104.248.49.166

Basic Info

City: North Bergen

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.248.49.155	attack	'Fail2Ban'	2020-05-09 07:09:53
104.248.49.171	attackspambots	SSH Brute Force	2020-04-29 13:27:14
104.248.49.55	attackbotsspam	Invalid user ftpuser1 from 104.248.49.55 port 33502	2020-04-21 15:46:13
104.248.49.55	attackbots	$f2bV_matches	2020-04-14 18:03:05
104.248.49.55	attackspambots	Apr 11 15:05:59 legacy sshd[16269]: Failed password for root from 104.248.49.55 port 49220 ssh2 Apr 11 15:09:57 legacy sshd[16388]: Failed password for root from 104.248.49.55 port 59046 ssh2 Apr 11 15:13:58 legacy sshd[16603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.55 ...	2020-04-11 22:34:09
104.248.49.171	attackspambots	SSH Brute Force	2019-11-01 12:01:28
104.248.49.171	attackbotsspam	Sep 1 05:40:21 meumeu sshd[12185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Sep 1 05:40:24 meumeu sshd[12185]: Failed password for invalid user darian from 104.248.49.171 port 53712 ssh2 Sep 1 05:44:20 meumeu sshd[12609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 ...	2019-09-01 11:55:27
104.248.49.171	attack	Invalid user bank from 104.248.49.171 port 37986	2019-08-28 16:55:03
104.248.49.171	attackspam	Aug 26 02:39:25 lcprod sshd\[20704\]: Invalid user user from 104.248.49.171 Aug 26 02:39:25 lcprod sshd\[20704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 26 02:39:26 lcprod sshd\[20704\]: Failed password for invalid user user from 104.248.49.171 port 41734 ssh2 Aug 26 02:43:28 lcprod sshd\[21029\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 user=man Aug 26 02:43:30 lcprod sshd\[21029\]: Failed password for man from 104.248.49.171 port 49748 ssh2	2019-08-26 20:50:20
104.248.49.171	attack	Aug 22 12:46:34 yabzik sshd[9861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 22 12:46:36 yabzik sshd[9861]: Failed password for invalid user amstest from 104.248.49.171 port 45852 ssh2 Aug 22 12:50:35 yabzik sshd[11312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171	2019-08-22 18:02:43
104.248.49.171	attack	$f2bV_matches	2019-08-22 08:55:00
104.248.49.171	attackspambots	Aug 21 01:51:28 srv-4 sshd\[7509\]: Invalid user test from 104.248.49.171 Aug 21 01:51:28 srv-4 sshd\[7509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Aug 21 01:51:29 srv-4 sshd\[7509\]: Failed password for invalid user test from 104.248.49.171 port 37412 ssh2 ...	2019-08-21 07:52:23
104.248.49.171	attackbotsspam	Invalid user gemma from 104.248.49.171 port 57412	2019-08-18 13:00:27
104.248.49.171	attack	Invalid user yd from 104.248.49.171 port 44470	2019-08-16 12:09:51
104.248.49.171	attack	Invalid user yd from 104.248.49.171 port 44470	2019-08-15 17:17:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.248.49.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41234
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.248.49.166.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052401 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 25 04:02:05 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 166.49.248.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 166.49.248.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.150.189.23	attack	scanner, scan for phpmyadmin database files	2020-03-13 15:44:21
92.209.199.70	attack	Automatic report - Port Scan Attack	2020-03-13 15:37:42
189.7.217.23	attackbotsspam	Invalid user jose from 189.7.217.23 port 52703	2020-03-13 15:48:33
61.177.172.128	attackspam	Mar 13 04:48:37 firewall sshd[23302]: Failed password for root from 61.177.172.128 port 38473 ssh2 Mar 13 04:48:50 firewall sshd[23302]: error: maximum authentication attempts exceeded for root from 61.177.172.128 port 38473 ssh2 [preauth] Mar 13 04:48:50 firewall sshd[23302]: Disconnecting: Too many authentication failures [preauth] ...	2020-03-13 15:57:08
61.95.233.61	attackspambots	Mar 13 08:21:59 jane sshd[9785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.95.233.61 Mar 13 08:22:02 jane sshd[9785]: Failed password for invalid user peter from 61.95.233.61 port 32916 ssh2 ...	2020-03-13 15:32:59
82.208.133.133	attack	Invalid user upload from 82.208.133.133 port 50464	2020-03-13 15:35:52
83.12.107.106	attackspambots	Multiple SSH login attempts.	2020-03-13 15:30:33
185.211.245.170	attack	Mar 13 08:35:52 relay postfix/smtpd\[17471\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 08:43:52 relay postfix/smtpd\[17473\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 08:43:52 relay postfix/smtpd\[25270\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 08:43:59 relay postfix/smtpd\[22420\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 13 08:43:59 relay postfix/smtpd\[25278\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-13 15:57:25
36.238.111.54	attackspam	Telnetd brute force attack detected by fail2ban	2020-03-13 15:58:28
106.13.140.83	attack	Invalid user kelly from 106.13.140.83 port 40932	2020-03-13 15:45:01
58.65.136.170	attack	web-1 [ssh] SSH Attack	2020-03-13 15:54:19
162.243.128.57	attackspambots	Port probing on unauthorized port 9001	2020-03-13 16:06:15
202.114.113.218	attack	Mar 13 05:18:16 sd-53420 sshd\[11477\]: User root from 202.114.113.218 not allowed because none of user's groups are listed in AllowGroups Mar 13 05:18:16 sd-53420 sshd\[11477\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.114.113.218 user=root Mar 13 05:18:19 sd-53420 sshd\[11477\]: Failed password for invalid user root from 202.114.113.218 port 41146 ssh2 Mar 13 05:20:08 sd-53420 sshd\[11732\]: Invalid user aion from 202.114.113.218 Mar 13 05:20:08 sd-53420 sshd\[11732\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.114.113.218 ...	2020-03-13 15:19:39
89.238.154.184	attackbots	(From ana.moar@sinergoservizi.it) Dаting site for sех with girls in yоur city: http://freeurlredirect.com/datingsexywomans738008	2020-03-13 15:38:59
119.86.183.88	attack	2020-03-13 01:45:57 H=(119.86.183.88) [119.86.183.88]:56371 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/119.86.183.88) 2020-03-13 01:45:58 H=(119.86.183.88) [119.86.183.88]:56371 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) 2020-03-13 01:45:58 H=(119.86.183.88) [119.86.183.88]:56371 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) ...	2020-03-13 15:58:11

Recently Reported IPs

104.248.47.110	104.248.52.180	104.248.52.235	104.248.54.102
104.248.54.109	104.248.58.81	104.248.60.75	104.248.62.79
104.248.67.99	104.248.69.54	104.248.74.54	104.248.76.130
104.248.8.215	104.248.82.134	104.248.84.152	104.248.86.117
104.248.87.173	104.248.88.244	104.248.88.248	104.248.89.248