104.243.25.148

Basic Info

City: Los Angeles

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.243.25.75	attackspam	Oct 1 17:22:45 h2865660 sshd[22388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.25.75 user=root Oct 1 17:22:47 h2865660 sshd[22388]: Failed password for root from 104.243.25.75 port 52064 ssh2 Oct 1 17:37:06 h2865660 sshd[22888]: Invalid user marissa from 104.243.25.75 port 55532 Oct 1 17:37:06 h2865660 sshd[22888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.25.75 Oct 1 17:37:06 h2865660 sshd[22888]: Invalid user marissa from 104.243.25.75 port 55532 Oct 1 17:37:08 h2865660 sshd[22888]: Failed password for invalid user marissa from 104.243.25.75 port 55532 ssh2 ...	2020-10-02 00:59:23
104.243.25.75	attack	(sshd) Failed SSH login from 104.243.25.75 (US/United States/104.243.25.75.16clouds.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 1 03:48:43 server sshd[27360]: Invalid user user from 104.243.25.75 port 41064 Oct 1 03:48:45 server sshd[27360]: Failed password for invalid user user from 104.243.25.75 port 41064 ssh2 Oct 1 04:33:41 server sshd[8113]: Invalid user postgres from 104.243.25.75 port 52276 Oct 1 04:33:43 server sshd[8113]: Failed password for invalid user postgres from 104.243.25.75 port 52276 ssh2 Oct 1 04:48:06 server sshd[11923]: Failed password for root from 104.243.25.75 port 56026 ssh2	2020-10-01 17:06:18
104.243.25.75	attackbotsspam	(sshd) Failed SSH login from 104.243.25.75 (US/United States/104.243.25.75.16clouds.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 14 08:46:06 amsweb01 sshd[17733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.25.75 user=root Sep 14 08:46:08 amsweb01 sshd[17733]: Failed password for root from 104.243.25.75 port 54518 ssh2 Sep 14 09:01:18 amsweb01 sshd[19799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.25.75 user=root Sep 14 09:01:20 amsweb01 sshd[19799]: Failed password for root from 104.243.25.75 port 59430 ssh2 Sep 14 09:13:29 amsweb01 sshd[21536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.25.75 user=root	2020-09-14 15:39:43
104.243.25.75	attackbotsspam	2020-09-13T10:55:18.579980linuxbox-skyline sshd[50062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.25.75 user=root 2020-09-13T10:55:20.294118linuxbox-skyline sshd[50062]: Failed password for root from 104.243.25.75 port 39132 ssh2 ...	2020-09-14 07:34:04
104.243.25.75	attackbotsspam	Time: Fri Aug 28 17:03:35 2020 +0000 IP: 104.243.25.75 (US/United States/104.243.25.75.16clouds.com) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 28 16:45:48 pv-14-ams2 sshd[8932]: Invalid user admin from 104.243.25.75 port 45476 Aug 28 16:45:50 pv-14-ams2 sshd[8932]: Failed password for invalid user admin from 104.243.25.75 port 45476 ssh2 Aug 28 16:57:07 pv-14-ams2 sshd[14392]: Invalid user jonas from 104.243.25.75 port 48870 Aug 28 16:57:09 pv-14-ams2 sshd[14392]: Failed password for invalid user jonas from 104.243.25.75 port 48870 ssh2 Aug 28 17:03:31 pv-14-ams2 sshd[3329]: Invalid user mapred from 104.243.25.75 port 44684	2020-08-29 01:26:42
104.243.25.75	attack	Invalid user hermes from 104.243.25.75 port 59326	2020-08-22 13:20:16
104.243.25.75	attackspambots	Aug 9 18:03:05 ns382633 sshd\[20272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.25.75 user=root Aug 9 18:03:06 ns382633 sshd\[20272\]: Failed password for root from 104.243.25.75 port 59696 ssh2 Aug 9 18:19:27 ns382633 sshd\[23147\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.25.75 user=root Aug 9 18:19:29 ns382633 sshd\[23147\]: Failed password for root from 104.243.25.75 port 34064 ssh2 Aug 9 18:51:03 ns382633 sshd\[29479\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.25.75 user=root	2020-08-10 01:03:25
104.243.25.75	attackbots	Aug 5 05:48:21 buvik sshd[8895]: Failed password for root from 104.243.25.75 port 55608 ssh2 Aug 5 05:56:45 buvik sshd[10181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.243.25.75 user=root Aug 5 05:56:47 buvik sshd[10181]: Failed password for root from 104.243.25.75 port 59250 ssh2 ...	2020-08-05 12:14:46
104.243.25.75	attack	Aug 3 09:42:03 ns sshd[17065]: Connection from 104.243.25.75 port 33118 on 134.119.36.27 port 22 Aug 3 09:42:05 ns sshd[17065]: User r.r from 104.243.25.75 not allowed because not listed in AllowUsers Aug 3 09:42:05 ns sshd[17065]: Failed password for invalid user r.r from 104.243.25.75 port 33118 ssh2 Aug 3 09:42:05 ns sshd[17065]: Received disconnect from 104.243.25.75 port 33118:11: Bye Bye [preauth] Aug 3 09:42:05 ns sshd[17065]: Disconnected from 104.243.25.75 port 33118 [preauth] Aug 3 10:08:02 ns sshd[1110]: Connection from 104.243.25.75 port 58222 on 134.119.36.27 port 22 Aug 3 10:08:28 ns sshd[1110]: Connection closed by 104.243.25.75 port 58222 [preauth] Aug 3 10:20:46 ns sshd[24354]: Connection from 104.243.25.75 port 50234 on 134.119.36.27 port 22 Aug 3 10:20:50 ns sshd[24354]: User r.r from 104.243.25.75 not allowed because not listed in AllowUsers Aug 3 10:20:50 ns sshd[24354]: Failed password for invalid user r.r from 104.243.25.75 port 50234 ss........ -------------------------------	2020-08-04 19:23:46
104.243.251.48	attack	104.243.251.48 was recorded 5 times by 1 hosts attempting to connect to the following ports: 51413. Incident counter (4h, 24h, all-time): 5, 5, 5	2019-11-25 16:56:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.243.25.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35417
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.243.25.148.			IN	A

