104.248.49.166

Basic Info

City: North Bergen

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.49.155	attack	'Fail2Ban'	2020-05-09 07:09:53
104.248.49.171	attackspambots	SSH Brute Force	2020-04-29 13:27:14
104.248.49.55	attackbotsspam	Invalid user ftpuser1 from 104.248.49.55 port 33502	2020-04-21 15:46:13
104.248.49.55	attackbots	$f2bV_matches	2020-04-14 18:03:05
104.248.49.55	attackspambots	Apr 11 15:05:59 legacy sshd[16269]: Failed password for root from 104.248.49.55 port 49220 ssh2 Apr 11 15:09:57 legacy sshd[16388]: Failed password for root from 104.248.49.55 port 59046 ssh2 Apr 11 15:13:58 legacy sshd[16603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.55 ...	2020-04-11 22:34:09
104.248.49.171	attackspambots	SSH Brute Force	2019-11-01 12:01:28
104.248.49.171	attackbotsspam	Sep 1 05:40:21 meumeu sshd[12185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Sep 1 05:40:24 meumeu sshd[12185]: Failed password for invalid user darian from 104.248.49.171 port 53712 ssh2 Sep 1 05:44:20 meumeu sshd[12609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 ...	2019-09-01 11:55:27
104.248.49.171	attack	Invalid user bank from 104.248.49.171 port 37986	2019-08-28 16:55:03
104.248.49.171	attackspam	Aug 26 02:39:25 lcprod sshd\[20704\]: Invalid user user from 104.248.49.171 Aug 26 02:39:25 lcprod sshd\[20704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 26 02:39:26 lcprod sshd\[20704\]: Failed password for invalid user user from 104.248.49.171 port 41734 ssh2 Aug 26 02:43:28 lcprod sshd\[21029\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 user=man Aug 26 02:43:30 lcprod sshd\[21029\]: Failed password for man from 104.248.49.171 port 49748 ssh2	2019-08-26 20:50:20
104.248.49.171	attack	Aug 22 12:46:34 yabzik sshd[9861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 22 12:46:36 yabzik sshd[9861]: Failed password for invalid user amstest from 104.248.49.171 port 45852 ssh2 Aug 22 12:50:35 yabzik sshd[11312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171	2019-08-22 18:02:43
104.248.49.171	attack	$f2bV_matches	2019-08-22 08:55:00
104.248.49.171	attackspambots	Aug 21 01:51:28 srv-4 sshd\[7509\]: Invalid user test from 104.248.49.171 Aug 21 01:51:28 srv-4 sshd\[7509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 21 01:51:29 srv-4 sshd\[7509\]: Failed password for invalid user test from 104.248.49.171 port 37412 ssh2 ...	2019-08-21 07:52:23
104.248.49.171	attackbotsspam	Invalid user gemma from 104.248.49.171 port 57412	2019-08-18 13:00:27
104.248.49.171	attack	Invalid user yd from 104.248.49.171 port 44470	2019-08-16 12:09:51
104.248.49.171	attack	Invalid user yd from 104.248.49.171 port 44470	2019-08-15 17:17:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.49.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41234
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.49.166.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052401 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 25 04:02:05 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 166.49.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 166.49.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.248.174.222	attackspam	Nov 9 08:36:29 SRC=89.248.174.222 PROTO=TCP SPT=47065 DPT=8089 Nov 9 09:26:54 SRC=89.248.174.222 PROTO=TCP SPT=49176 DPT=8089 Nov 9 10:12:04 SRC=89.248.174.222 PROTO=TCP SPT=52276 DPT=8089 Nov 9 11:00:17 SRC=89.248.174.222 PROTO=TCP SPT=55968 DPT=8089 Nov 9 12:48:59 SRC=89.248.174.222 PROTO=TCP SPT=40952 DPT=8089	2019-11-11 02:48:39
172.69.134.142	attack	ET INFO User-Agent (python-requests) Inbound to Webserver - port: 80 proto: TCP cat: Attempted Information Leak	2019-11-11 02:17:20
81.22.45.51	attackbots	11/10/2019-13:41:11.398828 81.22.45.51 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-11 02:52:11
116.90.80.68	attackspambots	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2019-11-11 02:19:26
80.82.70.239	attackbots	firewall-block, port(s): 7304/tcp	2019-11-11 02:27:39
37.49.231.121	attackspam	11/10/2019-13:22:35.538722 37.49.231.121 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 33	2019-11-11 02:32:40
198.108.67.44	attackbotsspam	ET DROP Dshield Block Listed Source group 1 - port: 5600 proto: TCP cat: Misc Attack	2019-11-11 02:37:06
85.92.152.5	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 79 - port: 1433 proto: TCP cat: Misc Attack	2019-11-11 02:24:50
60.172.5.98	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 51 - port: 23 proto: TCP cat: Misc Attack	2019-11-11 02:55:05
139.198.189.36	attackspam	Nov 10 08:06:04 wbs sshd\[29743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.189.36 user=root Nov 10 08:06:06 wbs sshd\[29743\]: Failed password for root from 139.198.189.36 port 55628 ssh2 Nov 10 08:10:12 wbs sshd\[30229\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.189.36 user=root Nov 10 08:10:15 wbs sshd\[30229\]: Failed password for root from 139.198.189.36 port 59608 ssh2 Nov 10 08:14:18 wbs sshd\[30559\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.189.36 user=mysql	2019-11-11 02:44:46
45.136.109.228	attackspam	11/10/2019-12:53:32.079868 45.136.109.228 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 40	2019-11-11 02:31:56
92.118.222.248	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 88 - port: 83 proto: TCP cat: Misc Attack	2019-11-11 02:47:06
159.203.201.191	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 56758 proto: TCP cat: Misc Attack	2019-11-11 02:44:16
198.108.67.89	attack	1990/tcp 3100/tcp 8088/tcp... [2019-09-11/11-10]104pkt,97pt.(tcp)	2019-11-11 02:35:44
77.247.110.161	attackbots	11/10/2019-13:05:52.655997 77.247.110.161 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 75	2019-11-11 02:28:46

Recently Reported IPs

104.248.47.110	104.248.52.180	104.248.52.235	104.248.54.102
104.248.54.109	104.248.58.81	104.248.60.75	104.248.62.79
104.248.67.99	104.248.69.54	104.248.74.54	104.248.76.130
104.248.8.215	104.248.82.134	104.248.84.152	104.248.86.117
104.248.87.173	104.248.88.244	104.248.88.248	104.248.89.248