49.149.166.221

Basic Info

City: Agusan

Region: Northern Mindanao

Country: Philippines

Internet Service Provider: DSL

Hostname: unknown

Organization: Philippine Long Distance Telephone Company

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 49.149.166.221 on Port 445(SMB)	2019-07-02 23:57:56

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.149.166.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49155
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.149.166.221.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070200 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 02 23:57:44 CST 2019
;; MSG SIZE  rcvd: 118

Host info

221.166.149.49.in-addr.arpa domain name pointer dsl.49.149.166.221.pldt.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
221.166.149.49.in-addr.arpa	name = dsl.49.149.166.221.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.231.8.105	attack	2020-04-03 22:58:44 H=(OlczDkCxW5) [114.231.8.105]:3344 I=[192.147.25.65]:25 F= rejected RCPT <1761573796@qq.com>: RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2020-04-03 22:58:51 dovecot_login authenticator failed for (bFygJhWIB) [114.231.8.105]:1627 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=abuse@lerctr.org) 2020-04-03 22:59:01 dovecot_login authenticator failed for (RSQ6ej) [114.231.8.105]:4302 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=abuse@lerctr.org) ...	2020-04-04 12:33:07
80.82.64.124	attackspambots	ssh bruteforce	2020-04-04 12:40:40
91.121.175.61	attackbotsspam	SSH brute force attempt	2020-04-04 13:05:28
113.102.250.71	attack	Apr 4 06:51:01 www4 sshd\[46308\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.102.250.71 user=root Apr 4 06:51:04 www4 sshd\[46308\]: Failed password for root from 113.102.250.71 port 28723 ssh2 Apr 4 06:58:44 www4 sshd\[46895\]: Invalid user lijiulong from 113.102.250.71 ...	2020-04-04 12:39:03
86.69.2.215	attack	Apr 4 06:09:58 legacy sshd[12502]: Failed password for root from 86.69.2.215 port 45212 ssh2 Apr 4 06:13:39 legacy sshd[12608]: Failed password for root from 86.69.2.215 port 56336 ssh2 ...	2020-04-04 12:39:21
125.162.46.9	attackspambots	1585972754 - 04/04/2020 05:59:14 Host: 125.162.46.9/125.162.46.9 Port: 445 TCP Blocked	2020-04-04 12:21:31
140.143.204.209	attack	$f2bV_matches	2020-04-04 12:58:30
51.254.114.105	attack	Apr 4 05:59:07 * sshd[27131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.114.105 Apr 4 05:59:09 * sshd[27131]: Failed password for invalid user test from 51.254.114.105 port 50658 ssh2	2020-04-04 12:27:36
202.79.168.211	attack	$f2bV_matches	2020-04-04 12:56:37
114.67.77.148	attackspambots	Invalid user nhq from 114.67.77.148 port 52054	2020-04-04 12:59:26
213.251.5.208	attack	Apr 4 06:51:47 h2779839 postfix/smtpd[19164]: warning: unknown[213.251.5.208]: SASL PLAIN authentication failed: authentication failure Apr 4 06:51:47 h2779839 postfix/smtpd[19164]: warning: unknown[213.251.5.208]: SASL LOGIN authentication failed: authentication failure Apr 4 06:51:48 h2779839 postfix/smtpd[19164]: warning: unknown[213.251.5.208]: SASL CRAM-MD5 authentication failed: authentication failure Apr 4 06:52:55 h2779839 postfix/smtpd[19164]: warning: unknown[213.251.5.208]: SASL PLAIN authentication failed: authentication failure Apr 4 06:52:55 h2779839 postfix/smtpd[19164]: warning: unknown[213.251.5.208]: SASL LOGIN authentication failed: authentication failure Apr 4 06:52:55 h2779839 postfix/smtpd[19164]: warning: unknown[213.251.5.208]: SASL CRAM-MD5 authentication failed: authentication failure ...	2020-04-04 13:08:37
222.186.173.238	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2020-04-04 12:41:51
192.144.225.182	attackbots	SSH Brute-Forcing (server1)	2020-04-04 12:45:01
36.68.42.117	attackbots	Apr 4 07:14:31 www sshd\[51940\]: Invalid user 123 from 36.68.42.117Apr 4 07:14:33 www sshd\[51940\]: Failed password for invalid user 123 from 36.68.42.117 port 46116 ssh2Apr 4 07:19:42 www sshd\[51985\]: Invalid user virtualprivateserver from 36.68.42.117 ...	2020-04-04 12:27:23
162.243.42.225	attack	Apr 4 03:58:20 *** sshd[6608]: User root from 162.243.42.225 not allowed because not listed in AllowUsers	2020-04-04 13:06:46

Recently Reported IPs

2.93.189.167	53.49.123.66	75.209.68.16	15.204.42.177
175.176.28.84	193.70.46.196	223.153.139.35	218.171.64.246
92.42.160.34	188.19.173.226	36.11.215.190	80.2.20.92
103.119.140.55	46.191.233.53	32.78.19.95	14.162.132.7
204.43.197.69	84.190.155.175	67.31.244.23	41.37.240.87