49.145.201.138

Basic Info

City: Makati City

Region: Metro Manila

Country: Philippines

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.145.201.149	normal	lmfao im calling the cops nice try stealing my account	2020-03-31 08:52:59
49.145.201.57	attackbotsspam	20/3/20@09:09:46: FAIL: Alarm-Network address from=49.145.201.57 20/3/20@09:09:47: FAIL: Alarm-Network address from=49.145.201.57 ...	2020-03-21 02:18:24
49.145.201.57	attack	Unauthorized connection attempt from IP address 49.145.201.57 on Port 445(SMB)	2020-02-28 08:46:09
49.145.201.149	attack	Will hack your steam account by posing as a Steam Support Admin	2020-02-17 01:27:37
49.145.201.221	attack	Honeypot attack, port: 445, PTR: dsl.49.145.201.221.pldt.net.	2020-01-14 04:25:58
49.145.201.148	attackbots	Unauthorized connection attempt detected from IP address 49.145.201.148 to port 445	2020-01-02 22:05:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.201.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31124
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.201.138.			IN	A

;; AUTHORITY SECTION:
.			560	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 04 23:55:54 CST 2020
;; MSG SIZE  rcvd: 118

Host info

138.201.145.49.in-addr.arpa domain name pointer dsl.49.145.201.138.pldt.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.201.145.49.in-addr.arpa	name = dsl.49.145.201.138.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.160.242.186	attack	Honeypot attack, port: 445, PTR: static-186.242.160.115-tataidc.co.in.	2020-09-17 08:05:09
211.22.154.223	attackspam	Sep 17 00:06:31 l02a sshd[1354]: Invalid user nayala from 211.22.154.223 Sep 17 00:06:31 l02a sshd[1354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211-22-154-223.hinet-ip.hinet.net Sep 17 00:06:31 l02a sshd[1354]: Invalid user nayala from 211.22.154.223 Sep 17 00:06:33 l02a sshd[1354]: Failed password for invalid user nayala from 211.22.154.223 port 46606 ssh2	2020-09-17 08:12:33
186.29.182.66	attack	Listed on abuseat.org plus zen-spamhaus / proto=6 . srcport=45015 . dstport=14198 . (1106)	2020-09-17 08:01:56
79.177.4.233	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-17 08:17:45
87.231.73.54	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-17 08:14:54
159.65.8.65	attackspambots	Sep 17 01:40:28 vm1 sshd[26275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.8.65 Sep 17 01:40:29 vm1 sshd[26275]: Failed password for invalid user git from 159.65.8.65 port 45286 ssh2 ...	2020-09-17 07:59:28
164.132.145.70	attackspam	srv02 Mass scanning activity detected Target: 12210 ..	2020-09-17 08:03:13
195.206.107.154	attack	[2020-09-16 17:11:19] NOTICE[1239] chan_sip.c: Registration from '"138"' failed for '195.206.107.154:6085' - Wrong password [2020-09-16 17:11:19] SECURITY[1264] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-16T17:11:19.507-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="138",SessionID="0x7f4d480d6c18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/195.206.107.154/6085",Challenge="09451f9c",ReceivedChallenge="09451f9c",ReceivedHash="eb89dedf189c146f799bff821edc1d8d" [2020-09-16 17:16:03] NOTICE[1239] chan_sip.c: Registration from '"139"' failed for '195.206.107.154:15253' - Wrong password [2020-09-16 17:16:03] SECURITY[1264] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-16T17:16:03.338-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="139",SessionID="0x7f4d480d6c18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/195 ...	2020-09-17 08:19:41
198.98.49.181	attackbots	Scanned 2 times in the last 24 hours on port 22	2020-09-17 08:09:14
222.186.175.216	attack	2020-09-17T03:27:12.242386lavrinenko.info sshd[7755]: Failed password for root from 222.186.175.216 port 12000 ssh2 2020-09-17T03:27:16.673674lavrinenko.info sshd[7755]: Failed password for root from 222.186.175.216 port 12000 ssh2 2020-09-17T03:27:21.864783lavrinenko.info sshd[7755]: Failed password for root from 222.186.175.216 port 12000 ssh2 2020-09-17T03:27:27.247233lavrinenko.info sshd[7755]: Failed password for root from 222.186.175.216 port 12000 ssh2 2020-09-17T03:27:32.282829lavrinenko.info sshd[7755]: Failed password for root from 222.186.175.216 port 12000 ssh2 ...	2020-09-17 08:28:27
208.169.84.226	attackbotsspam	Wordpress attack	2020-09-17 08:04:39
51.83.41.120	attackbotsspam	Sep 16 19:28:53 localhost sshd\[17619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.41.120 user=root Sep 16 19:28:55 localhost sshd\[17619\]: Failed password for root from 51.83.41.120 port 37038 ssh2 Sep 16 19:32:26 localhost sshd\[17835\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.41.120 user=root Sep 16 19:32:29 localhost sshd\[17835\]: Failed password for root from 51.83.41.120 port 47568 ssh2 Sep 16 19:36:02 localhost sshd\[18103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.41.120 user=root ...	2020-09-17 07:58:02
139.155.35.47	attack	B: Abusive ssh attack	2020-09-17 07:58:56
51.81.238.115	attackbotsspam	badbot	2020-09-17 08:13:54
112.85.42.181	attackbots	Sep 16 17:06:31 propaganda sshd[21982]: Connection from 112.85.42.181 port 26506 on 10.0.0.161 port 22 rdomain "" Sep 16 17:06:31 propaganda sshd[21982]: Unable to negotiate with 112.85.42.181 port 26506: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]	2020-09-17 08:08:43

Recently Reported IPs

178.205.142.140	93.62.78.148	185.131.183.114	170.231.135.191
206.198.151.55	47.200.1.213	179.186.195.140	158.184.152.46
167.71.186.158	122.191.180.238	54.38.23.156	196.54.204.195
93.80.10.11	207.223.178.33	187.148.79.166	177.49.57.253
81.67.143.41	173.229.50.113	152.83.186.72	190.93.1.117