49.145.205.68 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Philippines

Internet Service Provider: Philippine Long Distance Telephone Company

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 49.145.205.68 on Port 445(SMB)	2020-01-24 23:09:53

Comments on same subnet:

IP	Type	Details	Datetime
49.145.205.83	attackbotsspam	Unauthorized connection attempt from IP address 49.145.205.83 on Port 445(SMB)	2020-08-29 03:15:16
49.145.205.143	attack	20/3/20@09:06:57: FAIL: Alarm-Network address from=49.145.205.143 ...	2020-03-21 03:58:53
49.145.205.9	attack	Honeypot attack, port: 445, PTR: dsl.49.145.205.9.pldt.net.	2020-01-31 03:04:00

Type

Details

Datetime

49.145.205.83

attackbotsspam

Unauthorized connection attempt from IP address 49.145.205.83 on Port 445(SMB)

2020-08-29 03:15:16

49.145.205.143

attack

20/3/20@09:06:57: FAIL: Alarm-Network address from=49.145.205.143
...

2020-03-21 03:58:53

49.145.205.9

attack

Honeypot attack, port: 445, PTR: dsl.49.145.205.9.pldt.net.

2020-01-31 03:04:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.205.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6006
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.205.68.			IN	A

;; AUTHORITY SECTION:
.			324	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012400 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 23:09:45 CST 2020
;; MSG SIZE  rcvd: 117

