49.149.103.157

Basic Info

City: unknown

Region: unknown

Country: Philippines

Internet Service Provider: Philippine Long Distance Telephone Company

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Honeypot attack, port: 445, PTR: dsl.49.149.103.157.pldt.net.	2020-06-21 22:27:36
attackspambots	Unauthorized connection attempt from IP address 49.149.103.157 on Port 445(SMB)	2020-06-19 21:40:20

Comments on same subnet:

IP	Type	Details	Datetime
49.149.103.45	attack	This user hacked my Roblox account pls find his address and arrest him	2025-01-11 21:43:35
49.149.103.45	attack	This user hacked my Roblox account pls find his address	2025-01-11 21:43:13
49.149.103.45	attack	This user hacked my Roblox account pls find his address	2025-01-11 21:43:10
49.149.103.45	attack	This user hacked my Roblox account pls find his address	2025-01-11 21:42:59
49.149.103.91	attackspam	Unauthorized connection attempt from IP address 49.149.103.91 on Port 445(SMB)	2020-09-23 00:32:37
49.149.103.91	attackbots	Unauthorized connection attempt from IP address 49.149.103.91 on Port 445(SMB)	2020-09-22 16:33:42
49.149.103.72	attackbots	Honeypot attack, port: 445, PTR: dsl.49.149.103.72.pldt.net.	2020-01-27 19:18:40
49.149.103.45	attackbots	Unauthorized connection attempt from IP address 49.149.103.45 on Port 445(SMB)	2020-01-15 01:44:38
49.149.103.115	attack	1577514588 - 12/28/2019 07:29:48 Host: 49.149.103.115/49.149.103.115 Port: 445 TCP Blocked	2019-12-28 14:59:48
49.149.103.196	attack	Unauthorised access (Dec 1) SRC=49.149.103.196 LEN=52 TTL=117 ID=6555 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-02 02:23:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.149.103.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61164
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.149.103.157.			IN	A

;; AUTHORITY SECTION:
.			557	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061900 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 19 21:40:16 CST 2020
;; MSG SIZE  rcvd: 118

