Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Switzerland

Internet Service Provider: Valaiscom AG

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attack
Nov 17 23:39:25 srv206 sshd[19546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18-49-145-5.dyn.cable.fcom.ch  user=root
Nov 17 23:39:28 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2
Nov 17 23:39:29 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2
Nov 17 23:39:25 srv206 sshd[19546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18-49-145-5.dyn.cable.fcom.ch  user=root
Nov 17 23:39:28 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2
Nov 17 23:39:29 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2
...
2019-11-18 09:13:26
attackspambots
Oct 12 08:02:13 MK-Soft-Root1 sshd[21815]: Failed password for root from 5.145.49.18 port 58792 ssh2
Oct 12 08:02:16 MK-Soft-Root1 sshd[21815]: Failed password for root from 5.145.49.18 port 58792 ssh2
...
2019-10-12 15:51:13
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.145.49.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22468
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.145.49.18.			IN	A

;; AUTHORITY SECTION:
.			545	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101200 1800 900 604800 86400

;; Query time: 221 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 12 15:51:08 CST 2019
;; MSG SIZE  rcvd: 115
Host info
18.49.145.5.in-addr.arpa domain name pointer 18-49-145-5.dyn.cable.fcom.ch.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
18.49.145.5.in-addr.arpa	name = 18-49-145-5.dyn.cable.fcom.ch.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
61.163.2.246 attackspam
Brute force attack to crack SMTP password (port 25 / 587)
2019-07-04 01:59:43
93.100.124.110 attackbotsspam
" "
2019-07-04 02:02:37
103.75.238.1 attackspam
Triggered by Fail2Ban at Ares web server
2019-07-04 01:44:42
46.101.242.117 attack
Jul  3 18:40:54 Proxmox sshd\[27267\]: Invalid user cms from 46.101.242.117 port 45974
Jul  3 18:40:54 Proxmox sshd\[27267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.242.117
Jul  3 18:40:57 Proxmox sshd\[27267\]: Failed password for invalid user cms from 46.101.242.117 port 45974 ssh2
Jul  3 18:43:36 Proxmox sshd\[29476\]: Invalid user zw from 46.101.242.117 port 49862
Jul  3 18:43:36 Proxmox sshd\[29476\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.242.117
Jul  3 18:43:37 Proxmox sshd\[29476\]: Failed password for invalid user zw from 46.101.242.117 port 49862 ssh2
2019-07-04 01:46:31
189.168.101.193 attackspam
Honeypot attack, port: 445, PTR: dsl-189-168-101-193-dyn.prod-infinitum.com.mx.
2019-07-04 02:13:49
69.117.214.80 attackbotsspam
Jul  3 09:21:33 localhost kernel: [13404286.718336] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=69.117.214.80 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x40 TTL=117 ID=27432 DF PROTO=TCP SPT=58420 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 
Jul  3 09:21:33 localhost kernel: [13404286.718365] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=69.117.214.80 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x40 TTL=117 ID=27432 DF PROTO=TCP SPT=58420 DPT=8291 SEQ=1156774006 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405B40103030201010402) 
Jul  3 09:21:39 localhost kernel: [13404292.792808] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=69.117.214.80 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x40 TTL=117 ID=1156 DF PROTO=TCP SPT=58420 DPT=8291 WINDOW=8192 RES=0x00 SYN URGP=0 
Jul  3 09:21:39 localhost kernel: [13404292.792839] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=69.117.
2019-07-04 01:31:30
98.196.40.40 attack
RDP Scan
2019-07-04 01:35:41
178.204.57.84 attackspam
Jul  3 15:14:54 shared06 sshd[32345]: Invalid user admin from 178.204.57.84
Jul  3 15:14:54 shared06 sshd[32345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.204.57.84
Jul  3 15:14:56 shared06 sshd[32345]: Failed password for invalid user admin from 178.204.57.84 port 39533 ssh2
Jul  3 15:14:58 shared06 sshd[32345]: Failed password for invalid user admin from 178.204.57.84 port 39533 ssh2
Jul  3 15:15:00 shared06 sshd[32345]: Failed password for invalid user admin from 178.204.57.84 port 39533 ssh2
Jul  3 15:15:02 shared06 sshd[32345]: Failed password for invalid user admin from 178.204.57.84 port 39533 ssh2
Jul  3 15:15:04 shared06 sshd[32345]: Failed password for invalid user admin from 178.204.57.84 port 39533 ssh2
Jul  3 15:15:06 shared06 sshd[32345]: Failed password for invalid user admin from 178.204.57.84 port 39533 ssh2
Jul  3 15:15:06 shared06 sshd[32345]: error: maximum authentication attempts exceeded for invali........
-------------------------------
2019-07-04 01:37:50
187.109.39.232 attackbotsspam
Jul  3 16:20:30 srv-4 sshd\[11899\]: Invalid user admin from 187.109.39.232
Jul  3 16:20:30 srv-4 sshd\[11899\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.109.39.232
Jul  3 16:20:32 srv-4 sshd\[11899\]: Failed password for invalid user admin from 187.109.39.232 port 35302 ssh2
...
2019-07-04 01:49:10
62.167.15.204 attackspambots
''
2019-07-04 02:06:50
47.254.135.232 attackspambots
Jul  3 15:21:33 www sshd\[21775\]: Invalid user serveur from 47.254.135.232 port 48454
...
2019-07-04 01:34:47
200.209.174.38 attackspam
Jul  3 15:20:41 fr01 sshd[27489]: Invalid user jboss from 200.209.174.38
Jul  3 15:20:41 fr01 sshd[27489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.209.174.38
Jul  3 15:20:41 fr01 sshd[27489]: Invalid user jboss from 200.209.174.38
Jul  3 15:20:43 fr01 sshd[27489]: Failed password for invalid user jboss from 200.209.174.38 port 32850 ssh2
...
2019-07-04 01:47:16
182.93.89.100 attackbots
firewall-block, port(s): 445/tcp
2019-07-04 02:07:40
222.186.15.28 attackbotsspam
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.28  user=root
Failed password for root from 222.186.15.28 port 50053 ssh2
Failed password for root from 222.186.15.28 port 50053 ssh2
Failed password for root from 222.186.15.28 port 50053 ssh2
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.28  user=root
2019-07-04 02:07:17
200.55.198.147 attackbotsspam
Jul  3 16:02:11 localhost sshd\[44569\]: Invalid user testuser from 200.55.198.147 port 49837
Jul  3 16:02:11 localhost sshd\[44569\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.55.198.147
...
2019-07-04 01:51:48

Recently Reported IPs

203.128.84.60 176.122.87.102 117.213.228.204 89.252.147.44
64.202.190.59 182.139.40.61 117.221.193.51 5.235.252.156
89.199.49.65 118.174.64.7 202.112.57.41 183.192.249.160
136.232.29.142 115.206.145.163 222.67.21.23 183.91.4.104
171.7.70.208 14.176.231.250 171.8.76.2 200.57.193.5