49.145.104.168

Basic Info

City: unknown

Region: unknown

Country: Philippines

Internet Service Provider: Philippine Long Distance Telephone Company

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Automatic report - XMLRPC Attack	2020-09-02 13:20:03
attackspam	Automatic report - XMLRPC Attack	2020-09-02 06:22:27

Comments on same subnet:

IP	Type	Details	Datetime
49.145.104.161	attack	1586952408 - 04/15/2020 14:06:48 Host: 49.145.104.161/49.145.104.161 Port: 445 TCP Blocked	2020-04-16 03:49:04
49.145.104.140	attackbotsspam	1583923296 - 03/11/2020 11:41:36 Host: 49.145.104.140/49.145.104.140 Port: 445 TCP Blocked	2020-03-12 01:54:02
49.145.104.143	attackspambots	Unauthorized connection attempt detected from IP address 49.145.104.143 to port 1433 [J]	2020-03-03 01:19:04
49.145.104.249	attackspambots	1582615057 - 02/25/2020 08:17:37 Host: 49.145.104.249/49.145.104.249 Port: 445 TCP Blocked	2020-02-25 22:54:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.104.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14749
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.104.168.			IN	A

;; AUTHORITY SECTION:
.			190	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090101 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 02 06:22:24 CST 2020
;; MSG SIZE  rcvd: 118

Host info

168.104.145.49.in-addr.arpa domain name pointer dsl.49.145.104.168.pldt.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
168.104.145.49.in-addr.arpa	name = dsl.49.145.104.168.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
183.82.121.34	attackspambots	Sep 25 11:48:37 lcdev sshd\[32023\]: Invalid user support from 183.82.121.34 Sep 25 11:48:37 lcdev sshd\[32023\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.121.34 Sep 25 11:48:40 lcdev sshd\[32023\]: Failed password for invalid user support from 183.82.121.34 port 17080 ssh2 Sep 25 11:53:19 lcdev sshd\[32356\]: Invalid user debian from 183.82.121.34 Sep 25 11:53:19 lcdev sshd\[32356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.121.34	2019-09-26 06:07:52
37.59.110.165	attack	Sep 25 18:16:11 TORMINT sshd\[1073\]: Invalid user wotan from 37.59.110.165 Sep 25 18:16:11 TORMINT sshd\[1073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.110.165 Sep 25 18:16:13 TORMINT sshd\[1073\]: Failed password for invalid user wotan from 37.59.110.165 port 40474 ssh2 ...	2019-09-26 06:24:08
217.61.99.46	attackbots	Autoban 217.61.99.46 AUTH/CONNECT	2019-09-26 06:27:16
218.148.165.136	attackspam	Sep 25 22:56:51 ns3367391 proftpd\[26644\]: 127.0.0.1 \(218.148.165.136\[218.148.165.136\]\) - USER anonymous: no such user found from 218.148.165.136 \[218.148.165.136\] to 37.187.78.186:21 Sep 25 22:56:51 ns3367391 proftpd\[26645\]: 127.0.0.1 \(218.148.165.136\[218.148.165.136\]\) - USER yourdailypornvideos: no such user found from 218.148.165.136 \[218.148.165.136\] to 37.187.78.186:21 ...	2019-09-26 06:24:50
121.178.60.41	attack	Invalid user pi from 121.178.60.41 port 45470	2019-09-26 06:17:37
113.162.176.234	attack	Chat Spam	2019-09-26 06:18:54
180.125.45.177	attackbotsspam	Unauthorised access (Sep 25) SRC=180.125.45.177 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=43927 TCP DPT=8080 WINDOW=9636 SYN Unauthorised access (Sep 23) SRC=180.125.45.177 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=26639 TCP DPT=23 WINDOW=23784 SYN Unauthorised access (Sep 23) SRC=180.125.45.177 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=10510 TCP DPT=8080 WINDOW=9636 SYN	2019-09-26 05:58:06
51.83.73.160	attack	Sep 25 23:41:46 ns41 sshd[30287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.73.160	2019-09-26 05:54:13
35.229.243.41	attackspambots	fail2ban honeypot	2019-09-26 06:31:14
189.0.42.176	attack	scan z	2019-09-26 06:16:11
51.158.109.248	attackspambots	[Wed Sep 25 18:57:22 2019 GMT] RussianBeautyOnline [URIBL_INV,RDNS_NONE], Subject: xxxx: You have (1) private unread messge	2019-09-26 06:24:37
176.31.182.125	attackbots	Sep 26 00:06:47 localhost sshd\[2423\]: Invalid user rodriguez from 176.31.182.125 port 40388 Sep 26 00:06:47 localhost sshd\[2423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.182.125 Sep 26 00:06:50 localhost sshd\[2423\]: Failed password for invalid user rodriguez from 176.31.182.125 port 40388 ssh2	2019-09-26 06:18:35
42.233.236.115	attackspambots	Unauthorised access (Sep 25) SRC=42.233.236.115 LEN=40 TTL=49 ID=28697 TCP DPT=8080 WINDOW=41279 SYN Unauthorised access (Sep 25) SRC=42.233.236.115 LEN=40 TTL=49 ID=20356 TCP DPT=8080 WINDOW=41279 SYN	2019-09-26 06:00:48
192.253.253.28	attackbots	Automatic report - Banned IP Access	2019-09-26 06:21:14
119.4.225.108	attackspam	Sep 25 18:19:15 plusreed sshd[11467]: Invalid user tea from 119.4.225.108 ...	2019-09-26 06:30:10

Recently Reported IPs

56.108.69.209	139.240.132.147	112.137.64.175	193.77.191.231
77.8.20.123	73.32.250.143	15.103.93.175	150.206.179.166
115.137.180.100	85.202.119.79	39.51.241.204	179.237.170.125
20.237.61.168	2600:387:a:982::61	10.248.105.124	75.50.50.63
35.192.22.185	79.250.49.212	166.52.8.195	24.234.220.6