Host info

157.103.149.49.in-addr.arpa domain name pointer dsl.49.149.103.157.pldt.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.103.149.49.in-addr.arpa	name = dsl.49.149.103.157.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.249.195.147	attackspam	Jul 31 14:33:30 Host-KLAX-C postfix/smtpd[2071]: lost connection after EHLO from unknown[14.249.195.147] ...	2020-08-01 05:18:46
190.104.47.158	attack	jannisjulius.de 190.104.47.158 [31/Jul/2020:22:33:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4269 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" jannisjulius.de 190.104.47.158 [31/Jul/2020:22:33:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4269 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-08-01 05:17:09
78.46.61.245	attackspam	20 attempts against mh-misbehave-ban on milky	2020-08-01 05:53:34
218.92.0.215	attackspam	2020-08-01T00:30:23.411946lavrinenko.info sshd[32228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.215 user=root 2020-08-01T00:30:25.840438lavrinenko.info sshd[32228]: Failed password for root from 218.92.0.215 port 53461 ssh2 2020-08-01T00:30:23.411946lavrinenko.info sshd[32228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.215 user=root 2020-08-01T00:30:25.840438lavrinenko.info sshd[32228]: Failed password for root from 218.92.0.215 port 53461 ssh2 2020-08-01T00:30:30.058804lavrinenko.info sshd[32228]: Failed password for root from 218.92.0.215 port 53461 ssh2 ...	2020-08-01 05:39:08
82.81.215.149	attackspam	Automatic report - Banned IP Access	2020-08-01 05:40:32
174.135.156.170	attack	Jul 31 23:35:02 nextcloud sshd\[24701\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.135.156.170 user=root Jul 31 23:35:04 nextcloud sshd\[24701\]: Failed password for root from 174.135.156.170 port 36428 ssh2 Jul 31 23:40:11 nextcloud sshd\[30305\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.135.156.170 user=root	2020-08-01 05:50:23
122.51.195.237	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-31T20:30:34Z and 2020-07-31T20:32:50Z	2020-08-01 05:50:48
213.33.226.118	attackbotsspam	Aug 1 00:04:54 journals sshd\[48621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.33.226.118 user=root Aug 1 00:04:57 journals sshd\[48621\]: Failed password for root from 213.33.226.118 port 39924 ssh2 Aug 1 00:08:49 journals sshd\[48871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.33.226.118 user=root Aug 1 00:08:51 journals sshd\[48871\]: Failed password for root from 213.33.226.118 port 52074 ssh2 Aug 1 00:12:52 journals sshd\[49103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.33.226.118 user=root ...	2020-08-01 05:21:42
187.204.3.250	attackbotsspam	Jul 31 23:24:19 nextcloud sshd\[13273\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.204.3.250 user=root Jul 31 23:24:21 nextcloud sshd\[13273\]: Failed password for root from 187.204.3.250 port 51760 ssh2 Jul 31 23:28:24 nextcloud sshd\[17857\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.204.3.250 user=root	2020-08-01 05:40:01
134.209.96.131	attackbots	2020-07-31T22:32:05.928708vps751288.ovh.net sshd\[7576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.96.131 user=root 2020-07-31T22:32:08.141973vps751288.ovh.net sshd\[7576\]: Failed password for root from 134.209.96.131 port 55706 ssh2 2020-07-31T22:36:37.914823vps751288.ovh.net sshd\[7624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.96.131 user=root 2020-07-31T22:36:39.802088vps751288.ovh.net sshd\[7624\]: Failed password for root from 134.209.96.131 port 41220 ssh2 2020-07-31T22:41:09.653314vps751288.ovh.net sshd\[7678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.96.131 user=root	2020-08-01 05:26:53
223.68.169.180	attackspam	2020-07-31T21:31:17.778749shield sshd\[16292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.68.169.180 user=root 2020-07-31T21:31:19.620385shield sshd\[16292\]: Failed password for root from 223.68.169.180 port 47348 ssh2 2020-07-31T21:34:40.348762shield sshd\[17476\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.68.169.180 user=root 2020-07-31T21:34:42.390872shield sshd\[17476\]: Failed password for root from 223.68.169.180 port 39908 ssh2 2020-07-31T21:38:18.307914shield sshd\[19081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.68.169.180 user=root	2020-08-01 05:40:55
178.62.118.53	attackbotsspam	Jul 31 22:14:18 ns382633 sshd\[10776\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.118.53 user=root Jul 31 22:14:20 ns382633 sshd\[10776\]: Failed password for root from 178.62.118.53 port 35562 ssh2 Jul 31 22:23:59 ns382633 sshd\[12414\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.118.53 user=root Jul 31 22:24:01 ns382633 sshd\[12414\]: Failed password for root from 178.62.118.53 port 42319 ssh2 Jul 31 22:33:28 ns382633 sshd\[14164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.118.53 user=root	2020-08-01 05:19:23
183.62.25.218	attackbots	Jul 31 23:06:15 ip106 sshd[24319]: Failed password for root from 183.62.25.218 port 3099 ssh2 ...	2020-08-01 05:37:42
82.114.94.69	attackspam	Dovecot Invalid User Login Attempt.	2020-08-01 05:13:26
134.175.55.10	attack	Invalid user office2 from 134.175.55.10 port 36024	2020-08-01 05:22:01

Recently Reported IPs

162.213.251.87	119.116.13.121	104.219.248.88	84.141.246.67
81.133.24.24	79.137.80.110	78.138.157.42	68.65.122.236
54.38.65.215	176.65.114.96	104.219.248.45	199.188.201.24
176.67.81.9	123.181.62.247	7.52.218.122	100.36.131.254
231.4.101.151	231.209.179.181	103.129.195.196	135.0.128.165