Host info

68.205.145.49.in-addr.arpa domain name pointer dsl.49.145.205.68.pldt.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
68.205.145.49.in-addr.arpa	name = dsl.49.145.205.68.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.121.110.50	attackbotsspam	Oct 9 09:03:26 microserver sshd[44932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.110.50 user=root Oct 9 09:03:28 microserver sshd[44932]: Failed password for root from 91.121.110.50 port 48983 ssh2 Oct 9 09:07:25 microserver sshd[45529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.110.50 user=root Oct 9 09:07:27 microserver sshd[45529]: Failed password for root from 91.121.110.50 port 40630 ssh2 Oct 9 09:11:33 microserver sshd[46132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.110.50 user=root Oct 9 09:23:18 microserver sshd[47504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.110.50 user=root Oct 9 09:23:21 microserver sshd[47504]: Failed password for root from 91.121.110.50 port 35444 ssh2 Oct 9 09:27:09 microserver sshd[48077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid	2019-10-09 16:12:30
159.90.61.77	attack	Aug 10 11:05:40 server sshd\[14952\]: Invalid user postgres from 159.90.61.77 Aug 10 11:05:40 server sshd\[14952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.90.61.77 Aug 10 11:05:42 server sshd\[14952\]: Failed password for invalid user postgres from 159.90.61.77 port 34032 ssh2 ...	2019-10-09 16:30:59
45.172.190.91	attackbots	Automatic report - Port Scan Attack	2019-10-09 16:00:26
162.247.74.200	attack	Oct 9 10:00:24 rotator sshd\[20439\]: Failed password for root from 162.247.74.200 port 49008 ssh2Oct 9 10:00:27 rotator sshd\[20439\]: Failed password for root from 162.247.74.200 port 49008 ssh2Oct 9 10:00:29 rotator sshd\[20439\]: Failed password for root from 162.247.74.200 port 49008 ssh2Oct 9 10:00:32 rotator sshd\[20439\]: Failed password for root from 162.247.74.200 port 49008 ssh2Oct 9 10:00:35 rotator sshd\[20439\]: Failed password for root from 162.247.74.200 port 49008 ssh2Oct 9 10:00:37 rotator sshd\[20439\]: Failed password for root from 162.247.74.200 port 49008 ssh2 ...	2019-10-09 16:07:21
160.218.185.67	attackbots	May 26 02:08:07 server sshd\[233643\]: Invalid user mou from 160.218.185.67 May 26 02:08:07 server sshd\[233643\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.218.185.67 May 26 02:08:09 server sshd\[233643\]: Failed password for invalid user mou from 160.218.185.67 port 49036 ssh2 ...	2019-10-09 16:29:19
142.44.218.192	attack	$f2bV_matches	2019-10-09 16:01:48
175.141.238.155	attackspam	Automatic report - Port Scan Attack	2019-10-09 15:59:31
162.223.90.63	attack	Apr 30 06:11:45 server sshd\[138873\]: Invalid user ventas from 162.223.90.63 Apr 30 06:11:45 server sshd\[138873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.223.90.63 Apr 30 06:11:47 server sshd\[138873\]: Failed password for invalid user ventas from 162.223.90.63 port 50490 ssh2 ...	2019-10-09 16:21:30
14.136.118.138	attackbotsspam	2019-10-09T03:48:19.2518051495-001 sshd\[13943\]: Invalid user ubnt from 14.136.118.138 port 47161 2019-10-09T03:48:19.2550501495-001 sshd\[13943\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=014136118138.ctinets.com 2019-10-09T03:48:20.9905911495-001 sshd\[13943\]: Failed password for invalid user ubnt from 14.136.118.138 port 47161 ssh2 2019-10-09T03:52:26.8693701495-001 sshd\[14155\]: Invalid user nedkwebb from 14.136.118.138 port 40348 2019-10-09T03:52:26.8768251495-001 sshd\[14155\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=014136118138.ctinets.com 2019-10-09T03:52:28.8584631495-001 sshd\[14155\]: Failed password for invalid user nedkwebb from 14.136.118.138 port 40348 ssh2 ...	2019-10-09 16:04:50
163.125.17.247	attack	Jul 16 19:16:40 server sshd\[91593\]: Invalid user pi from 163.125.17.247 Jul 16 19:16:40 server sshd\[91593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.125.17.247 Jul 16 19:16:42 server sshd\[91593\]: Failed password for invalid user pi from 163.125.17.247 port 42407 ssh2 ...	2019-10-09 15:57:03
60.168.93.125	attackspam	Oct908:56:20server4pure-ftpd:$\?@60.168.93.125$[WARNING]Authenticationfailedforuser[www]Oct908:27:56server4pure-ftpd:$\?@117.65.145.59$[WARNING]Authenticationfailedforuser[www]Oct909:04:43server4pure-ftpd:$\?@117.65.145.59$[WARNING]Authenticationfailedforuser[www]Oct908:56:27server4pure-ftpd:$\?@60.168.93.125$[WARNING]Authenticationfailedforuser[www]Oct909:14:28server4pure-ftpd:$\?@121.26.194.238$[WARNING]Authenticationfailedforuser[www]Oct909:14:37server4pure-ftpd:$\?@121.26.194.238$[WARNING]Authenticationfailedforuser[www]Oct909:04:35server4pure-ftpd:$\?@117.65.145.59$[WARNING]Authenticationfailedforuser[www]Oct909:04:24server4pure-ftpd:$\?@117.65.145.59$[WARNING]Authenticationfailedforuser[www]Oct909:04:50server4pure-ftpd:$\?@117.65.145.59$[WARNING]Authenticationfailedforuser[www]Oct908:28:02server4pure-ftpd:$\?@117.65.145.59$[WARNING]Authenticationfailedforuser[www]IPAddressesBlocked:	2019-10-09 15:55:09
142.93.251.1	attackspambots	Oct 9 04:09:26 www_kotimaassa_fi sshd[12211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.251.1 Oct 9 04:09:28 www_kotimaassa_fi sshd[12211]: Failed password for invalid user 123Retail from 142.93.251.1 port 55886 ssh2 ...	2019-10-09 15:57:16
191.235.91.156	attackbotsspam	(sshd) Failed SSH login from 191.235.91.156 (BR/Brazil/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 9 05:31:32 server2 sshd[13985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.91.156 user=root Oct 9 05:31:34 server2 sshd[13985]: Failed password for root from 191.235.91.156 port 34450 ssh2 Oct 9 05:44:33 server2 sshd[15472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.91.156 user=root Oct 9 05:44:35 server2 sshd[15472]: Failed password for root from 191.235.91.156 port 42472 ssh2 Oct 9 05:54:11 server2 sshd[16556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.91.156 user=root	2019-10-09 16:06:49
118.192.66.52	attackbots	"Fail2Ban detected SSH brute force attempt"	2019-10-09 15:54:27
51.38.176.147	attack	Oct 9 09:54:10 eventyay sshd[25194]: Failed password for root from 51.38.176.147 port 49073 ssh2 Oct 9 09:58:02 eventyay sshd[25247]: Failed password for root from 51.38.176.147 port 40503 ssh2 ...	2019-10-09 16:08:46

Recently Reported IPs

80.237.111.164	58.182.11.186	203.192.225.135	45.160.194.232
178.46.208.191	116.105.35.204	49.150.107.125	182.110.114.49
1.52.155.5	118.200.116.76	54.90.116.219	45.140.207.197
187.103.250.111	178.46.208.97	223.79.104.8	118.24.64.156
203.47.29.229	54.37.74.189	42.188.163.140	27.5.7.172