49.145.199.75 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Philippines

Internet Service Provider: Philippine Long Distance Telephone Company

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	1599929304 - 09/12/2020 18:48:24 Host: 49.145.199.75/49.145.199.75 Port: 445 TCP Blocked	2020-09-14 03:57:02
attack	1599929304 - 09/12/2020 18:48:24 Host: 49.145.199.75/49.145.199.75 Port: 445 TCP Blocked	2020-09-13 20:02:15

Comments on same subnet:

IP	Type	Details	Datetime
49.145.199.108	attack	he scammed me on steam and took my account	2020-03-28 01:10:43
49.145.199.108	attack	he tricked and locked me out of my steam account(email and all)	2020-03-12 22:09:54
49.145.199.233	attackspambots	Feb 6 15:40:05 web1 sshd\[16752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.145.199.233 user=root Feb 6 15:40:07 web1 sshd\[16752\]: Failed password for root from 49.145.199.233 port 40726 ssh2 Feb 6 15:40:09 web1 sshd\[16754\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.145.199.233 user=root Feb 6 15:40:11 web1 sshd\[16754\]: Failed password for root from 49.145.199.233 port 41599 ssh2 Feb 6 15:40:31 web1 sshd\[16757\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.145.199.233 user=root	2020-02-07 03:50:08
49.145.199.108	attack	scam scam scam run run	2020-02-04 17:36:03
49.145.199.108	attack	scammer	2020-01-13 16:38:29
49.145.199.87	attackbots	Unauthorized connection attempt from IP address 49.145.199.87 on Port 445(SMB)	2020-01-04 21:45:47
49.145.199.108	attackproxy	steam scammer posing as a steam employee for "account recovery"	2019-12-31 07:15:35
49.145.199.108	attack	steam scammer stole my account	2019-12-31 00:13:31
49.145.199.108	attack	Unauthorized connection attempt from IP address 49.145.199.108 on Port 445(SMB)	2019-12-20 06:20:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.199.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33267
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.199.75.			IN	A

;; AUTHORITY SECTION:
.			511	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091300 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 13 20:02:11 CST 2020
;; MSG SIZE  rcvd: 117

Host info

75.199.145.49.in-addr.arpa domain name pointer dsl.49.145.199.75.pldt.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
75.199.145.49.in-addr.arpa	name = dsl.49.145.199.75.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.48.134.65	attackspambots	Nov 1 13:07:27 dedicated sshd[7089]: Invalid user pope from 181.48.134.65 port 53554	2019-11-02 00:07:16
188.131.173.220	attack	Nov 1 16:01:51 vmanager6029 sshd\[19389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.173.220 user=root Nov 1 16:01:53 vmanager6029 sshd\[19389\]: Failed password for root from 188.131.173.220 port 33884 ssh2 Nov 1 16:07:51 vmanager6029 sshd\[19612\]: Invalid user prueba from 188.131.173.220 port 40482 Nov 1 16:07:51 vmanager6029 sshd\[19612\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.173.220	2019-11-01 23:55:42
173.236.147.52	attackspambots	fail2ban honeypot	2019-11-01 23:58:44
195.206.60.214	attackbots	firewall-block, port(s): 445/tcp	2019-11-01 23:27:18
194.247.27.16	attackbotsspam	slow and persistent scanner	2019-11-02 00:05:29
216.218.206.104	attack	Port scan: Attack repeated for 24 hours	2019-11-02 00:02:46
110.35.167.16	attack	Multiple failed RDP login attempts	2019-11-02 00:02:23
41.141.250.244	attackspambots	2019-11-01T15:15:55.801931scmdmz1 sshd\[7394\]: Invalid user joaquim from 41.141.250.244 port 39472 2019-11-01T15:15:55.806260scmdmz1 sshd\[7394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.141.250.244 2019-11-01T15:15:57.801722scmdmz1 sshd\[7394\]: Failed password for invalid user joaquim from 41.141.250.244 port 39472 ssh2 ...	2019-11-01 23:34:09
112.186.77.86	attackspambots	SSH authentication failure x 6 reported by Fail2Ban ...	2019-11-01 23:38:20
106.12.3.189	attack	Nov 1 14:41:16 localhost sshd\[6366\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.3.189 user=root Nov 1 14:41:18 localhost sshd\[6366\]: Failed password for root from 106.12.3.189 port 41742 ssh2 Nov 1 14:46:17 localhost sshd\[6796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.3.189 user=root	2019-11-01 23:40:00
190.202.54.12	attackspam	Nov 1 13:52:36 dedicated sshd[14389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.202.54.12 user=root Nov 1 13:52:38 dedicated sshd[14389]: Failed password for root from 190.202.54.12 port 63203 ssh2	2019-11-02 00:12:03
50.197.162.169	attack	2019-11-01 H=50-197-162-169-static.hfc.comcastbusiness.net \[50.197.162.169\] F=\ rejected RCPT \: Mail not accepted. 50.197.162.169 is listed at a DNSBL. 2019-11-01 H=50-197-162-169-static.hfc.comcastbusiness.net \[50.197.162.169\] F=\ rejected RCPT \: Mail not accepted. 50.197.162.169 is listed at a DNSBL. 2019-11-01 H=50-197-162-169-static.hfc.comcastbusiness.net \[50.197.162.169\] F=\ rejected RCPT \<REMOVED@REMOVED.de\>: Mail not accepted. 50.197.162.169 is listed at a DNSBL.	2019-11-01 23:33:36
121.27.25.27	attack	SSH Scan	2019-11-01 23:31:54
203.195.235.135	attackspambots	Nov 1 12:45:17 MainVPS sshd[4994]: Invalid user teamspeakbot from 203.195.235.135 port 37368 Nov 1 12:45:17 MainVPS sshd[4994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.235.135 Nov 1 12:45:17 MainVPS sshd[4994]: Invalid user teamspeakbot from 203.195.235.135 port 37368 Nov 1 12:45:18 MainVPS sshd[4994]: Failed password for invalid user teamspeakbot from 203.195.235.135 port 37368 ssh2 Nov 1 12:50:28 MainVPS sshd[5346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.235.135 user=root Nov 1 12:50:30 MainVPS sshd[5346]: Failed password for root from 203.195.235.135 port 50532 ssh2 ...	2019-11-01 23:26:52
122.152.214.172	attackbotsspam	SSH bruteforce	2019-11-01 23:36:17

Recently Reported IPs

120.250.220.32	244.222.231.29	38.131.71.238	161.97.85.222
67.24.53.201	117.23.42.186	229.72.134.245	188.120.112.159
72.1.194.142	61.223.4.118	213.230.110.89	66.91.121.166
4.163.215.165	243.25.185.119	111.42.190.3	176.16.34.181
40.90.16.119	60.238.108.92	242.97.168.46	19.62.28.99