49.145.227.117

Basic Info

City: Cagayan de Oro

Region: Northern Mindanao

Country: Philippines

Internet Service Provider: Philippine Long Distance Telephone Company

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	scamming impersonating piece of useless 30 virgin. only thing can do is hack steam accounts and steal people's items.	2020-04-12 18:13:34
attackspambots	smb 445	2020-02-12 04:25:45

Comments on same subnet:

IP	Type	Details	Datetime
49.145.227.39	attack	Tried to steal my Steam account	2020-08-03 23:23:05
49.145.227.190	attack	Attempted connection to port 445.	2020-07-25 02:33:46
49.145.227.39	attackbotsspam	20/4/12@08:08:16: FAIL: Alarm-Network address from=49.145.227.39 20/4/12@08:08:16: FAIL: Alarm-Network address from=49.145.227.39 ...	2020-04-12 21:57:22
49.145.227.162	attack	steam scammer	2020-04-12 18:18:03
49.145.227.162	spam	Scams through steam	2020-04-10 01:04:07
49.145.227.215	attack	Honeypot attack, port: 445, PTR: dsl.49.145.227.215.pldt.net.	2020-01-14 04:03:20
49.145.227.9	attack	20/1/12@23:52:01: FAIL: Alarm-Network address from=49.145.227.9 ...	2020-01-13 15:01:32
49.145.227.136	attackspambots	Unauthorized connection attempt detected from IP address 49.145.227.136 to port 445	2020-01-02 22:40:35
49.145.227.195	attackbots	1577773451 - 12/31/2019 07:24:11 Host: 49.145.227.195/49.145.227.195 Port: 445 TCP Blocked	2019-12-31 18:27:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.227.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36334
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.227.117.			IN	A

;; AUTHORITY SECTION:
.			558	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021102 1800 900 604800 86400

;; Query time: 143 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 04:25:42 CST 2020
;; MSG SIZE  rcvd: 118

