131.221.149.137

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Guedes e Lopes Comunicacao e Informatica Ltda-ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 19:26:46

Comments on same subnet:

IP	Type	Details	Datetime
131.221.149.92	attackspam	$f2bV_matches	2019-09-03 21:17:02
131.221.149.52	attackspambots	Aug 3 00:52:41 web1 postfix/smtpd[10512]: warning: unknown[131.221.149.52]: SASL PLAIN authentication failed: authentication failure ...	2019-08-03 13:46:27
131.221.149.139	attackspambots	Unauthorized connection attempt from IP address 131.221.149.139 on Port 587(SMTP-MSA)	2019-08-03 04:20:33
131.221.149.103	attackspambots	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 19:28:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.221.149.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8727
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;131.221.149.137.		IN	A

;; AUTHORITY SECTION:
.			2239	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070800 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 08 19:26:40 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 137.149.221.131.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 137.149.221.131.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.21.195.122	attackspambots	Brute force attempt	2020-10-11 21:02:14
84.236.107.134	attack		2020-10-11 21:05:59
46.101.246.76	attack	46.101.246.76 is unauthorized and has been banned by fail2ban	2020-10-11 21:08:22
112.85.42.110	attackspam	Oct 11 15:24:47 abendstille sshd\[5814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.110 user=root Oct 11 15:24:49 abendstille sshd\[5814\]: Failed password for root from 112.85.42.110 port 8266 ssh2 Oct 11 15:25:02 abendstille sshd\[5814\]: Failed password for root from 112.85.42.110 port 8266 ssh2 Oct 11 15:25:06 abendstille sshd\[6239\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.110 user=root Oct 11 15:25:07 abendstille sshd\[6239\]: Failed password for root from 112.85.42.110 port 63488 ssh2 ...	2020-10-11 21:27:52
61.188.18.141	attack	Oct 11 10:51:34 pve1 sshd[22504]: Failed password for root from 61.188.18.141 port 37578 ssh2 ...	2020-10-11 21:28:50
59.19.186.209	attackspam	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-10-11 21:34:13
95.178.172.67	attack	Port Scan: TCP/443	2020-10-11 21:03:18
81.214.35.62	attackspambots	[Mon Oct 05 16:11:26 2020] - Syn Flood From IP: 81.214.35.62 Port: 51138	2020-10-11 21:12:01
112.85.42.91	attackspam	Oct 11 09:05:00 NPSTNNYC01T sshd[19057]: Failed password for root from 112.85.42.91 port 21806 ssh2 Oct 11 09:05:14 NPSTNNYC01T sshd[19057]: error: maximum authentication attempts exceeded for root from 112.85.42.91 port 21806 ssh2 [preauth] Oct 11 09:05:22 NPSTNNYC01T sshd[19104]: Failed password for root from 112.85.42.91 port 13278 ssh2 ...	2020-10-11 21:06:55
220.128.104.169	attackbots	1602362932 - 10/10/2020 22:48:52 Host: 220.128.104.169/220.128.104.169 Port: 445 TCP Blocked ...	2020-10-11 21:32:58
218.92.0.208	attack	Oct 11 14:51:56 buvik sshd[26730]: Failed password for root from 218.92.0.208 port 22152 ssh2 Oct 11 14:51:59 buvik sshd[26730]: Failed password for root from 218.92.0.208 port 22152 ssh2 Oct 11 14:52:02 buvik sshd[26730]: Failed password for root from 218.92.0.208 port 22152 ssh2 ...	2020-10-11 20:59:37
201.122.102.21	attackspam	2020-10-11T11:07:21+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-10-11 21:23:23
183.154.27.196	attack	Oct 11 00:11:06 srv01 postfix/smtpd\[30854\]: warning: unknown\[183.154.27.196\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 11 00:24:52 srv01 postfix/smtpd\[24001\]: warning: unknown\[183.154.27.196\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 11 00:25:04 srv01 postfix/smtpd\[24001\]: warning: unknown\[183.154.27.196\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 11 00:25:20 srv01 postfix/smtpd\[24001\]: warning: unknown\[183.154.27.196\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 11 00:25:39 srv01 postfix/smtpd\[24001\]: warning: unknown\[183.154.27.196\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-11 21:10:44
103.238.69.138	attackbotsspam	Automatic Fail2ban report - Trying login SSH	2020-10-11 21:18:59
49.232.133.186	attack	2020-10-11T16:27:29.896016hostname sshd[15310]: Failed password for invalid user andrea from 49.232.133.186 port 51424 ssh2 2020-10-11T16:36:57.616032hostname sshd[19025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.133.186 user=root 2020-10-11T16:36:59.359721hostname sshd[19025]: Failed password for root from 49.232.133.186 port 55184 ssh2 ...	2020-10-11 21:29:21

Recently Reported IPs

131.0.122.19	131.67.21.78	133.119.39.128	5.213.211.250
145.10.82.178	106.12.192.146	234.118.241.106	55.94.146.162
131.0.120.247	44.141.3.210	8.134.15.160	185.234.217.37
139.253.84.138	160.182.50.42	129.146.53.23	116.244.231.179
122.20.65.19	111.77.118.210	179.112.122.204	183.151.64.197