Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Broadband Network Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:
Type Details Datetime
attackbots
Dec  7 05:45:14 vps666546 sshd\[10454\]: Invalid user zhou from 59.149.237.145 port 36813
Dec  7 05:45:14 vps666546 sshd\[10454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Dec  7 05:45:17 vps666546 sshd\[10454\]: Failed password for invalid user zhou from 59.149.237.145 port 36813 ssh2
Dec  7 05:55:03 vps666546 sshd\[10786\]: Invalid user evelynp from 59.149.237.145 port 42455
Dec  7 05:55:03 vps666546 sshd\[10786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
...
2019-12-07 13:11:38
attackbots
Nov 28 09:02:50 vps647732 sshd[10058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Nov 28 09:02:52 vps647732 sshd[10058]: Failed password for invalid user verville from 59.149.237.145 port 35445 ssh2
...
2019-11-28 16:17:09
attack
$f2bV_matches
2019-11-14 08:10:18
attackbots
Oct 29 20:12:00 venus sshd\[7148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145  user=root
Oct 29 20:12:02 venus sshd\[7148\]: Failed password for root from 59.149.237.145 port 35090 ssh2
Oct 29 20:17:17 venus sshd\[7232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145  user=root
...
2019-10-30 06:44:40
attack
Oct  3 13:54:20 venus sshd\[17809\]: Invalid user iy from 59.149.237.145 port 47974
Oct  3 13:54:20 venus sshd\[17809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Oct  3 13:54:22 venus sshd\[17809\]: Failed password for invalid user iy from 59.149.237.145 port 47974 ssh2
...
2019-10-03 22:09:45
attackbots
Sep 28 02:12:23 ny01 sshd[7227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Sep 28 02:12:24 ny01 sshd[7227]: Failed password for invalid user sahora from 59.149.237.145 port 40683 ssh2
Sep 28 02:18:03 ny01 sshd[8269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
2019-09-28 14:18:31
attack
2019-09-18 17:05:48,619 fail2ban.actions        \[946\]: NOTICE  \[sshd\] Ban 59.149.237.145
2019-09-18 17:36:13,352 fail2ban.actions        \[946\]: NOTICE  \[sshd\] Ban 59.149.237.145
2019-09-18 18:10:49,465 fail2ban.actions        \[946\]: NOTICE  \[sshd\] Ban 59.149.237.145
2019-09-18 18:45:22,213 fail2ban.actions        \[946\]: NOTICE  \[sshd\] Ban 59.149.237.145
2019-09-18 19:19:56,076 fail2ban.actions        \[946\]: NOTICE  \[sshd\] Ban 59.149.237.145
...
2019-09-23 00:37:14
attackbots
Sep 21 12:36:43 lcdev sshd\[27736\]: Invalid user changeme from 59.149.237.145
Sep 21 12:36:43 lcdev sshd\[27736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com
Sep 21 12:36:45 lcdev sshd\[27736\]: Failed password for invalid user changeme from 59.149.237.145 port 53624 ssh2
Sep 21 12:42:33 lcdev sshd\[28435\]: Invalid user HANACWI888\* from 59.149.237.145
Sep 21 12:42:33 lcdev sshd\[28435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com
2019-09-22 06:54:35
attackbotsspam
F2B jail: sshd. Time: 2019-09-16 22:38:21, Reported by: VKReport
2019-09-17 07:18:33
attackbotsspam
Sep 11 23:20:51 markkoudstaal sshd[28727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Sep 11 23:20:53 markkoudstaal sshd[28727]: Failed password for invalid user git from 59.149.237.145 port 36410 ssh2
Sep 11 23:29:25 markkoudstaal sshd[29459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
2019-09-12 05:33:29
attackbots
Sep 10 12:07:03 eddieflores sshd\[11088\]: Invalid user bitnami from 59.149.237.145
Sep 10 12:07:03 eddieflores sshd\[11088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com
Sep 10 12:07:05 eddieflores sshd\[11088\]: Failed password for invalid user bitnami from 59.149.237.145 port 49393 ssh2
Sep 10 12:15:29 eddieflores sshd\[11992\]: Invalid user usuario from 59.149.237.145
Sep 10 12:15:29 eddieflores sshd\[11992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com
2019-09-11 06:31:05
attackbots
Sep 10 04:08:09 hcbbdb sshd\[7007\]: Invalid user ubuntu from 59.149.237.145
Sep 10 04:08:09 hcbbdb sshd\[7007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com
Sep 10 04:08:11 hcbbdb sshd\[7007\]: Failed password for invalid user ubuntu from 59.149.237.145 port 59805 ssh2
Sep 10 04:16:41 hcbbdb sshd\[7917\]: Invalid user oracle from 59.149.237.145
Sep 10 04:16:41 hcbbdb sshd\[7917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com
2019-09-10 12:31:52
attackbotsspam
2019-09-06T00:25:05.597588  sshd[3540]: Invalid user ubuntu from 59.149.237.145 port 48159
2019-09-06T00:25:05.610571  sshd[3540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
2019-09-06T00:25:05.597588  sshd[3540]: Invalid user ubuntu from 59.149.237.145 port 48159
2019-09-06T00:25:07.583879  sshd[3540]: Failed password for invalid user ubuntu from 59.149.237.145 port 48159 ssh2
2019-09-06T00:31:17.377662  sshd[3620]: Invalid user vncuser from 59.149.237.145 port 42600
...
