City: Kowloon
Region: Kowloon City
Country: Hong Kong
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 59.149.147.168 | attackspambots | Unauthorized connection attempt detected from IP address 59.149.147.168 to port 23 [T] |
2020-08-14 03:13:58 |
| 59.149.147.168 | attackbotsspam | Unauthorized connection attempt detected from IP address 59.149.147.168 to port 23 [T] |
2020-08-10 12:37:25 |
| 59.149.147.168 | attack | Unauthorized connection attempt detected from IP address 59.149.147.168 to port 23 [T] |
2020-07-22 00:38:10 |
| 59.149.147.168 | attack | Telnetd brute force attack detected by fail2ban |
2020-06-08 18:59:22 |
| 59.149.141.204 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/59.149.141.204/ HK - 1H : (139) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : HK NAME ASN : ASN9269 IP : 59.149.141.204 CIDR : 59.149.128.0/18 PREFIX COUNT : 310 UNIQUE IP COUNT : 1386240 WYKRYTE ATAKI Z ASN9269 : 1H - 2 3H - 3 6H - 6 12H - 12 24H - 25 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery |
2019-09-30 04:05:13 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.149.14.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36710
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.149.14.136. IN A
;; AUTHORITY SECTION:
. 314 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020021001 1800 900 604800 86400
;; Query time: 645 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 04:41:29 CST 2020
;; MSG SIZE rcvd: 117136.14.149.59.in-addr.arpa domain name pointer 059149014136.ctinets.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
136.14.149.59.in-addr.arpa name = 059149014136.ctinets.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 51.38.37.89 | attack | Sep 30 15:02:50 abendstille sshd\[26006\]: Invalid user pcguest from 51.38.37.89 Sep 30 15:02:50 abendstille sshd\[26006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.37.89 Sep 30 15:02:52 abendstille sshd\[26006\]: Failed password for invalid user pcguest from 51.38.37.89 port 58492 ssh2 Sep 30 15:06:37 abendstille sshd\[29346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.37.89 user=root Sep 30 15:06:39 abendstille sshd\[29346\]: Failed password for root from 51.38.37.89 port 38018 ssh2 ... |
2020-10-01 00:18:49 |
| 104.130.11.162 | attackbots | Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-30T16:20:24Z |
2020-10-01 00:30:45 |
| 92.63.197.95 | attackspambots | ET CINS Active Threat Intelligence Poor Reputation IP group 80 - port: 40379 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-01 00:11:00 |
| 60.191.29.210 | attack | DATE:2020-09-30 17:33:27, IP:60.191.29.210, PORT:ssh SSH brute force auth (docker-dc) |
2020-10-01 00:37:46 |
| 157.230.163.6 | attackbots | Sep 30 17:18:33 inter-technics sshd[27105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6 user=root Sep 30 17:18:35 inter-technics sshd[27105]: Failed password for root from 157.230.163.6 port 34460 ssh2 Sep 30 17:21:57 inter-technics sshd[27283]: Invalid user oliver from 157.230.163.6 port 52452 Sep 30 17:21:57 inter-technics sshd[27283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6 Sep 30 17:21:57 inter-technics sshd[27283]: Invalid user oliver from 157.230.163.6 port 52452 Sep 30 17:21:59 inter-technics sshd[27283]: Failed password for invalid user oliver from 157.230.163.6 port 52452 ssh2 ... |
2020-10-01 00:02:17 |
| 157.230.36.192 | attack | Port Scan: TCP/443 |
2020-10-01 00:34:56 |
| 159.65.50.6 | attackbots | 159.65.50.6 is unauthorized and has been banned by fail2ban |
2020-10-01 00:33:09 |
| 31.163.203.54 | attackspambots | Sep 30 19:11:18 hosting sshd[14788]: Invalid user nagios from 31.163.203.54 port 50388 ... |
2020-10-01 00:26:29 |
| 45.129.33.41 | attackspambots | ET DROP Dshield Block Listed Source group 1 - port: 44112 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-01 00:24:28 |
| 49.232.148.100 | attack | Sep 30 12:52:19 ns382633 sshd\[1061\]: Invalid user master from 49.232.148.100 port 35538 Sep 30 12:52:19 ns382633 sshd\[1061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.148.100 Sep 30 12:52:21 ns382633 sshd\[1061\]: Failed password for invalid user master from 49.232.148.100 port 35538 ssh2 Sep 30 13:07:27 ns382633 sshd\[4250\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.148.100 user=root Sep 30 13:07:29 ns382633 sshd\[4250\]: Failed password for root from 49.232.148.100 port 58026 ssh2 |
2020-10-01 00:19:37 |
| 45.129.33.58 | attackspambots | ET DROP Dshield Block Listed Source group 1 - port: 55504 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-01 00:23:07 |
| 45.65.230.151 | attackspambots | Sep 29 17:36:49 firewall sshd[8152]: Invalid user admin from 45.65.230.151 Sep 29 17:36:51 firewall sshd[8152]: Failed password for invalid user admin from 45.65.230.151 port 60544 ssh2 Sep 29 17:36:54 firewall sshd[8159]: Invalid user admin from 45.65.230.151 ... |
2020-10-01 00:25:13 |
| 104.206.128.74 | attackspam |
|
2020-10-01 00:07:38 |
| 84.242.176.138 | attackspambots | [N1.H1.VM1] Port Scanner Detected Blocked by UFW |
2020-10-01 00:13:22 |
| 36.7.80.168 | attack |
|
2020-10-01 00:25:56 |