49.145.6.19 - IPInfo

Basic Info

City: Legazpi

Region: Bicol

Country: Philippines

Internet Service Provider: DSL

Hostname: unknown

Organization: Philippine Long Distance Telephone Company

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Sun, 21 Jul 2019 07:35:19 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 01:21:18

Comments on same subnet:

IP	Type	Details	Datetime
49.145.68.83	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-02 15:13:16
49.145.65.243	attackspam	Unauthorized connection attempt from IP address 49.145.65.243 on Port 445(SMB)	2020-07-10 16:27:24
49.145.65.27	attackbots	Unauthorized connection attempt from IP address 49.145.65.27 on Port 445(SMB)	2020-01-31 21:09:02
49.145.6.116	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 25-01-2020 04:55:14.	2020-01-25 14:36:27
49.145.64.197	attackbots	1579149913 - 01/16/2020 05:45:13 Host: 49.145.64.197/49.145.64.197 Port: 445 TCP Blocked	2020-01-16 19:50:08
49.145.60.96	attackbots	Unauthorized connection attempt from IP address 49.145.60.96 on Port 445(SMB)	2020-01-04 02:53:31
49.145.64.88	attack	1576996129 - 12/22/2019 07:28:49 Host: 49.145.64.88/49.145.64.88 Port: 445 TCP Blocked	2019-12-22 16:32:15
49.145.62.156	attackspam	Unauthorized connection attempt detected from IP address 49.145.62.156 to port 445	2019-12-11 21:31:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.6.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61063
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.6.19.			IN	A

;; AUTHORITY SECTION:
.			2236	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072101 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 22 01:21:06 CST 2019
;; MSG SIZE  rcvd: 115

Host info

19.6.145.49.in-addr.arpa domain name pointer dsl.49.145.6.19.pldt.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
19.6.145.49.in-addr.arpa	name = dsl.49.145.6.19.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.147.144.35	attack	SMB Server BruteForce Attack	2020-03-21 14:19:20
181.62.248.12	attackbotsspam	Invalid user li from 181.62.248.12 port 38114	2020-03-21 14:14:29
141.98.10.137	attackspambots	Rude login attack (14 tries in 1d)	2020-03-21 13:51:02
222.186.180.41	attack	$f2bV_matches	2020-03-21 13:36:30
160.238.163.29	attackbots	Mar 21 04:39:37 mail.srvfarm.net postfix/smtpd[3198442]: NOQUEUE: reject: RCPT from unknown[160.238.163.29]: 554 5.7.1 Service unavailable; Client host [160.238.163.29] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?160.238.163.29; from= to= proto=ESMTP helo=<160-238-163-29.pelikan.net.br> Mar 21 04:39:38 mail.srvfarm.net postfix/smtpd[3198442]: NOQUEUE: reject: RCPT from unknown[160.238.163.29]: 554 5.7.1 Service unavailable; Client host [160.238.163.29] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?160.238.163.29; from= to= proto=ESMTP helo=<160-238-163-29.pelikan.net.br> Mar 21 04:39:39 mail.srvfarm.net postfix/smtpd[3198442]: NOQUEUE: reject: RCPT from unknown[160.238.163.29]: 554 5.7.1 Service unavailable; Client host [160.238.163.29] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?160.238.163.29; from=	2020-03-21 13:43:52
69.195.235.241	attackspam	Mar 21 06:19:11 mail sshd\[32216\]: Invalid user tkissftp from 69.195.235.241 Mar 21 06:19:11 mail sshd\[32216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.195.235.241 Mar 21 06:19:13 mail sshd\[32216\]: Failed password for invalid user tkissftp from 69.195.235.241 port 55852 ssh2 ...	2020-03-21 13:49:55
111.231.132.94	attackspam	Invalid user service from 111.231.132.94 port 51022	2020-03-21 14:01:20
92.222.94.46	attack	Invalid user wuwei from 92.222.94.46 port 50282	2020-03-21 14:17:43
104.248.126.170	attackspam	$f2bV_matches	2020-03-21 13:51:44
185.36.81.78	attackspam	Mar 21 06:17:53 srv01 postfix/smtpd\[18939\]: warning: unknown\[185.36.81.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 21 06:23:13 srv01 postfix/smtpd\[19868\]: warning: unknown\[185.36.81.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 21 06:24:47 srv01 postfix/smtpd\[19868\]: warning: unknown\[185.36.81.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 21 06:25:20 srv01 postfix/smtpd\[18939\]: warning: unknown\[185.36.81.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 21 06:34:26 srv01 postfix/smtpd\[19868\]: warning: unknown\[185.36.81.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-21 13:48:21
178.68.23.63	attack	Fri Mar 20 21:53:34 2020 - Child process 69561 handling connection Fri Mar 20 21:53:34 2020 - New connection from: 178.68.23.63:54331 Fri Mar 20 21:53:34 2020 - Sending data to client: [Login: ] Fri Mar 20 21:54:07 2020 - Child aborting Fri Mar 20 21:54:07 2020 - Reporting IP address: 178.68.23.63 - mflag: 0	2020-03-21 14:01:02
221.228.97.218	attackspam	221.228.97.218 was recorded 7 times by 1 hosts attempting to connect to the following ports: 53413. Incident counter (4h, 24h, all-time): 7, 41, 1464	2020-03-21 13:36:57
134.73.51.192	attackspambots	Mar 21 05:38:58 mail.srvfarm.net postfix/smtpd[3238064]: NOQUEUE: reject: RCPT from unknown[134.73.51.192]: 554 5.7.1 Service unavailable; Client host [134.73.51.192] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?134.73.51.192; from= to= proto=ESMTP helo= Mar 21 05:38:58 mail.srvfarm.net postfix/smtpd[3238065]: NOQUEUE: reject: RCPT from unknown[134.73.51.192]: 554 5.7.1 Service unavailable; Client host [134.73.51.192] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?134.73.51.192; from= to= proto=ESMTP helo= Mar 21 05:38:58 mail.srvfarm.net postfix/smtpd[3238066]: NOQUEUE: reject: RCPT from unknown[134.73.51.192]: 554 5.7.1 Service unavailable; Client host [134.73.51.192] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?134.73.51.192; from=	2020-03-21 13:44:29
151.80.41.205	attackbots	Invalid user impala from 151.80.41.205 port 39238	2020-03-21 14:19:43
195.231.3.188	attack	Mar 21 06:09:50 mail.srvfarm.net postfix/smtpd[3251480]: warning: unknown[195.231.3.188]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 21 06:09:50 mail.srvfarm.net postfix/smtpd[3251480]: lost connection after AUTH from unknown[195.231.3.188] Mar 21 06:10:22 mail.srvfarm.net postfix/smtpd[3238945]: warning: unknown[195.231.3.188]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 21 06:10:22 mail.srvfarm.net postfix/smtpd[3238945]: lost connection after AUTH from unknown[195.231.3.188] Mar 21 06:12:02 mail.srvfarm.net postfix/smtpd[3251482]: lost connection after CONNECT from unknown[195.231.3.188]	2020-03-21 13:43:20

Recently Reported IPs

223.207.247.101	124.47.159.152	134.104.225.20	1.46.70.128
97.44.108.140	186.90.140.168	53.0.208.115	115.73.154.1
115.66.16.252	91.105.176.45	2003:e0:172f:6474:58b7:5414:a23b:62b6	110.136.254.202
172.239.0.193	66.196.8.9	105.196.76.155	103.84.36.78
6.68.136.129	129.6.196.19	2003:d8:5bfa:3900:5dd2:e85d:689a:e20e	103.78.224.24