103.186.139.149 Threat Intelligence and Host Information

Mar 31, 2026 ipinfopage

General

IP Address

103.186.139.149

IPv4 Address

Location

🇵🇭 Rodriguez, Philippines

Network

AS135325

EWS DS Networks Inc

Threat Score

40/100

Medium Risk

bruteforcebruteforceBruteforceBrute-Forceciscocowrieexploit

Attack Intelligence

MITRE ATT&CK Techniques

T1110 - Brute Force, T1595 - Active Scanning

Open Ports Detected

Geographic Location

Country

Philippines

City

Rodriguez

Region

Calabarzon

Coordinates

14.7344, 121.1425

Network Information

ASN

AS135325

Organization

EWS DS Networks Inc

Network

AS135325 EWS DS Networks Inc

WHOIS Information

inetnum

103.186.139.0 - 103.186.139.255

netname

EWSDSNETWORKSINC-PH

descr

EWS DS Networks Inc

country

admin-c

NOC1-AP

tech-c

NOC1-AP

abuse-c

AE508-AP

status

ALLOCATED NON-PORTABLE

mnt-by

MAINT-EWSDSNETWORKSINC-PH

mnt-lower

MAINT-EWSDSNETWORKSINC-PH

mnt-routes

MAINT-EWSDSNETWORKSINC-PH

mnt-irt

IRT-EWSDSNETWORKSINC-PH

last-modified

2024-04-27T05:25:14Z

irt

IRT-EWSDSNETWORKSINC-PH

address

Blk 45 lot 9 sorrento village, burgos, Rodriguez Rizal 1860

e-mail

noc@ewstelcoserv.net

abuse-mailbox

edwardtech@ewstelcoserv.net

role

EWS Fiber Administrator

phone

+6399989739152

nic-hdl

EFA14-AP

route

103.186.139.0/24

origin

AS142271

Attack Logs

Date	Target Location	Protocol	Link
2026-03-26	Vultrparis	SSH	View Log

Country: Philippines
Network:
Noticed: 12 times
Protocols Attacked: portscan ssh
Countries Attacked: Australia

Disclaimer

This page contains threat intelligence information for the IPv4 address 103.186.139.149 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.