3.6.149.166 - IPInfo

Basic Info

City: Mumbai

Region: Maharashtra

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.6.149.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8808
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;3.6.149.166.			IN	A

;; AUTHORITY SECTION:
.			461	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024040402 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 05 08:41:55 CST 2024
;; MSG SIZE  rcvd: 104

Host info

166.149.6.3.in-addr.arpa domain name pointer ec2-3-6-149-166.ap-south-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.149.6.3.in-addr.arpa	name = ec2-3-6-149-166.ap-south-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
153.36.236.35	attackspambots	Jul 10 05:59:02 webhost01 sshd[6554]: Failed password for root from 153.36.236.35 port 14256 ssh2 ...	2019-07-10 07:08:14
185.220.101.29	attack	2019-07-09T21:15:55.097789scmdmz1 sshd\[26896\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.29 user=root 2019-07-09T21:15:57.099343scmdmz1 sshd\[26896\]: Failed password for root from 185.220.101.29 port 35133 ssh2 2019-07-09T21:16:00.095877scmdmz1 sshd\[26896\]: Failed password for root from 185.220.101.29 port 35133 ssh2 ...	2019-07-10 07:16:40
139.199.15.191	attackbots	SMB Server BruteForce Attack	2019-07-10 07:22:22
31.184.135.172	attackspam	Brute force RDP, port 3389	2019-07-10 07:06:22
153.36.242.114	attack	Jul 5 06:25:45 lvps92-51-164-246 sshd[10518]: User r.r from 153.36.242.114 not allowed because not listed in AllowUsers Jul 5 06:25:45 lvps92-51-164-246 sshd[10518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114 user=r.r Jul 5 06:25:47 lvps92-51-164-246 sshd[10518]: Failed password for invalid user r.r from 153.36.242.114 port 59960 ssh2 Jul 5 06:25:54 lvps92-51-164-246 sshd[10518]: Received disconnect from 153.36.242.114: 11: [preauth] Jul 5 06:25:54 lvps92-51-164-246 sshd[10518]: PAM 2 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114 user=r.r Jul 5 06:26:14 lvps92-51-164-246 sshd[10522]: User r.r from 153.36.242.114 not allowed because not listed in AllowUsers Jul 5 06:26:14 lvps92-51-164-246 sshd[10522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114 user=r.r Jul 5 06:26:16 lvps92-51-164-246 sshd[10522]: F........ -------------------------------	2019-07-10 07:14:04
104.131.37.34	attackbots	Jul 9 22:59:28 core01 sshd\[15555\]: Invalid user adam from 104.131.37.34 port 33104 Jul 9 22:59:28 core01 sshd\[15555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.37.34 ...	2019-07-10 07:11:42
77.108.92.178	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-09 12:54:00,903 INFO [amun_request_handler] PortScan Detected on Port: 445 (77.108.92.178)	2019-07-10 07:15:57
223.158.42.42	attack	2019-07-10T03:44:07.495085luisaranguren sshd[24322]: Connection from 223.158.42.42 port 42006 on 10.10.10.6 port 22 2019-07-10T03:44:12.167914luisaranguren sshd[24322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.158.42.42 user=root 2019-07-10T03:44:13.703390luisaranguren sshd[24322]: Failed password for root from 223.158.42.42 port 42006 ssh2 2019-07-10T03:44:15.867576luisaranguren sshd[24322]: Failed password for root from 223.158.42.42 port 42006 ssh2 2019-07-10T03:44:07.495085luisaranguren sshd[24322]: Connection from 223.158.42.42 port 42006 on 10.10.10.6 port 22 2019-07-10T03:44:12.167914luisaranguren sshd[24322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.158.42.42 user=root 2019-07-10T03:44:13.703390luisaranguren sshd[24322]: Failed password for root from 223.158.42.42 port 42006 ssh2 2019-07-10T03:44:15.867576luisaranguren sshd[24322]: Failed password for root from 223.158.42.42 port 42006 ssh2 ...	2019-07-10 07:02:47
85.111.77.177	attack	Scanning random ports - tries to find possible vulnerable services	2019-07-10 06:56:04
78.152.116.182	attackspambots	2019-07-10T01:10:13.370673scmdmz1 sshd\[30465\]: Invalid user user from 78.152.116.182 port 39361 2019-07-10T01:10:13.373441scmdmz1 sshd\[30465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.152.116.182 2019-07-10T01:10:14.957212scmdmz1 sshd\[30465\]: Failed password for invalid user user from 78.152.116.182 port 39361 ssh2 ...	2019-07-10 07:37:51
129.250.206.86	attackbots	Scanning random ports - tries to find possible vulnerable services	2019-07-10 07:03:22
97.113.71.135	attack	Telnetd brute force attack detected by fail2ban	2019-07-10 07:20:39
122.195.200.148	attack	Jul 9 23:23:42 unicornsoft sshd\[15141\]: User root from 122.195.200.148 not allowed because not listed in AllowUsers Jul 9 23:23:42 unicornsoft sshd\[15141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.148 user=root Jul 9 23:23:44 unicornsoft sshd\[15141\]: Failed password for invalid user root from 122.195.200.148 port 38138 ssh2	2019-07-10 07:34:00
94.156.222.15	attackspam	TCP port 445 (SMB) attempt blocked by firewall. [2019-07-09 15:20:22]	2019-07-10 07:02:00
63.143.33.110	attack	\[2019-07-09 18:23:12\] NOTICE\[13443\] chan_sip.c: Registration from '"119" \' failed for '63.143.33.110:5608' - Wrong password \[2019-07-09 18:23:12\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-09T18:23:12.410-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="119",SessionID="0x7f02f98e5508",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/63.143.33.110/5608",Challenge="0700dca9",ReceivedChallenge="0700dca9",ReceivedHash="728f9f83c91199b039198b0e2f7d86ec" \[2019-07-09 18:23:12\] NOTICE\[13443\] chan_sip.c: Registration from '"119" \' failed for '63.143.33.110:5608' - Wrong password \[2019-07-09 18:23:12\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-09T18:23:12.498-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="119",SessionID="0x7f02f9191e48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/	2019-07-10 07:04:30

Recently Reported IPs

3.6.40.139	3.6.87.248	3.6.156.79	3.6.156.223
3.6.46.18	3.6.101.65	2.57.79.98	3.0.0.4
3.6.99.106	3.6.93.245	1.15.81.171	2.56.72.112
2.56.72.109	2.56.72.108	2.56.72.126	2.56.72.160
2.255.196.91	2.56.72.127	3.5.25.78	3.6.83.101