5.145.49.18 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Switzerland

Internet Service Provider: Valaiscom AG

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Nov 17 23:39:25 srv206 sshd[19546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18-49-145-5.dyn.cable.fcom.ch user=root Nov 17 23:39:28 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2 Nov 17 23:39:29 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2 Nov 17 23:39:25 srv206 sshd[19546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18-49-145-5.dyn.cable.fcom.ch user=root Nov 17 23:39:28 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2 Nov 17 23:39:29 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2 ...	2019-11-18 09:13:26
attackspambots	Oct 12 08:02:13 MK-Soft-Root1 sshd[21815]: Failed password for root from 5.145.49.18 port 58792 ssh2 Oct 12 08:02:16 MK-Soft-Root1 sshd[21815]: Failed password for root from 5.145.49.18 port 58792 ssh2 ...	2019-10-12 15:51:13

Type

Details

Datetime

attack

Nov 17 23:39:25 srv206 sshd[19546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18-49-145-5.dyn.cable.fcom.ch  user=root
Nov 17 23:39:28 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2
Nov 17 23:39:29 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2
Nov 17 23:39:25 srv206 sshd[19546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18-49-145-5.dyn.cable.fcom.ch  user=root
Nov 17 23:39:28 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2
Nov 17 23:39:29 srv206 sshd[19546]: Failed password for root from 5.145.49.18 port 52757 ssh2
...

2019-11-18 09:13:26

attackspambots

Oct 12 08:02:13 MK-Soft-Root1 sshd[21815]: Failed password for root from 5.145.49.18 port 58792 ssh2
Oct 12 08:02:16 MK-Soft-Root1 sshd[21815]: Failed password for root from 5.145.49.18 port 58792 ssh2
...

2019-10-12 15:51:13

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.145.49.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22468
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.145.49.18.			IN	A

;; AUTHORITY SECTION:
.			545	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101200 1800 900 604800 86400

;; Query time: 221 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 12 15:51:08 CST 2019
;; MSG SIZE  rcvd: 115

Host info

18.49.145.5.in-addr.arpa domain name pointer 18-49-145-5.dyn.cable.fcom.ch.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
18.49.145.5.in-addr.arpa	name = 18-49-145-5.dyn.cable.fcom.ch.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
84.244.180.7	attackbotsspam	2019-11-08T14:19:56.184677mail01 postfix/smtpd[24723]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-08T14:20:01.247115mail01 postfix/smtpd[31373]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-08T14:23:31.334072mail01 postfix/smtpd[24723]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-08 21:26:21
203.99.110.214	attackbots	Absender hat Spam-Falle ausgel?st	2019-11-08 21:36:35
139.99.97.46	attackspam	fail2ban honeypot	2019-11-08 21:20:25
186.250.220.190	attackspambots	[ER hit] Tried to deliver spam. Already well known.	2019-11-08 21:42:03
210.177.54.141	attackspambots	Nov 8 13:33:14 srv1 sshd[31512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.177.54.141 Nov 8 13:33:16 srv1 sshd[31512]: Failed password for invalid user prom from 210.177.54.141 port 57532 ssh2 ...	2019-11-08 21:12:35
184.30.210.217	attackbots	11/08/2019-14:04:47.515869 184.30.210.217 Protocol: 6 SURICATA TLS invalid record/traffic	2019-11-08 21:14:36
210.65.138.65	attackspambots	Nov 8 13:26:57 mout sshd[4301]: Invalid user temp from 210.65.138.65 port 60394	2019-11-08 21:27:22
179.185.25.153	attack	Absender hat Spam-Falle ausgel?st	2019-11-08 21:45:35
181.189.221.245	attackbotsspam	Absender hat Spam-Falle ausgel?st	2019-11-08 21:45:03
201.28.8.163	attackbotsspam	$f2bV_matches_ltvn	2019-11-08 21:13:06
195.112.216.10	attackspambots	Absender hat Spam-Falle ausgel?st	2019-11-08 21:38:56
41.216.186.89	attackbotsspam	[07/Nov/2019:01:57:32 -0500] "\x03" Blank UA	2019-11-08 21:16:02
182.18.188.132	attackbots	Nov 8 07:21:12 localhost sshd\[6784\]: Invalid user ts3srv from 182.18.188.132 port 36724 Nov 8 07:21:12 localhost sshd\[6784\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.18.188.132 Nov 8 07:21:13 localhost sshd\[6784\]: Failed password for invalid user ts3srv from 182.18.188.132 port 36724 ssh2	2019-11-08 21:15:08
131.161.204.202	attackspambots	Absender hat Spam-Falle ausgel?st	2019-11-08 21:50:40
121.54.164.151	attack	Absender hat Spam-Falle ausgel?st	2019-11-08 21:51:08

Recently Reported IPs

203.128.84.60	176.122.87.102	117.213.228.204	89.252.147.44
64.202.190.59	182.139.40.61	117.221.193.51	5.235.252.156
89.199.49.65	118.174.64.7	202.112.57.41	183.192.249.160
136.232.29.142	115.206.145.163	222.67.21.23	183.91.4.104
171.7.70.208	14.176.231.250	171.8.76.2	200.57.193.5