49.145.234.142

Basic Info

City: Agusan

Region: Northern Mindanao

Country: Philippines

Internet Service Provider: DSL

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 49.145.234.142 on Port 445(SMB)	2020-03-03 04:34:11

Comments on same subnet:

IP	Type	Details	Datetime
49.145.234.155	spam	Attempted to steal Steam Login Credentials.	2021-01-25 06:01:47
49.145.234.219	attackbots	Unauthorized connection attempt detected from IP address 49.145.234.219 to port 445 [T]	2020-07-01 19:10:24
49.145.234.192	attackbots	Jun 30 14:11:13 venus sshd[22221]: Did not receive identification string from 49.145.234.192 Jun 30 14:11:18 venus sshd[22233]: Invalid user system from 49.145.234.192 Jun 30 14:11:19 venus sshd[22233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.145.234.192 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=49.145.234.192	2020-07-01 01:29:27
49.145.234.204	attackbots	Unauthorized connection attempt from IP address 49.145.234.204 on Port 445(SMB)	2020-04-29 06:43:17
49.145.234.83	attackbotsspam	Honeypot attack, port: 445, PTR: dsl.49.145.234.83.pldt.net.	2020-03-26 05:46:30
49.145.234.253	attackspam	Unauthorized connection attempt from IP address 49.145.234.253 on Port 445(SMB)	2020-02-22 03:59:50
49.145.234.155	attackspam	Honeypot attack, port: 445, PTR: dsl.49.145.234.155.pldt.net.	2020-02-11 14:03:18
49.145.234.96	attackbotsspam	firewall-block, port(s): 445/tcp	2019-11-26 06:23:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.234.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5749
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.234.142.			IN	A

;; AUTHORITY SECTION:
.			387	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030201 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 03 04:34:08 CST 2020
;; MSG SIZE  rcvd: 118