Host info

117.227.145.49.in-addr.arpa domain name pointer dsl.49.145.227.117.pldt.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
117.227.145.49.in-addr.arpa	name = dsl.49.145.227.117.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
173.49.208.205	attackspam	Port scan	2019-09-05 01:16:21
118.24.122.36	attack	Sep 4 18:54:42 markkoudstaal sshd[19197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.122.36 Sep 4 18:54:44 markkoudstaal sshd[19197]: Failed password for invalid user hvisage from 118.24.122.36 port 55882 ssh2 Sep 4 19:00:48 markkoudstaal sshd[19711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.122.36	2019-09-05 01:19:44
212.200.83.219	attackspam	Looking for /magento2017.sql.zip, Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0	2019-09-05 01:44:48
202.52.59.10	attackspambots	8080/tcp [2019-09-04]1pkt	2019-09-05 01:15:52
88.219.126.219	attackspam	Aug 29 10:14:06 itv-usvr-01 sshd[10952]: Invalid user pi from 88.219.126.219 Aug 29 10:14:06 itv-usvr-01 sshd[10954]: Invalid user pi from 88.219.126.219 Aug 29 10:14:06 itv-usvr-01 sshd[10952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.219.126.219 Aug 29 10:14:06 itv-usvr-01 sshd[10952]: Invalid user pi from 88.219.126.219 Aug 29 10:14:08 itv-usvr-01 sshd[10952]: Failed password for invalid user pi from 88.219.126.219 port 46216 ssh2	2019-09-05 01:13:32
104.248.254.222	attack	Sep 4 18:48:22 ubuntu-2gb-nbg1-dc3-1 sshd[27419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.254.222 Sep 4 18:48:24 ubuntu-2gb-nbg1-dc3-1 sshd[27419]: Failed password for invalid user lilian from 104.248.254.222 port 45204 ssh2 ...	2019-09-05 01:43:20
139.215.217.181	attackspambots	Sep 4 19:29:41 OPSO sshd\[15566\]: Invalid user photon from 139.215.217.181 port 37775 Sep 4 19:29:41 OPSO sshd\[15566\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.215.217.181 Sep 4 19:29:43 OPSO sshd\[15566\]: Failed password for invalid user photon from 139.215.217.181 port 37775 ssh2 Sep 4 19:34:12 OPSO sshd\[16619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.215.217.181 user=root Sep 4 19:34:14 OPSO sshd\[16619\]: Failed password for root from 139.215.217.181 port 54373 ssh2	2019-09-05 01:51:35
41.190.92.194	attackbotsspam	Sep 4 18:34:13 root sshd[28427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.190.92.194 Sep 4 18:34:15 root sshd[28427]: Failed password for invalid user carlton from 41.190.92.194 port 35102 ssh2 Sep 4 18:40:28 root sshd[28538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.190.92.194 ...	2019-09-05 01:03:06
86.138.254.246	attackbots	Automatic report - Port Scan Attack	2019-09-05 01:14:08
1.179.146.156	attack	Sep 4 12:18:55 aat-srv002 sshd[21199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.146.156 Sep 4 12:18:56 aat-srv002 sshd[21199]: Failed password for invalid user stream from 1.179.146.156 port 56392 ssh2 Sep 4 12:24:27 aat-srv002 sshd[21370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.146.156 Sep 4 12:24:29 aat-srv002 sshd[21370]: Failed password for invalid user sammy from 1.179.146.156 port 41448 ssh2 ...	2019-09-05 01:36:18
62.210.105.116	attackspambots	Sep 4 06:52:19 lcprod sshd\[5970\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62-210-105-116.rev.poneytelecom.eu user=root Sep 4 06:52:22 lcprod sshd\[5970\]: Failed password for root from 62.210.105.116 port 36871 ssh2 Sep 4 06:56:17 lcprod sshd\[6304\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62-210-105-116.rev.poneytelecom.eu user=root Sep 4 06:56:20 lcprod sshd\[6304\]: Failed password for root from 62.210.105.116 port 35995 ssh2 Sep 4 06:56:23 lcprod sshd\[6304\]: Failed password for root from 62.210.105.116 port 35995 ssh2	2019-09-05 01:25:46
78.195.178.119	attackbots	Automatic report - Banned IP Access	2019-09-05 01:16:48
89.189.190.163	attackspam	Sep 4 19:44:28 pkdns2 sshd\[63887\]: Invalid user lv from 89.189.190.163Sep 4 19:44:30 pkdns2 sshd\[63887\]: Failed password for invalid user lv from 89.189.190.163 port 39482 ssh2Sep 4 19:48:41 pkdns2 sshd\[64067\]: Invalid user legal1 from 89.189.190.163Sep 4 19:48:44 pkdns2 sshd\[64067\]: Failed password for invalid user legal1 from 89.189.190.163 port 54038 ssh2Sep 4 19:53:02 pkdns2 sshd\[64307\]: Invalid user ftpuser2 from 89.189.190.163Sep 4 19:53:04 pkdns2 sshd\[64307\]: Failed password for invalid user ftpuser2 from 89.189.190.163 port 40376 ssh2 ...	2019-09-05 00:57:39
157.230.123.18	attackbots	2019-09-04T18:26:00.236213 sshd[16176]: Invalid user freeze from 157.230.123.18 port 44002 2019-09-04T18:26:00.249387 sshd[16176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.123.18 2019-09-04T18:26:00.236213 sshd[16176]: Invalid user freeze from 157.230.123.18 port 44002 2019-09-04T18:26:01.920139 sshd[16176]: Failed password for invalid user freeze from 157.230.123.18 port 44002 ssh2 2019-09-04T18:30:03.740134 sshd[16293]: Invalid user info from 157.230.123.18 port 59938 ...	2019-09-05 00:54:14
93.115.241.194	attackspam	" "	2019-09-05 01:20:21

Recently Reported IPs

183.83.145.154	218.22.250.122	123.9.174.71	183.191.74.136
63.22.96.198	35.223.84.6	155.185.177.28	179.125.152.244
24.185.46.22	32.171.141.2	207.183.172.135	31.54.66.81
209.93.248.166	142.237.158.40	191.121.138.208	27.79.188.219
110.39.228.74	194.184.104.199	95.40.132.207	157.98.248.124