131.221.49.104

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Data Info Comercio e Servico Ltda.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 131.221.49.104 to port 23 [J]	2020-02-01 00:56:02

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.221.49.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50145
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;131.221.49.104.			IN	A

;; AUTHORITY SECTION:
.			313	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020013100 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 00:55:54 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 104.49.221.131.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.49.221.131.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.24.3.33	attack	Oct 5 05:05:49 email sshd\[10734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.24.3.33 user=root Oct 5 05:05:52 email sshd\[10734\]: Failed password for root from 36.24.3.33 port 36606 ssh2 Oct 5 05:07:44 email sshd\[11104\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.24.3.33 user=root Oct 5 05:07:47 email sshd\[11104\]: Failed password for root from 36.24.3.33 port 59662 ssh2 Oct 5 05:09:32 email sshd\[11441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.24.3.33 user=root ...	2020-10-06 00:43:43
45.27.48.161	attack	sshguard	2020-10-06 00:21:20
119.45.199.253	attackspam	Brute-force attempt banned	2020-10-06 00:29:33
179.43.149.143	attackspam	Oct 4 22:35:51 ovpn sshd\[3985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.43.149.143 user=root Oct 4 22:35:53 ovpn sshd\[3985\]: Failed password for root from 179.43.149.143 port 37672 ssh2 Oct 4 22:36:21 ovpn sshd\[4112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.43.149.143 user=root Oct 4 22:36:23 ovpn sshd\[4112\]: Failed password for root from 179.43.149.143 port 42592 ssh2 Oct 4 22:37:28 ovpn sshd\[4371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.43.149.143 user=root	2020-10-06 00:46:11
66.249.64.157	attack	Automatic report - Banned IP Access	2020-10-06 01:05:24
106.13.68.190	attackspambots	Oct 5 15:02:32 OPSO sshd\[6404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root Oct 5 15:02:35 OPSO sshd\[6404\]: Failed password for root from 106.13.68.190 port 58054 ssh2 Oct 5 15:06:48 OPSO sshd\[7208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root Oct 5 15:06:50 OPSO sshd\[7208\]: Failed password for root from 106.13.68.190 port 47736 ssh2 Oct 5 15:11:07 OPSO sshd\[7913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.190 user=root	2020-10-06 00:47:30
51.254.38.106	attackspambots	Oct 5 16:54:22 ajax sshd[25984]: Failed password for root from 51.254.38.106 port 58556 ssh2	2020-10-06 00:24:44
114.231.45.160	attackbots	Oct 4 23:04:22 srv01 postfix/smtpd\[17307\]: warning: unknown\[114.231.45.160\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 23:04:34 srv01 postfix/smtpd\[17307\]: warning: unknown\[114.231.45.160\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 23:04:50 srv01 postfix/smtpd\[17307\]: warning: unknown\[114.231.45.160\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 23:05:10 srv01 postfix/smtpd\[17307\]: warning: unknown\[114.231.45.160\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 23:05:22 srv01 postfix/smtpd\[17307\]: warning: unknown\[114.231.45.160\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-06 00:25:12
45.231.163.160	attackbotsspam	Listed on zen-spamhaus also abuseat.org / proto=6 . srcport=16233 . dstport=23 Telnet . (3524)	2020-10-06 00:32:23
138.219.100.78	attack	(sshd) Failed SSH login from 138.219.100.78 (BR/Brazil/138-219-100-78.meganetscm.net.br): 5 in the last 3600 secs	2020-10-06 01:07:38
2607:5300:60:35b3::	attackspambots	[munged]::443 2607:5300:60:35b3:: - - [05/Oct/2020:16:24:35 +0200] "POST /[munged]: HTTP/1.1" 200 6132 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-06 00:58:41
190.204.254.67	attackbots	1601843849 - 10/04/2020 22:37:29 Host: 190.204.254.67/190.204.254.67 Port: 445 TCP Blocked	2020-10-06 00:46:38
157.230.226.7	attackspambots	TCP (SYN) 157.230.226.7:58101 -> port 9332, len 40	2020-10-06 00:58:15
167.248.133.23	attackbotsspam	TCP (SYN) 167.248.133.23:10447 -> port 5902, len 44	2020-10-06 00:54:13
157.230.240.140	attackbotsspam	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-10-06 00:33:37

Recently Reported IPs

58.210.115.102	45.83.66.216	45.83.66.145	45.83.65.167
42.247.5.81	42.119.59.115	27.30.129.184	24.143.136.16
14.169.70.91	1.69.1.72	1.36.57.187	252.56.114.96
220.124.186.246	218.35.77.37	216.221.200.24	190.218.45.153
188.173.248.16	187.11.50.195	186.232.55.164	186.220.58.205