104.248.49.148

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.49.155	attack	'Fail2Ban'	2020-05-09 07:09:53
104.248.49.171	attackspambots	SSH Brute Force	2020-04-29 13:27:14
104.248.49.55	attackbotsspam	Invalid user ftpuser1 from 104.248.49.55 port 33502	2020-04-21 15:46:13
104.248.49.55	attackbots	$f2bV_matches	2020-04-14 18:03:05
104.248.49.55	attackspambots	Apr 11 15:05:59 legacy sshd[16269]: Failed password for root from 104.248.49.55 port 49220 ssh2 Apr 11 15:09:57 legacy sshd[16388]: Failed password for root from 104.248.49.55 port 59046 ssh2 Apr 11 15:13:58 legacy sshd[16603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.55 ...	2020-04-11 22:34:09
104.248.49.171	attackspambots	SSH Brute Force	2019-11-01 12:01:28
104.248.49.171	attackbotsspam	Sep 1 05:40:21 meumeu sshd[12185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Sep 1 05:40:24 meumeu sshd[12185]: Failed password for invalid user darian from 104.248.49.171 port 53712 ssh2 Sep 1 05:44:20 meumeu sshd[12609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 ...	2019-09-01 11:55:27
104.248.49.171	attack	Invalid user bank from 104.248.49.171 port 37986	2019-08-28 16:55:03
104.248.49.171	attackspam	Aug 26 02:39:25 lcprod sshd\[20704\]: Invalid user user from 104.248.49.171 Aug 26 02:39:25 lcprod sshd\[20704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 26 02:39:26 lcprod sshd\[20704\]: Failed password for invalid user user from 104.248.49.171 port 41734 ssh2 Aug 26 02:43:28 lcprod sshd\[21029\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 user=man Aug 26 02:43:30 lcprod sshd\[21029\]: Failed password for man from 104.248.49.171 port 49748 ssh2	2019-08-26 20:50:20
104.248.49.171	attack	Aug 22 12:46:34 yabzik sshd[9861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 22 12:46:36 yabzik sshd[9861]: Failed password for invalid user amstest from 104.248.49.171 port 45852 ssh2 Aug 22 12:50:35 yabzik sshd[11312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171	2019-08-22 18:02:43
104.248.49.171	attack	$f2bV_matches	2019-08-22 08:55:00
104.248.49.171	attackspambots	Aug 21 01:51:28 srv-4 sshd\[7509\]: Invalid user test from 104.248.49.171 Aug 21 01:51:28 srv-4 sshd\[7509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 21 01:51:29 srv-4 sshd\[7509\]: Failed password for invalid user test from 104.248.49.171 port 37412 ssh2 ...	2019-08-21 07:52:23
104.248.49.171	attackbotsspam	Invalid user gemma from 104.248.49.171 port 57412	2019-08-18 13:00:27
104.248.49.171	attack	Invalid user yd from 104.248.49.171 port 44470	2019-08-16 12:09:51
104.248.49.171	attack	Invalid user yd from 104.248.49.171 port 44470	2019-08-15 17:17:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.49.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50430
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.49.148.			IN	A

