detected by honeypot on March 08, 2026: port scans (3 port 22 scans), and brute for ... show more Unwanted traffic detected by honeypot on March 08, 2026: port scans (3 port 22 scans), and brute force and hacking attacks (13 over ssh). show less	Port Scan Brute-Force SSH
🇺🇸 MPL	2026-03-08 22:26:48 (3 months ago)	tcp/7000 (3 or more attempts)	Port Scan
🇺🇸 sumnone	2026-03-08 22:17:48 (3 months ago)	Port probing on unauthorized port 8080	Port Scan Hacking Exploited Host
🇺🇸 psh-ack	2026-03-08 19:41:35 (3 months ago)	Go-based SSH brute force: 13 cred pairs (oracle/oracle, postgres/postgres, root/111111, root/123, ro ... show more Go-based SSH brute force: 13 cred pairs (oracle/oracle, postgres/postgres, root/111111, root/123, root/321, root/pass, root/password, root/qwerty, root/root, root/root123, root/root321, user/user, vps/vps). Two cmd sequences, 52 invocations total. Sequence 1: chattr removes immutability flags from bashrc/zshrc files, disabling persistence prevention. Sequence 2: recon via uname (kernel name, version, hostname, arch) and /proc/uptime extraction. Methodical testing combined with immediate file attribute manipulation and recon indicates persistence prep. Flag removal suggests subsequent shell init modification for backdoor access. 15 sessions in 10.5 min window = automated cred stuffing + recon post-auth, typical pre-malware deployment profiling. show less	Brute-Force SSH
🇺🇸 anon333	2026-03-08 19:33:55 (3 months ago)	Hacker syslog review 1772998435	Hacking
🇦🇺 GE	2026-03-08 19:29:07 (3 months ago)	2026-03-09T06:28:13.108112+11:00 smtp.geddy.au sshd-session[292040]: pam_unix(sshd:auth): authentica ... show more 2026-03-09T06:28:13.108112+11:00 smtp.geddy.au sshd-session[292040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.244.139.49 user=root 2026-03-09T06:28:15.163173+11:00 smtp.geddy.au sshd-session[292040]: Failed password for root from 143.244.139.49 port 34440 ssh2 2026-03-09T06:29:04.476544+11:00 smtp.geddy.au sshd-session[292049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.244.139.49 user=root 2026-03-09T06:29:06.185258+11:00 smtp.geddy.au sshd-session[292049]: Failed password for root from 143.244.139.49 port 55126 ssh2 ... show less	SSH
🇺🇸 whitehat AbuseIPDB Official	2026-03-08 19:29:00 (3 months ago)	2026-03-08T19:27:10.927605shield sshd\[24423\]: pam_unix\(sshd:auth\): authentication failure\; logn ... show more 2026-03-08T19:27:10.927605shield sshd\[24423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.244.139.49 user=root 2026-03-08T19:27:13.053700shield sshd\[24423\]: Failed password for root from 143.244.139.49 port 42988 ssh2 2026-03-08T19:28:06.739719shield sshd\[24631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.244.139.49 user=root 2026-03-08T19:28:09.221344shield sshd\[24631\]: Failed password for root from 143.244.139.49 port 46658 ssh2 2026-03-08T19:28:59.790706shield sshd\[24901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.244.139.49 user=root show less	Brute-Force SSH
🇺🇸 [email protected]	2026-03-08 19:27:32 (3 months ago)	Total attacks: 2	Brute-Force SSH

Showing 1 to 8 of 8 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.163.125.245

🇦🇷 186.148.224.219

🇨🇳 182.47.219.203

🇺🇸 147.185.132.142

🇨🇳 124.67.120.106

🇨🇳 115.53.245.107

🇺🇸 95.164.158.247

🇺🇸 95.164.158.41

🇺🇸 95.164.158.36

🇩🇪 206.189.58.5

🇩🇪 203.14.32.130

🇧🇪 198.235.24.178

🇨🇿 195.123.244.73

🇲🇦 160.179.194.138

🇫🇮 147.185.133.1

🇺🇸 95.164.158.233

🇺🇸 95.164.158.196

🇳🇱 45.148.10.62

🇳🇱 45.148.10.15

🇺🇸 44.176.174.76