49.166.228.153

Basic Info

City: Hwaseong-si

Region: Gyeonggi-do

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.166.228.153
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32816
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.166.228.153.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025011001 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 11 10:09:47 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 153.228.166.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 153.228.166.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.231.119.93	attack	Sep 20 18:04:33 ip-172-31-16-56 sshd\[24022\]: Failed password for root from 111.231.119.93 port 40080 ssh2\ Sep 20 18:07:00 ip-172-31-16-56 sshd\[24053\]: Failed password for root from 111.231.119.93 port 35090 ssh2\ Sep 20 18:11:37 ip-172-31-16-56 sshd\[24166\]: Failed password for root from 111.231.119.93 port 53326 ssh2\ Sep 20 18:13:33 ip-172-31-16-56 sshd\[24187\]: Invalid user www from 111.231.119.93\ Sep 20 18:13:35 ip-172-31-16-56 sshd\[24187\]: Failed password for invalid user www from 111.231.119.93 port 48304 ssh2\	2020-09-21 05:00:50
113.111.61.225	attackbotsspam	Sep 20 16:41:16 ws12vmsma01 sshd[4014]: Invalid user user04 from 113.111.61.225 Sep 20 16:41:19 ws12vmsma01 sshd[4014]: Failed password for invalid user user04 from 113.111.61.225 port 52930 ssh2 Sep 20 16:45:21 ws12vmsma01 sshd[4603]: Invalid user teste from 113.111.61.225 ...	2020-09-21 04:30:04
212.70.149.20	attackspam	Sep 20 22:33:33 cho postfix/smtpd[3339362]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 20 22:33:57 cho postfix/smtpd[3339361]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 20 22:34:22 cho postfix/smtpd[3338922]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 20 22:34:47 cho postfix/smtpd[3339350]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 20 22:35:12 cho postfix/smtpd[3339362]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-21 04:37:23
219.129.60.112	attackbotsspam	Listed on zen-spamhaus also abuseat.org and dnsbl-sorbs / proto=6 . srcport=28986 . dstport=23 . (2342)	2020-09-21 04:34:23
139.198.177.151	attackspambots	Sep 20 19:25:07 localhost sshd[24927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.177.151 Sep 20 19:25:07 localhost sshd[24927]: Invalid user oracle from 139.198.177.151 port 53124 Sep 20 19:25:09 localhost sshd[24927]: Failed password for invalid user oracle from 139.198.177.151 port 53124 ssh2 Sep 20 19:28:35 localhost sshd[32292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.177.151 user=root Sep 20 19:28:37 localhost sshd[32292]: Failed password for root from 139.198.177.151 port 50182 ssh2 ...	2020-09-21 04:56:41
80.6.35.239	attackspambots	80.6.35.239 - - [20/Sep/2020:20:24:50 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 80.6.35.239 - - [20/Sep/2020:20:24:51 +0100] "POST /wp-login.php HTTP/1.1" 200 7652 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 80.6.35.239 - - [20/Sep/2020:20:31:07 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-09-21 04:30:32
208.187.244.197	attackbotsspam	2020-09-20 12:00:28.069140-0500 localhost smtpd[52512]: NOQUEUE: reject: RCPT from unknown[208.187.244.197]: 554 5.7.1 Service unavailable; Client host [208.187.244.197] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-09-21 04:52:25
187.111.1.57	attackspambots	Sep 20 19:03:25 mellenthin postfix/smtpd[12072]: NOQUEUE: reject: RCPT from unknown[187.111.1.57]: 554 5.7.1 Service unavailable; Client host [187.111.1.57] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/187.111.1.57; from= to= proto=ESMTP helo=<57.1.111.187.flexseg.com.br>	2020-09-21 04:39:21
