49.145.6.19 - IPInfo

Basic Info

City: Legazpi

Region: Bicol

Country: Philippines

Internet Service Provider: DSL

Hostname: unknown

Organization: Philippine Long Distance Telephone Company

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Sun, 21 Jul 2019 07:35:19 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 01:21:18

Comments on same subnet:

IP	Type	Details	Datetime
49.145.68.83	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-02 15:13:16
49.145.65.243	attackspam	Unauthorized connection attempt from IP address 49.145.65.243 on Port 445(SMB)	2020-07-10 16:27:24
49.145.65.27	attackbots	Unauthorized connection attempt from IP address 49.145.65.27 on Port 445(SMB)	2020-01-31 21:09:02
49.145.6.116	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 25-01-2020 04:55:14.	2020-01-25 14:36:27
49.145.64.197	attackbots	1579149913 - 01/16/2020 05:45:13 Host: 49.145.64.197/49.145.64.197 Port: 445 TCP Blocked	2020-01-16 19:50:08
49.145.60.96	attackbots	Unauthorized connection attempt from IP address 49.145.60.96 on Port 445(SMB)	2020-01-04 02:53:31
49.145.64.88	attack	1576996129 - 12/22/2019 07:28:49 Host: 49.145.64.88/49.145.64.88 Port: 445 TCP Blocked	2019-12-22 16:32:15
49.145.62.156	attackspam	Unauthorized connection attempt detected from IP address 49.145.62.156 to port 445	2019-12-11 21:31:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.6.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61063
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.6.19.			IN	A

;; AUTHORITY SECTION:
.			2236	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072101 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 22 01:21:06 CST 2019
;; MSG SIZE  rcvd: 115

Host info

19.6.145.49.in-addr.arpa domain name pointer dsl.49.145.6.19.pldt.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
19.6.145.49.in-addr.arpa	name = dsl.49.145.6.19.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.247.98.115	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-23 01:49:10
138.197.151.213	attack	2020-04-22T13:53:29.154583librenms sshd[3140]: Invalid user oh from 138.197.151.213 port 55278 2020-04-22T13:53:31.166537librenms sshd[3140]: Failed password for invalid user oh from 138.197.151.213 port 55278 ssh2 2020-04-22T14:00:28.903566librenms sshd[4054]: Invalid user yc from 138.197.151.213 port 49564 ...	2020-04-23 01:41:09
223.230.85.19	attackbots	Email rejected due to spam filtering	2020-04-23 01:16:22
140.143.136.89	attackspambots	Apr 22 16:37:13 Invalid user qb from 140.143.136.89 port 51180	2020-04-23 01:40:41
120.92.42.123	attack	"Unauthorized connection attempt on SSHD detected"	2020-04-23 01:50:16
54.38.55.52	attack	Apr 22 19:09:35 santamaria sshd\[15049\]: Invalid user ih from 54.38.55.52 Apr 22 19:09:35 santamaria sshd\[15049\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.55.52 Apr 22 19:09:37 santamaria sshd\[15049\]: Failed password for invalid user ih from 54.38.55.52 port 59750 ssh2 ...	2020-04-23 01:36:02
124.239.218.188	attack	20 attempts against mh-ssh on echoip	2020-04-23 01:37:52
123.207.94.252	attackbots	Apr 22 18:03:03 nextcloud sshd\[8836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.94.252 user=root Apr 22 18:03:05 nextcloud sshd\[8836\]: Failed password for root from 123.207.94.252 port 43781 ssh2 Apr 22 18:04:47 nextcloud sshd\[11277\]: Invalid user admin1 from 123.207.94.252 Apr 22 18:04:47 nextcloud sshd\[11277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.94.252	2020-04-23 01:14:43
49.114.143.90	attackspam	Apr 22 16:55:50 ArkNodeAT sshd\[18851\]: Invalid user admin from 49.114.143.90 Apr 22 16:55:50 ArkNodeAT sshd\[18851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.114.143.90 Apr 22 16:55:52 ArkNodeAT sshd\[18851\]: Failed password for invalid user admin from 49.114.143.90 port 50616 ssh2	2020-04-23 01:53:04
152.136.198.76	attack	Apr 22 18:40:19 legacy sshd[22180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.198.76 Apr 22 18:40:21 legacy sshd[22180]: Failed password for invalid user sa from 152.136.198.76 port 35494 ssh2 Apr 22 18:42:55 legacy sshd[22261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.198.76 ...	2020-04-23 01:45:02
58.84.57.137	attackbots	Honeypot attack, port: 445, PTR: 137-57.netsolutioninc.com.	2020-04-23 01:24:10
190.246.155.29	attack	(sshd) Failed SSH login from 190.246.155.29 (AR/Argentina/29-155-246-190.fibertel.com.ar): 5 in the last 3600 secs	2020-04-23 01:21:07
27.50.19.173	attackbotsspam	Unauthorized connection attempt from IP address 27.50.19.173 on Port 445(SMB)	2020-04-23 01:54:11
46.172.220.171	attackspam	Honeypot attack, port: 445, PTR: pool.sevtele.com.	2020-04-23 01:55:06
77.247.108.77	attackspambots	Unauthorized connection attempt detected from IP address 77.247.108.77 to port 81 [T]	2020-04-23 01:31:58

Recently Reported IPs

223.207.247.101	124.47.159.152	134.104.225.20	1.46.70.128
97.44.108.140	186.90.140.168	53.0.208.115	115.73.154.1
115.66.16.252	91.105.176.45	2003:e0:172f:6474:58b7:5414:a23b:62b6	110.136.254.202
172.239.0.193	66.196.8.9	105.196.76.155	103.84.36.78
6.68.136.129	129.6.196.19	2003:d8:5bfa:3900:5dd2:e85d:689a:e20e	103.78.224.24