;; AUTHORITY SECTION:
.			577	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052602 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 27 07:48:58 CST 2022
;; MSG SIZE  rcvd: 107

Host info

148.25.243.104.in-addr.arpa domain name pointer 104.243.25.148.16clouds.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.25.243.104.in-addr.arpa	name = 104.243.25.148.16clouds.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.49.98.5	attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-22 07:31:45
82.102.16.196	attackbotsspam	Sun, 21 Jul 2019 18:27:40 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 07:15:53
125.164.170.174	attackspambots	Sun, 21 Jul 2019 18:27:31 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 07:38:53
82.58.30.220	attack	Jul 21 03:49:36 *** sshd[30866]: Failed password for invalid user sun from 82.58.30.220 port 63366 ssh2	2019-07-22 07:10:34
209.141.50.191	attack	Honeypot attack, port: 23, PTR: .	2019-07-22 07:45:50
41.36.179.85	attack	Sun, 21 Jul 2019 18:27:41 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 07:12:38
190.137.107.84	attackbotsspam	Autoban 190.137.107.84 AUTH/CONNECT	2019-07-22 07:46:50
27.68.36.80	attackspambots	Sun, 21 Jul 2019 18:27:41 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 07:13:04
208.68.36.133	attack	2019-07-22T00:49:52.030149 sshd[15629]: Invalid user gast from 208.68.36.133 port 42868 2019-07-22T00:49:52.045050 sshd[15629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.68.36.133 2019-07-22T00:49:52.030149 sshd[15629]: Invalid user gast from 208.68.36.133 port 42868 2019-07-22T00:49:54.259436 sshd[15629]: Failed password for invalid user gast from 208.68.36.133 port 42868 ssh2 2019-07-22T00:54:12.692038 sshd[15692]: Invalid user patrick from 208.68.36.133 port 39660 ...	2019-07-22 07:19:05
156.198.13.184	attackspam	Sun, 21 Jul 2019 18:27:30 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 07:38:03
49.36.157.119	attackspambots	Sun, 21 Jul 2019 18:27:29 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 07:45:20
190.156.190.39	attack	Autoban 190.156.190.39 AUTH/CONNECT	2019-07-22 07:31:05
190.167.92.130	attack	Autoban 190.167.92.130 AUTH/CONNECT	2019-07-22 07:14:43
106.67.95.63	attackbotsspam	Sun, 21 Jul 2019 18:27:36 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 07:26:10
190.188.30.212	attack	Autoban 190.188.30.212 AUTH/CONNECT	2019-07-22 07:09:07

Recently Reported IPs

104.243.212.94	104.243.37.117	104.243.43.160	104.243.80.106
104.244.120.215	104.244.126.120	104.244.126.16	104.244.76.188
104.244.88.94	104.244.99.18	104.245.16.215	104.247.75.129
104.247.75.48	104.247.76.27	104.247.78.116	104.247.78.64
104.248.104.45	104.248.113.127	104.248.120.17	104.248.129.116