Host info

142.234.145.49.in-addr.arpa domain name pointer dsl.49.145.234.142.pldt.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.234.145.49.in-addr.arpa	name = dsl.49.145.234.142.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
88.150.227.80	attackbotsspam	Massive hack attempts. Poison IP.	2019-11-26 09:04:10
91.187.194.243	attack	port scan/probe/communication attempt; port 23	2019-11-26 09:19:21
37.187.54.67	attackbots	Nov 26 01:34:32 server sshd\[2525\]: Invalid user duplacey from 37.187.54.67 Nov 26 01:34:32 server sshd\[2525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.ip-37-187-54.eu Nov 26 01:34:34 server sshd\[2525\]: Failed password for invalid user duplacey from 37.187.54.67 port 48054 ssh2 Nov 26 01:44:43 server sshd\[5090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.ip-37-187-54.eu user=root Nov 26 01:44:44 server sshd\[5090\]: Failed password for root from 37.187.54.67 port 43024 ssh2 ...	2019-11-26 08:58:50
190.9.132.202	attack	Automatic report - Banned IP Access	2019-11-26 09:10:20
116.236.185.64	attack	Nov 26 02:02:38 minden010 sshd[1973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.185.64 Nov 26 02:02:40 minden010 sshd[1973]: Failed password for invalid user shell from 116.236.185.64 port 8334 ssh2 Nov 26 02:09:38 minden010 sshd[10855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.185.64 ...	2019-11-26 09:25:11
113.173.45.30	attackbotsspam	Brute force attempt	2019-11-26 08:59:32
40.85.84.2	attack	Brute forcing RDP port 3389	2019-11-26 08:49:32
106.13.216.239	attackspambots	Nov 25 00:19:24 srv01 sshd[26069]: Invalid user testuser from 106.13.216.239 Nov 25 00:19:24 srv01 sshd[26069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Nov 25 00:19:26 srv01 sshd[26069]: Failed password for invalid user testuser from 106.13.216.239 port 55606 ssh2 Nov 25 00:19:26 srv01 sshd[26069]: Received disconnect from 106.13.216.239: 11: Bye Bye [preauth] Nov 25 00:50:18 srv01 sshd[27770]: Invalid user brhostnamez from 106.13.216.239 Nov 25 00:50:18 srv01 sshd[27770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.239 Nov 25 00:50:20 srv01 sshd[27770]: Failed password for invalid user brhostnamez from 106.13.216.239 port 35894 ssh2 Nov 25 00:50:20 srv01 sshd[27770]: Received disconnect from 106.13.216.239: 11: Bye Bye [preauth] Nov 25 00:57:44 srv01 sshd[28039]: Invalid user steuernagel from 106.13.216.239 Nov 25 00:57:44 srv01 sshd[28039]: pam_unix(........ -------------------------------	2019-11-26 08:50:20
140.255.7.144	attackbotsspam	2019-11-25 16:44:36 dovecot_login authenticator failed for (qagnwrh.com) [140.255.7.144]:64246 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-11-25 16:44:44 dovecot_login authenticator failed for (qagnwrh.com) [140.255.7.144]:49722 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-11-25 16:44:56 dovecot_login authenticator failed for (qagnwrh.com) [140.255.7.144]:52352 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) ...	2019-11-26 08:49:54
116.239.106.46	attack	Nov 24 21:05:43 eola postfix/smtpd[32636]: connect from unknown[116.239.106.46] Nov 24 21:05:43 eola postfix/smtpd[32636]: lost connection after AUTH from unknown[116.239.106.46] Nov 24 21:05:43 eola postfix/smtpd[32636]: disconnect from unknown[116.239.106.46] ehlo=1 auth=0/1 commands=1/2 Nov 24 21:05:43 eola postfix/smtpd[32636]: connect from unknown[116.239.106.46] Nov 24 21:05:45 eola postfix/smtpd[32636]: lost connection after AUTH from unknown[116.239.106.46] Nov 24 21:05:45 eola postfix/smtpd[32636]: disconnect from unknown[116.239.106.46] ehlo=1 auth=0/1 commands=1/2 Nov 24 21:05:45 eola postfix/smtpd[32636]: connect from unknown[116.239.106.46] Nov 24 21:05:46 eola postfix/smtpd[32636]: lost connection after AUTH from unknown[116.239.106.46] Nov 24 21:05:46 eola postfix/smtpd[32636]: disconnect from unknown[116.239.106.46] ehlo=1 auth=0/1 commands=1/2 Nov 24 21:05:47 eola postfix/smtpd[32636]: connect from unknown[116.239.106.46] Nov 24 21:05:47 eola postfix/sm........ -------------------------------	2019-11-26 09:16:45
106.12.200.13	attackspambots	Nov 26 01:40:45 OPSO sshd\[5014\]: Invalid user valentinelli from 106.12.200.13 port 45306 Nov 26 01:40:45 OPSO sshd\[5014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.200.13 Nov 26 01:40:46 OPSO sshd\[5014\]: Failed password for invalid user valentinelli from 106.12.200.13 port 45306 ssh2 Nov 26 01:47:21 OPSO sshd\[6041\]: Invalid user shaner from 106.12.200.13 port 49678 Nov 26 01:47:21 OPSO sshd\[6041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.200.13	2019-11-26 08:55:38
129.146.147.62	attack	Automatic report - Banned IP Access	2019-11-26 09:05:30
116.239.105.28	attack	Nov 24 21:07:14 eola postfix/smtpd[32636]: connect from unknown[116.239.105.28] Nov 24 21:07:15 eola postfix/smtpd[32636]: lost connection after AUTH from unknown[116.239.105.28] Nov 24 21:07:15 eola postfix/smtpd[32636]: disconnect from unknown[116.239.105.28] ehlo=1 auth=0/1 commands=1/2 Nov 24 21:07:16 eola postfix/smtpd[32636]: connect from unknown[116.239.105.28] Nov 24 21:07:16 eola postfix/smtpd[32636]: lost connection after AUTH from unknown[116.239.105.28] Nov 24 21:07:16 eola postfix/smtpd[32636]: disconnect from unknown[116.239.105.28] ehlo=1 auth=0/1 commands=1/2 Nov 24 21:07:16 eola postfix/smtpd[32636]: connect from unknown[116.239.105.28] Nov 24 21:07:17 eola postfix/smtpd[32636]: lost connection after AUTH from unknown[116.239.105.28] Nov 24 21:07:17 eola postfix/smtpd[32636]: disconnect from unknown[116.239.105.28] ehlo=1 auth=0/1 commands=1/2 Nov 24 21:07:17 eola postfix/smtpd[32636]: connect from unknown[116.239.105.28] Nov 24 21:07:18 eola postfix/sm........ -------------------------------	2019-11-26 09:20:35
103.90.200.29	attack	Chat Spam	2019-11-26 09:27:04
176.96.225.73	attackbots	0,55-01/25 [bc00/m29] PostRequest-Spammer scoring: essen	2019-11-26 08:50:52

Recently Reported IPs

197.254.196.78	217.97.189.122	183.166.98.165	146.199.66.34
87.146.210.181	64.225.156.74	35.22.156.217	182.76.80.70
200.244.21.218	80.199.142.23	91.36.70.178	156.204.53.137
27.93.33.162	119.248.65.75	180.20.242.251	125.39.181.33
148.246.169.101	186.35.29.155	92.127.55.77	87.5.244.141