;; AUTHORITY SECTION:
.			302	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032801 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 29 12:37:06 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 148.49.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.49.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
23.97.180.45	attackbots	2019-12-25T23:35:08.595182shield sshd\[24484\]: Invalid user kallal from 23.97.180.45 port 53585 2019-12-25T23:35:08.599207shield sshd\[24484\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.97.180.45 2019-12-25T23:35:10.791474shield sshd\[24484\]: Failed password for invalid user kallal from 23.97.180.45 port 53585 ssh2 2019-12-25T23:38:51.410296shield sshd\[25310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.97.180.45 user=root 2019-12-25T23:38:53.883669shield sshd\[25310\]: Failed password for root from 23.97.180.45 port 40374 ssh2	2019-12-26 07:48:38
217.112.142.171	attackspambots	Dec 25 17:22:24 web01 postfix/smtpd[16239]: connect from drab.yobaat.com[217.112.142.171] Dec 25 17:22:24 web01 policyd-spf[18050]: None; identhostnamey=helo; client-ip=217.112.142.171; helo=drab.thomasdukeman.com; envelope-from=x@x Dec 25 17:22:24 web01 policyd-spf[18050]: Pass; identhostnamey=mailfrom; client-ip=217.112.142.171; helo=drab.thomasdukeman.com; envelope-from=x@x Dec x@x Dec 25 17:22:24 web01 postfix/smtpd[16239]: disconnect from drab.yobaat.com[217.112.142.171] Dec 25 17:24:39 web01 postfix/smtpd[16811]: connect from drab.yobaat.com[217.112.142.171] Dec 25 17:24:39 web01 policyd-spf[17996]: None; identhostnamey=helo; client-ip=217.112.142.171; helo=drab.thomasdukeman.com; envelope-from=x@x Dec 25 17:24:39 web01 policyd-spf[17996]: Pass; identhostnamey=mailfrom; client-ip=217.112.142.171; helo=drab.thomasdukeman.com; envelope-from=x@x Dec x@x Dec 25 17:24:39 web01 postfix/smtpd[16811]: disconnect from drab.yobaat.com[217.112.142.171] Dec 25 17:26:02 web01 ........ -------------------------------	2019-12-26 08:07:47
196.52.43.62	attack	Honeypot hit, critical abuseConfidenceScore, incoming Traffic from this IP	2019-12-26 08:11:37
60.210.40.197	attackspambots	Dec 24 12:26:36 : SSH login attempts with invalid user	2019-12-26 07:58:48
80.79.179.2	attack	Dec 26 00:36:06 dedicated sshd[25198]: Invalid user guest from 80.79.179.2 port 60866	2019-12-26 08:17:59
46.229.168.149	attack	Automated report (2019-12-25T22:53:02+00:00). Scraper detected at this address.	2019-12-26 08:09:57
176.113.70.50	attack	Dec 26 00:17:30 mail kernel: [2335592.852873] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=176.113.70.50 DST=91.205.173.180 LEN=127 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=44238 DPT=1900 LEN=107 Dec 26 00:17:30 mail kernel: [2335592.853044] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=176.113.70.50 DST=91.205.173.180 LEN=127 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=44239 DPT=1900 LEN=107 Dec 26 00:17:30 mail kernel: [2335592.853110] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=176.113.70.50 DST=91.205.173.180 LEN=127 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=UDP SPT=44237 DPT=1900 LEN=107	2019-12-26 08:08:18
92.255.205.209	attackbotsspam	Automatic report - Banned IP Access	2019-12-26 08:04:40
45.136.108.115	attackspam	Dec 26 00:53:27 debian-2gb-nbg1-2 kernel: \[970739.359655\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.115 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=30946 PROTO=TCP SPT=50480 DPT=13380 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-26 07:57:27
139.59.56.121	attackspambots	Dec 26 00:49:29 163-172-32-151 sshd[5323]: Invalid user test from 139.59.56.121 port 41878 ...	2019-12-26 08:19:44
88.149.181.240	attackspam	Dec 26 01:53:24 server sshd\[28677\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88-149-181-240.v4.ngi.it user=root Dec 26 01:53:26 server sshd\[28677\]: Failed password for root from 88.149.181.240 port 46438 ssh2 Dec 26 01:53:26 server sshd\[28682\]: Invalid user ethos from 88.149.181.240 Dec 26 01:53:26 server sshd\[28682\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88-149-181-240.v4.ngi.it Dec 26 01:53:29 server sshd\[28682\]: Failed password for invalid user ethos from 88.149.181.240 port 46501 ssh2 ...	2019-12-26 07:50:46
137.74.198.126	attackspam	$f2bV_matches	2019-12-26 07:42:32
192.144.142.72	attack	Dec 26 00:22:51 [host] sshd[730]: Invalid user yan from 192.144.142.72 Dec 26 00:22:51 [host] sshd[730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.142.72 Dec 26 00:22:53 [host] sshd[730]: Failed password for invalid user yan from 192.144.142.72 port 58425 ssh2	2019-12-26 07:47:31
49.234.123.202	attackbotsspam	Dec 25 18:09:29 plusreed sshd[17597]: Invalid user pi from 49.234.123.202 ...	2019-12-26 07:59:06
121.66.224.90	attack	Dec 26 00:53:06 [host] sshd[1876]: Invalid user rebecca from 121.66.224.90 Dec 26 00:53:06 [host] sshd[1876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.66.224.90 Dec 26 00:53:07 [host] sshd[1876]: Failed password for invalid user rebecca from 121.66.224.90 port 56572 ssh2	2019-12-26 07:57:41

Recently Reported IPs

104.24.197.198	104.248.54.30	104.248.66.113	104.248.74.109
104.248.82.101	104.248.83.145	104.248.84.38	104.248.86.138
104.248.89.233	104.248.94.148	104.248.95.132	104.248.98.251
104.249.173.188	104.25.103.57	104.25.103.58	104.25.104.57
104.25.104.58	104.25.106.159	104.25.112.74	104.25.125.191