104.143.83.241

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: SecurityTrails

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	ZGrab Application Layer Scanner	2020-06-12 21:39:38

Comments on same subnet:

IP	Type	Details	Datetime
104.143.83.242	attack	SmallBizIT.US 1 packets to tcp(22)	2020-10-04 06:37:24
104.143.83.242	attackbots	TCP (SYN) 104.143.83.242:39822 -> port 21, len 44	2020-10-03 22:45:17
104.143.83.242	attackbotsspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-03 14:28:36
104.143.83.242	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 91 - port: 80 proto: tcp cat: Misc Attackbytes: 60	2020-09-04 03:49:24
104.143.83.242	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-03 19:24:49
104.143.83.242	attack	" "	2020-09-03 03:52:52
104.143.83.242	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 92 - port: 8443 proto: tcp cat: Misc Attackbytes: 60	2020-09-02 19:33:43
104.143.83.242	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 92 - port: 8008 proto: tcp cat: Misc Attackbytes: 60	2020-08-31 18:33:14
104.143.83.242	attack	TCP (SYN) 104.143.83.242:57839 -> port 2095, len 44	2020-08-22 16:35:38
104.143.83.242	attackbots	Multiport scan : 6 ports scanned 79 80 81 88 106 443(x6)	2020-08-14 05:54:35
104.143.83.242	attackbots	TCP (SYN) 104.143.83.242:33436 -> port 8008, len 44	2020-08-06 07:35:48
104.143.83.242	attackbotsspam	scans 3 times in preceeding hours on the ports (in chronological order) 6000 6001 7070	2020-08-05 20:39:07
104.143.83.242	attackspam	TCP (SYN) 104.143.83.242:33873 -> port 465, len 44	2020-07-27 15:50:17
104.143.83.242	attackspambots	TCP (SYN) 104.143.83.242:41344 -> port 27017, len 44	2020-07-19 20:58:49
104.143.83.242	attackbots	Jul 17 14:25:19 debian-2gb-nbg1-2 kernel: \[17247274.454315\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.143.83.242 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=54321 PROTO=TCP SPT=52603 DPT=110 WINDOW=65535 RES=0x00 SYN URGP=0	2020-07-17 21:35:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.143.83.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36320
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.143.83.241.			IN	A

;; AUTHORITY SECTION:
.			284	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040200 1800 900 604800 86400

;; Query time: 125 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 02 23:43:02 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 241.83.143.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 241.83.143.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.254.191.137	attack	Automatic report - Port Scan Attack	2019-08-09 17:07:44
86.56.81.242	attackbotsspam	2019-08-09T08:41:12.664487hub.schaetter.us sshd\[19426\]: Invalid user wade from 86.56.81.242 2019-08-09T08:41:12.701760hub.schaetter.us sshd\[19426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cable-86-56-81-242.cust.telecolumbus.net 2019-08-09T08:41:13.505489hub.schaetter.us sshd\[19428\]: Invalid user wade from 86.56.81.242 2019-08-09T08:41:13.543188hub.schaetter.us sshd\[19428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cable-86-56-81-242.cust.telecolumbus.net 2019-08-09T08:41:14.608419hub.schaetter.us sshd\[19426\]: Failed password for invalid user wade from 86.56.81.242 port 55943 ssh2 ...	2019-08-09 17:19:57
142.252.249.104	attackspam	NAME : "" "" CIDR : SYN Flood DDoS Attack - block certain countries :) IP: 142.252.249.104 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-08-09 17:08:11
158.174.171.23	attack	Aug 9 10:00:44 www1 sshd\[15226\]: Invalid user pssadmin from 158.174.171.23Aug 9 10:00:47 www1 sshd\[15226\]: Failed password for invalid user pssadmin from 158.174.171.23 port 48676 ssh2Aug 9 10:01:28 www1 sshd\[15260\]: Invalid user csgo from 158.174.171.23Aug 9 10:01:30 www1 sshd\[15260\]: Failed password for invalid user csgo from 158.174.171.23 port 50965 ssh2Aug 9 10:02:08 www1 sshd\[15310\]: Invalid user test1 from 158.174.171.23Aug 9 10:02:10 www1 sshd\[15310\]: Failed password for invalid user test1 from 158.174.171.23 port 52977 ssh2 ...	2019-08-09 17:12:21
49.88.112.65	attack	Aug 9 04:57:44 plusreed sshd[18411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root Aug 9 04:57:46 plusreed sshd[18411]: Failed password for root from 49.88.112.65 port 50942 ssh2 ...	2019-08-09 17:01:45
160.153.147.142	attack	xmlrpc attack	2019-08-09 17:02:59
200.109.233.182	attackspambots	Aug 9 10:16:17 root sshd[12720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.109.233.182 Aug 9 10:16:19 root sshd[12720]: Failed password for invalid user zeus from 200.109.233.182 port 53332 ssh2 Aug 9 10:21:30 root sshd[12755]: Failed password for root from 200.109.233.182 port 52156 ssh2 ...	2019-08-09 17:22:20
157.55.39.6	attack	Automatic report - Banned IP Access	2019-08-09 16:52:41
198.108.66.101	attack	47808/udp 27017/tcp 591/tcp... [2019-06-19/08-09]8pkt,6pt.(tcp),1pt.(udp)	2019-08-09 17:24:36
120.52.152.18	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-09 17:07:04
74.12.189.89	attackspam	9000/tcp [2019-08-09]1pkt	2019-08-09 16:54:35
184.168.200.224	attackspam	xmlrpc attack	2019-08-09 16:57:03
51.75.124.76	attackbots	Aug 9 10:04:50 eventyay sshd[10299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.124.76 Aug 9 10:04:53 eventyay sshd[10299]: Failed password for invalid user sakai from 51.75.124.76 port 57162 ssh2 Aug 9 10:08:51 eventyay sshd[11039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.124.76 ...	2019-08-09 17:41:40
132.148.26.10	attackbotsspam	xmlrpc attack	2019-08-09 17:11:00
85.90.208.125	attackspambots	445/tcp [2019-08-09]1pkt	2019-08-09 16:47:26

Recently Reported IPs

101.80.147.106	195.113.12.8	60.115.217.72	8.143.163.1
46.201.205.222	188.78.169.50	182.93.37.234	169.42.200.20
110.197.242.142	125.180.159.7	44.3.32.197	69.194.34.89
210.22.9.10	140.193.91.127	204.109.26.92	209.184.135.58
198.126.18.98	108.87.218.138	51.213.48.95	67.24.109.80