2019-09-06 07:30:29
attackbots
$f2bV_matches
2019-08-30 00:38:04
attack
Aug 27 14:29:29 vps647732 sshd[22517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Aug 27 14:29:31 vps647732 sshd[22517]: Failed password for invalid user matt from 59.149.237.145 port 38299 ssh2
...
2019-08-27 22:41:50
attackspam
Aug 25 09:17:53 XXX sshd[11251]: Invalid user postgres from 59.149.237.145 port 33819
2019-08-25 21:41:45
attackbots
2019-08-24T03:12:08.668062  sshd[22905]: Invalid user peng from 59.149.237.145 port 46973
2019-08-24T03:12:08.683875  sshd[22905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
2019-08-24T03:12:08.668062  sshd[22905]: Invalid user peng from 59.149.237.145 port 46973
2019-08-24T03:12:10.175888  sshd[22905]: Failed password for invalid user peng from 59.149.237.145 port 46973 ssh2
2019-08-24T03:17:57.712170  sshd[22992]: Invalid user qhsupport from 59.149.237.145 port 42128
...
2019-08-24 09:37:21
attack
Aug 18 19:02:49 MK-Soft-VM7 sshd\[32297\]: Invalid user martyn from 59.149.237.145 port 35045
Aug 18 19:02:49 MK-Soft-VM7 sshd\[32297\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Aug 18 19:02:52 MK-Soft-VM7 sshd\[32297\]: Failed password for invalid user martyn from 59.149.237.145 port 35045 ssh2
...
2019-08-19 03:45:03
attackbotsspam
Aug 16 08:38:19 eventyay sshd[29618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Aug 16 08:38:21 eventyay sshd[29618]: Failed password for invalid user gg from 59.149.237.145 port 48413 ssh2
Aug 16 08:44:34 eventyay sshd[31181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
...
2019-08-16 14:54:17
attackspam
Aug 15 09:24:55 MK-Soft-VM7 sshd\[24669\]: Invalid user csvn from 59.149.237.145 port 57397
Aug 15 09:24:55 MK-Soft-VM7 sshd\[24669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Aug 15 09:24:57 MK-Soft-VM7 sshd\[24669\]: Failed password for invalid user csvn from 59.149.237.145 port 57397 ssh2
...
2019-08-15 22:28:21
attackspambots
Aug  1 10:13:31 localhost sshd\[31446\]: Invalid user demo123 from 59.149.237.145 port 54405
Aug  1 10:13:31 localhost sshd\[31446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Aug  1 10:13:33 localhost sshd\[31446\]: Failed password for invalid user demo123 from 59.149.237.145 port 54405 ssh2
Aug  1 10:20:01 localhost sshd\[31606\]: Invalid user marketing1 from 59.149.237.145 port 52457
Aug  1 10:20:01 localhost sshd\[31606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
...
2019-08-01 21:25:52
attackbotsspam
2019-07-14T18:56:42.433317abusebot-4.cloudsearch.cf sshd\[16585\]: Invalid user prova from 59.149.237.145 port 36614
2019-07-15 04:32:41
attackspambots
2019-07-14T04:49:53.019219abusebot-4.cloudsearch.cf sshd\[13297\]: Invalid user peru from 59.149.237.145 port 34190
2019-07-14 12:53:28
attackbotsspam
Jul 12 22:09:41 MK-Soft-Root1 sshd\[17112\]: Invalid user tsbot from 59.149.237.145 port 43837
Jul 12 22:09:41 MK-Soft-Root1 sshd\[17112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Jul 12 22:09:44 MK-Soft-Root1 sshd\[17112\]: Failed password for invalid user tsbot from 59.149.237.145 port 43837 ssh2
...
