49.145.106.162

Basic Info

City: unknown

Region: unknown

Country: Philippines

Internet Service Provider: Philippine Long Distance Telephone Company

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt from IP address 49.145.106.162 on Port 445(SMB)	2020-01-11 20:03:04

Comments on same subnet:

IP	Type	Details	Datetime
49.145.106.18	attackspam	1598876977 - 08/31/2020 14:29:37 Host: 49.145.106.18/49.145.106.18 Port: 445 TCP Blocked	2020-09-01 04:03:42
49.145.106.122	attackspam	High volume WP login attempts -eld	2020-07-28 04:12:40
49.145.106.182	attackspam	unauthorized connection attempt	2020-01-28 14:00:03
49.145.106.34	attack	1579899004 - 01/24/2020 21:50:04 Host: 49.145.106.34/49.145.106.34 Port: 445 TCP Blocked	2020-01-25 07:44:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.106.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27251
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.106.162.			IN	A

;; AUTHORITY SECTION:
.			403	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011002 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 11 20:02:59 CST 2020
;; MSG SIZE  rcvd: 118

Host info

162.106.145.49.in-addr.arpa domain name pointer dsl.49.145.106.162.pldt.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
162.106.145.49.in-addr.arpa	name = dsl.49.145.106.162.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
52.119.117.26	attackspam	" "	2019-10-25 12:58:46
146.164.21.68	attack	2019-10-24T21:49:32.2850491495-001 sshd\[34349\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pharma.pharma.ufrj.br user=mysql 2019-10-24T21:49:34.3009121495-001 sshd\[34349\]: Failed password for mysql from 146.164.21.68 port 38907 ssh2 2019-10-24T23:41:55.7385451495-001 sshd\[38443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pharma.pharma.ufrj.br user=root 2019-10-24T23:41:57.3318001495-001 sshd\[38443\]: Failed password for root from 146.164.21.68 port 46815 ssh2 2019-10-24T23:46:24.3665761495-001 sshd\[38615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pharma.pharma.ufrj.br user=root 2019-10-24T23:46:26.2259031495-001 sshd\[38615\]: Failed password for root from 146.164.21.68 port 37696 ssh2 ...	2019-10-25 12:47:13
115.74.224.128	attackbotsspam	Connection by 115.74.224.128 on port: 139 got caught by honeypot at 10/24/2019 8:57:05 PM	2019-10-25 12:25:16
104.236.94.202	attackbotsspam	Oct 25 06:49:08 OPSO sshd\[29408\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.94.202 user=root Oct 25 06:49:09 OPSO sshd\[29408\]: Failed password for root from 104.236.94.202 port 46782 ssh2 Oct 25 06:52:29 OPSO sshd\[30017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.94.202 user=mail Oct 25 06:52:31 OPSO sshd\[30017\]: Failed password for mail from 104.236.94.202 port 55958 ssh2 Oct 25 06:55:55 OPSO sshd\[30627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.94.202 user=root	2019-10-25 13:03:04
45.136.110.48	attackbots	Oct 25 05:55:49 mc1 kernel: \[3262091.069194\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=12666 PROTO=TCP SPT=51874 DPT=9262 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 25 05:56:44 mc1 kernel: \[3262145.925084\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=32741 PROTO=TCP SPT=51874 DPT=9492 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 25 05:57:05 mc1 kernel: \[3262166.525892\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.48 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=64958 PROTO=TCP SPT=51874 DPT=9453 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-25 12:25:54
103.205.68.2	attackspambots	Oct 25 06:32:24 cp sshd[7993]: Failed password for root from 103.205.68.2 port 33690 ssh2 Oct 25 06:37:08 cp sshd[10689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.205.68.2 Oct 25 06:37:10 cp sshd[10689]: Failed password for invalid user cacti from 103.205.68.2 port 43972 ssh2	2019-10-25 12:41:16
222.186.175.155	attack	Triggered by Fail2Ban at Ares web server	2019-10-25 12:35:12
222.186.175.151	attack	Oct 25 06:23:14 vserver sshd\[7948\]: Failed password for root from 222.186.175.151 port 59844 ssh2Oct 25 06:23:19 vserver sshd\[7948\]: Failed password for root from 222.186.175.151 port 59844 ssh2Oct 25 06:23:24 vserver sshd\[7948\]: Failed password for root from 222.186.175.151 port 59844 ssh2Oct 25 06:23:28 vserver sshd\[7948\]: Failed password for root from 222.186.175.151 port 59844 ssh2 ...	2019-10-25 12:26:12
93.143.7.0	attackbotsspam	Automatic report - Port Scan Attack	2019-10-25 12:43:50
66.110.216.151	attackspambots	failed_logins	2019-10-25 12:52:05
198.50.175.247	attackspam	Oct 25 00:51:55 firewall sshd[24447]: Failed password for invalid user iqbal from 198.50.175.247 port 49061 ssh2 Oct 25 00:56:20 firewall sshd[24550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.175.247 user=root Oct 25 00:56:22 firewall sshd[24550]: Failed password for root from 198.50.175.247 port 39656 ssh2 ...	2019-10-25 12:48:58
191.100.10.213	attackspambots	" "	2019-10-25 12:34:14
37.120.33.30	attackbots	Oct 25 07:12:51 server sshd\[29275\]: Invalid user 0 from 37.120.33.30 port 39197 Oct 25 07:12:51 server sshd\[29275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.120.33.30 Oct 25 07:12:53 server sshd\[29275\]: Failed password for invalid user 0 from 37.120.33.30 port 39197 ssh2 Oct 25 07:16:54 server sshd\[30260\]: Invalid user zxczxcvg from 37.120.33.30 port 57811 Oct 25 07:16:54 server sshd\[30260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.120.33.30	2019-10-25 12:35:31
37.49.231.104	attack	10/25/2019-05:56:35.402575 37.49.231.104 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 35	2019-10-25 12:40:19
222.186.175.148	attack	Oct 25 07:00:18 dedicated sshd[25418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Oct 25 07:00:20 dedicated sshd[25418]: Failed password for root from 222.186.175.148 port 1740 ssh2 Oct 25 07:00:26 dedicated sshd[25418]: Failed password for root from 222.186.175.148 port 1740 ssh2 Oct 25 07:00:31 dedicated sshd[25418]: Failed password for root from 222.186.175.148 port 1740 ssh2	2019-10-25 13:00:44

Recently Reported IPs

211.224.20.33	229.227.217.144	36.83.102.59	116.104.137.104
210.89.56.58	43.241.120.21	200.109.223.235	42.118.54.62
188.252.31.162	164.138.170.119	91.148.75.73	61.2.133.1
115.73.222.210	36.74.33.166	122.162.206.123	114.104.134.28
113.170.124.197	113.162.55.117	14.242.109.66	222.249.249.3