59.149.138.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Broadband Network Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	unauthorized connection attempt	2020-02-02 16:50:13

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.149.138.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62766
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.149.138.52.			IN	A

;; AUTHORITY SECTION:
.			435	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020200 1800 900 604800 86400

;; Query time: 128 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 02 16:50:10 CST 2020
;; MSG SIZE  rcvd: 117

Host info

52.138.149.59.in-addr.arpa domain name pointer 059149138052.ctinets.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.138.149.59.in-addr.arpa	name = 059149138052.ctinets.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.100.155.154	attackbotsspam	$f2bV_matches	2020-05-14 23:56:27
106.54.91.157	attack	2020-05-14 08:02:09 server sshd[20036]: Failed password for invalid user elasticsearch from 106.54.91.157 port 58304 ssh2	2020-05-15 00:00:18
45.143.223.29	attackbotsspam	spam	2020-05-15 00:08:01
146.164.51.61	attack	May 13 01:43:13 efa1 sshd[2040]: Invalid user ubuntu from 146.164.51.61 May 13 01:43:13 efa1 sshd[2040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.164.51.61 May 13 01:43:15 efa1 sshd[2040]: Failed password for invalid user ubuntu from 146.164.51.61 port 36512 ssh2 May 13 01:50:20 efa1 sshd[5129]: Invalid user tfcserver from 146.164.51.61 May 13 01:50:20 efa1 sshd[5129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.164.51.61 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=146.164.51.61	2020-05-15 00:09:53
95.211.209.158	attack	Disguised BOT - reads robots with FAKE UA then ignores 403 returns and tries scraping anyway - as ever from this ISP/COUNTRY	2020-05-14 23:59:19
112.85.42.178	attackbotsspam	$f2bV_matches	2020-05-15 00:02:00
49.88.112.111	attackbotsspam	May 14 12:20:26 plusreed sshd[24901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.111 user=root May 14 12:20:28 plusreed sshd[24901]: Failed password for root from 49.88.112.111 port 48733 ssh2 ...	2020-05-15 00:21:20
181.165.160.62	attackbotsspam	Unauthorized connection attempt detected from IP address 181.165.160.62 to port 23	2020-05-15 00:28:26
2.180.64.205	attackspambots	2.180.64.205 - - \[14/May/2020:05:25:37 -0700\] "POST /index.php/admin/sales_order/ HTTP/1.1" 404 204592.180.64.205 - - \[14/May/2020:05:25:41 -0700\] "POST /index.php/admin/ HTTP/1.1" 404 204112.180.64.205 - - \[14/May/2020:05:25:42 -0700\] "POST /index.php/admin HTTP/1.1" 404 20407 ...	2020-05-14 23:51:58
149.56.15.98	attackspambots	May 14 16:50:13 ns382633 sshd\[13525\]: Invalid user gtadmin from 149.56.15.98 port 32898 May 14 16:50:13 ns382633 sshd\[13525\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.15.98 May 14 16:50:15 ns382633 sshd\[13525\]: Failed password for invalid user gtadmin from 149.56.15.98 port 32898 ssh2 May 14 16:53:56 ns382633 sshd\[13846\]: Invalid user help from 149.56.15.98 port 33684 May 14 16:53:56 ns382633 sshd\[13846\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.15.98	2020-05-15 00:05:36
222.186.175.183	attackbotsspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-05-14 23:55:47
167.114.115.33	attackspam	Invalid user gmodserver from 167.114.115.33 port 35146	2020-05-15 00:23:28
5.53.114.209	attack	May 13 01:34:04 v26 sshd[27531]: Invalid user ti from 5.53.114.209 port 19826 May 13 01:34:06 v26 sshd[27531]: Failed password for invalid user ti from 5.53.114.209 port 19826 ssh2 May 13 01:34:06 v26 sshd[27531]: Received disconnect from 5.53.114.209 port 19826:11: Bye Bye [preauth] May 13 01:34:06 v26 sshd[27531]: Disconnected from 5.53.114.209 port 19826 [preauth] May 13 01:36:16 v26 sshd[27866]: Invalid user gustav from 5.53.114.209 port 23662 May 13 01:36:18 v26 sshd[27866]: Failed password for invalid user gustav from 5.53.114.209 port 23662 ssh2 May 13 01:36:18 v26 sshd[27866]: Received disconnect from 5.53.114.209 port 23662:11: Bye Bye [preauth] May 13 01:36:18 v26 sshd[27866]: Disconnected from 5.53.114.209 port 23662 [preauth] May 13 01:37:08 v26 sshd[27991]: Invalid user tomcat from 5.53.114.209 port 26071 May 13 01:37:09 v26 sshd[27991]: Failed password for invalid user tomcat from 5.53.114.209 port 26071 ssh2 May 13 01:37:09 v26 sshd[27991]: Received disco........ -------------------------------	2020-05-15 00:03:48
170.150.72.28	attackbotsspam	May 14 17:40:24 abendstille sshd\[30555\]: Invalid user wkadmin from 170.150.72.28 May 14 17:40:24 abendstille sshd\[30555\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.150.72.28 May 14 17:40:26 abendstille sshd\[30555\]: Failed password for invalid user wkadmin from 170.150.72.28 port 57800 ssh2 May 14 17:44:47 abendstille sshd\[2253\]: Invalid user event from 170.150.72.28 May 14 17:44:47 abendstille sshd\[2253\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.150.72.28 ...	2020-05-14 23:47:41
222.186.42.155	attack	May 14 18:18:56 vmanager6029 sshd\[1743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root May 14 18:18:59 vmanager6029 sshd\[1739\]: error: PAM: Authentication failure for root from 222.186.42.155 May 14 18:19:10 vmanager6029 sshd\[1750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root	2020-05-15 00:27:20

Recently Reported IPs

177.82.139.144	177.137.118.156	75.223.161.107	109.214.186.246
78.41.175.161	234.149.5.166	45.76.33.186	169.243.124.66
85.238.99.206	80.150.225.235	46.146.213.166	91.195.248.111
63.155.175.43	78.69.235.188	44.227.136.252	103.92.225.8
200.7.176.3	111.229.45.193	103.70.129.138	178.55.167.3