City: North Bergen
Region: New Jersey
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.248.49.155 | attack | 'Fail2Ban' |
2020-05-09 07:09:53 |
| 104.248.49.171 | attackspambots | SSH Brute Force |
2020-04-29 13:27:14 |
| 104.248.49.55 | attackbotsspam | Invalid user ftpuser1 from 104.248.49.55 port 33502 |
2020-04-21 15:46:13 |
| 104.248.49.55 | attackbots | $f2bV_matches |
2020-04-14 18:03:05 |
| 104.248.49.55 | attackspambots | Apr 11 15:05:59 legacy sshd[16269]: Failed password for root from 104.248.49.55 port 49220 ssh2 Apr 11 15:09:57 legacy sshd[16388]: Failed password for root from 104.248.49.55 port 59046 ssh2 Apr 11 15:13:58 legacy sshd[16603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.55 ... |
2020-04-11 22:34:09 |
| 104.248.49.171 | attackspambots | SSH Brute Force |
2019-11-01 12:01:28 |
| 104.248.49.171 | attackbotsspam | Sep 1 05:40:21 meumeu sshd[12185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Sep 1 05:40:24 meumeu sshd[12185]: Failed password for invalid user darian from 104.248.49.171 port 53712 ssh2 Sep 1 05:44:20 meumeu sshd[12609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 ... |
2019-09-01 11:55:27 |
| 104.248.49.171 | attack | Invalid user bank from 104.248.49.171 port 37986 |
2019-08-28 16:55:03 |
| 104.248.49.171 | attackspam | Aug 26 02:39:25 lcprod sshd\[20704\]: Invalid user user from 104.248.49.171 Aug 26 02:39:25 lcprod sshd\[20704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 26 02:39:26 lcprod sshd\[20704\]: Failed password for invalid user user from 104.248.49.171 port 41734 ssh2 Aug 26 02:43:28 lcprod sshd\[21029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 user=man Aug 26 02:43:30 lcprod sshd\[21029\]: Failed password for man from 104.248.49.171 port 49748 ssh2 |
2019-08-26 20:50:20 |
| 104.248.49.171 | attack | Aug 22 12:46:34 yabzik sshd[9861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 22 12:46:36 yabzik sshd[9861]: Failed password for invalid user amstest from 104.248.49.171 port 45852 ssh2 Aug 22 12:50:35 yabzik sshd[11312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 |
2019-08-22 18:02:43 |
| 104.248.49.171 | attack | $f2bV_matches |
2019-08-22 08:55:00 |
| 104.248.49.171 | attackspambots | Aug 21 01:51:28 srv-4 sshd\[7509\]: Invalid user test from 104.248.49.171 Aug 21 01:51:28 srv-4 sshd\[7509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 21 01:51:29 srv-4 sshd\[7509\]: Failed password for invalid user test from 104.248.49.171 port 37412 ssh2 ... |
2019-08-21 07:52:23 |
| 104.248.49.171 | attackbotsspam | Invalid user gemma from 104.248.49.171 port 57412 |
2019-08-18 13:00:27 |
| 104.248.49.171 | attack | Invalid user yd from 104.248.49.171 port 44470 |
2019-08-16 12:09:51 |
| 104.248.49.171 | attack | Invalid user yd from 104.248.49.171 port 44470 |
2019-08-15 17:17:42 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.49.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41234
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;104.248.49.166. IN A
;; AUTHORITY SECTION:
. 597 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022052401 1800 900 604800 86400
;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 25 04:02:05 CST 2022
;; MSG SIZE rcvd: 107
Host 166.49.248.104.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 166.49.248.104.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 89.248.174.222 | attackspam | Nov 9 08:36:29 SRC=89.248.174.222 PROTO=TCP SPT=47065 DPT=8089 Nov 9 09:26:54 SRC=89.248.174.222 PROTO=TCP SPT=49176 DPT=8089 Nov 9 10:12:04 SRC=89.248.174.222 PROTO=TCP SPT=52276 DPT=8089 Nov 9 11:00:17 SRC=89.248.174.222 PROTO=TCP SPT=55968 DPT=8089 Nov 9 12:48:59 SRC=89.248.174.222 PROTO=TCP SPT=40952 DPT=8089 |
2019-11-11 02:48:39 |
| 172.69.134.142 | attack | ET INFO User-Agent (python-requests) Inbound to Webserver - port: 80 proto: TCP cat: Attempted Information Leak |
2019-11-11 02:17:20 |
| 81.22.45.51 | attackbots | 11/10/2019-13:41:11.398828 81.22.45.51 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-11-11 02:52:11 |
| 116.90.80.68 | attackspambots | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic |
2019-11-11 02:19:26 |
| 80.82.70.239 | attackbots | firewall-block, port(s): 7304/tcp |
2019-11-11 02:27:39 |
| 37.49.231.121 | attackspam | 11/10/2019-13:22:35.538722 37.49.231.121 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 33 |
2019-11-11 02:32:40 |
| 198.108.67.44 | attackbotsspam | ET DROP Dshield Block Listed Source group 1 - port: 5600 proto: TCP cat: Misc Attack |
2019-11-11 02:37:06 |
| 85.92.152.5 | attackbots | ET CINS Active Threat Intelligence Poor Reputation IP group 79 - port: 1433 proto: TCP cat: Misc Attack |
2019-11-11 02:24:50 |
| 60.172.5.98 | attackspambots | ET CINS Active Threat Intelligence Poor Reputation IP group 51 - port: 23 proto: TCP cat: Misc Attack |
2019-11-11 02:55:05 |
| 139.198.189.36 | attackspam | Nov 10 08:06:04 wbs sshd\[29743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.189.36 user=root Nov 10 08:06:06 wbs sshd\[29743\]: Failed password for root from 139.198.189.36 port 55628 ssh2 Nov 10 08:10:12 wbs sshd\[30229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.189.36 user=root Nov 10 08:10:15 wbs sshd\[30229\]: Failed password for root from 139.198.189.36 port 59608 ssh2 Nov 10 08:14:18 wbs sshd\[30559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.189.36 user=mysql |
2019-11-11 02:44:46 |
| 45.136.109.228 | attackspam | 11/10/2019-12:53:32.079868 45.136.109.228 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 40 |
2019-11-11 02:31:56 |
| 92.118.222.248 | attackspambots | ET CINS Active Threat Intelligence Poor Reputation IP group 88 - port: 83 proto: TCP cat: Misc Attack |
2019-11-11 02:47:06 |
| 159.203.201.191 | attackspam | ET DROP Dshield Block Listed Source group 1 - port: 56758 proto: TCP cat: Misc Attack |
2019-11-11 02:44:16 |
| 198.108.67.89 | attack | 1990/tcp 3100/tcp 8088/tcp... [2019-09-11/11-10]104pkt,97pt.(tcp) |
2019-11-11 02:35:44 |
| 77.247.110.161 | attackbots | 11/10/2019-13:05:52.655997 77.247.110.161 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 75 |
2019-11-11 02:28:46 |