111.75.149.221	attack	(smtpauth) Failed SMTP AUTH login from 111.75.149.221 (CN/China/-): 5 in the last 3600 secs	2020-09-21 04:28:55
179.184.0.112	attack	2020-09-20T12:03:06.409195morrigan.ad5gb.com sshd[958178]: Connection closed by 179.184.0.112 port 55052 [preauth]	2020-09-21 04:56:07
58.152.206.121	attack	2020-09-20T17:03:05.431640abusebot-4.cloudsearch.cf sshd[20359]: Invalid user admin from 58.152.206.121 port 34481 2020-09-20T17:03:06.486237abusebot-4.cloudsearch.cf sshd[20363]: Invalid user admin from 58.152.206.121 port 34514 2020-09-20T17:03:05.698122abusebot-4.cloudsearch.cf sshd[20359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=n058152206121.netvigator.com 2020-09-20T17:03:05.431640abusebot-4.cloudsearch.cf sshd[20359]: Invalid user admin from 58.152.206.121 port 34481 2020-09-20T17:03:07.622886abusebot-4.cloudsearch.cf sshd[20359]: Failed password for invalid user admin from 58.152.206.121 port 34481 ssh2 2020-09-20T17:03:06.751315abusebot-4.cloudsearch.cf sshd[20363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=n058152206121.netvigator.com 2020-09-20T17:03:06.486237abusebot-4.cloudsearch.cf sshd[20363]: Invalid user admin from 58.152.206.121 port 34514 2020-09-20T17:03:08.554284abusebot-4 ...	2020-09-21 04:55:20
39.34.247.91	attack	2020-09-20 12:00:20.073577-0500 localhost smtpd[52512]: NOQUEUE: reject: RCPT from unknown[39.34.247.91]: 554 5.7.1 Service unavailable; Client host [39.34.247.91] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/39.34.247.91; from= to= proto=ESMTP helo=<[39.34.247.91]>	2020-09-21 04:54:12
31.154.224.188	attack	Sep 20 12:38:57 foo sshd[15286]: reveeclipse mapping checking getaddrinfo for 31-154-224-188.orange.net.il [31.154.224.188] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 20 12:38:57 foo sshd[15286]: Invalid user admin from 31.154.224.188 Sep 20 12:38:57 foo sshd[15286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.154.224.188 Sep 20 12:38:59 foo sshd[15286]: Failed password for invalid user admin from 31.154.224.188 port 39127 ssh2 Sep 20 12:38:59 foo sshd[15286]: Received disconnect from 31.154.224.188: 11: Bye Bye [preauth] Sep 20 12:39:01 foo sshd[15288]: reveeclipse mapping checking getaddrinfo for 31-154-224-188.orange.net.il [31.154.224.188] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 20 12:39:01 foo sshd[15288]: Invalid user admin from 31.154.224.188 Sep 20 12:39:01 foo sshd[15288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.154.224.188 Sep 20 12:39:03 foo sshd[15288]: Failed pa........ -------------------------------	2020-09-21 04:27:48
192.241.185.120	attack	Sep 20 23:00:01 gw1 sshd[21584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.185.120 Sep 20 23:00:03 gw1 sshd[21584]: Failed password for invalid user admin from 192.241.185.120 port 32818 ssh2 ...	2020-09-21 04:33:40
91.134.231.81	attackbots	2020-09-20 14:29:47.280093-0500 localhost smtpd[65370]: NOQUEUE: reject: RCPT from unknown[91.134.231.81]: 450 4.7.25 Client host rejected: cannot find your hostname, [91.134.231.81]; from= to= proto=ESMTP helo=	2020-09-21 04:53:31

Recently Reported IPs

174.127.211.67	98.33.92.138	221.78.179.64	206.85.24.76
225.181.154.75	5.134.64.53	104.215.116.224	199.56.74.222
226.253.146.129	35.202.173.168	243.91.12.135	168.79.120.198
7.120.163.75	203.246.16.12	31.47.50.241	241.38.27.222
100.213.163.90	18.15.228.171	71.27.133.241	151.223.242.163