2019-07-13 05:06:39
attack
Jul  9 19:34:16 server sshd\[216102\]: Invalid user dev from 59.149.237.145
Jul  9 19:34:16 server sshd\[216102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Jul  9 19:34:17 server sshd\[216102\]: Failed password for invalid user dev from 59.149.237.145 port 48910 ssh2
...
2019-07-10 08:39:33
attackbots
Jun 27 06:54:18 srv-4 sshd\[31229\]: Invalid user gui from 59.149.237.145
Jun 27 06:54:18 srv-4 sshd\[31229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145
Jun 27 06:54:20 srv-4 sshd\[31229\]: Failed password for invalid user gui from 59.149.237.145 port 54504 ssh2
...
2019-06-27 12:02:00
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.149.237.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7265
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.149.237.145.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062602 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 27 12:01:54 CST 2019
;; MSG SIZE  rcvd: 118
Host info
145.237.149.59.in-addr.arpa domain name pointer 059149237145.ctinets.com.
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
145.237.149.59.in-addr.arpa	name = 059149237145.ctinets.com.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
103.99.151.145 attackspam
Unauthorized connection attempt from IP address 103.99.151.145 on Port 445(SMB)
2019-11-26 23:35:32
114.219.84.68 attackspambots
SASL broute force
2019-11-26 23:05:16
111.11.5.118 attack
Unauthorised access (Nov 26) SRC=111.11.5.118 LEN=40 TTL=49 ID=16839 TCP DPT=23 WINDOW=3326 SYN 
Unauthorised access (Nov 25) SRC=111.11.5.118 LEN=40 TTL=49 ID=56547 TCP DPT=23 WINDOW=1041 SYN
2019-11-26 23:00:37
54.38.188.34 attackbotsspam
Nov 26 15:40:59 SilenceServices sshd[10078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.188.34
Nov 26 15:41:00 SilenceServices sshd[10078]: Failed password for invalid user christianj from 54.38.188.34 port 43242 ssh2
Nov 26 15:47:07 SilenceServices sshd[11707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.188.34
2019-11-26 23:03:41
182.61.138.112 attack
11/26/2019-09:46:39.433304 182.61.138.112 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-11-26 23:30:47
222.186.175.154 attackbotsspam
Nov 26 21:51:00 webhost01 sshd[2773]: Failed password for root from 222.186.175.154 port 3238 ssh2
Nov 26 21:51:14 webhost01 sshd[2773]: error: maximum authentication attempts exceeded for root from 222.186.175.154 port 3238 ssh2 [preauth]
...
2019-11-26 22:59:48
40.101.137.98 attackspam
TCP Port Scanning
2019-11-26 23:18:46
218.92.0.141 attack
Too many connections or unauthorized access detected from Arctic banned ip
2019-11-26 23:15:17
80.211.63.23 attackbots
WordPress login Brute force / Web App Attack on client site.
2019-11-26 22:59:10
159.89.160.91 attackspambots
Nov 26 16:01:23 sd-53420 sshd\[15153\]: User backup from 159.89.160.91 not allowed because none of user's groups are listed in AllowGroups
Nov 26 16:01:23 sd-53420 sshd\[15153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.160.91  user=backup
Nov 26 16:01:25 sd-53420 sshd\[15153\]: Failed password for invalid user backup from 159.89.160.91 port 50212 ssh2
Nov 26 16:08:47 sd-53420 sshd\[16620\]: User mysql from 159.89.160.91 not allowed because none of user's groups are listed in AllowGroups
Nov 26 16:08:47 sd-53420 sshd\[16620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.160.91  user=mysql
...
2019-11-26 23:22:50
117.82.206.67 attackspam
Nov 26 09:27:53 esmtp postfix/smtpd[10856]: lost connection after AUTH from unknown[117.82.206.67]
Nov 26 09:27:54 esmtp postfix/smtpd[11080]: lost connection after AUTH from unknown[117.82.206.67]
Nov 26 09:27:58 esmtp postfix/smtpd[10856]: lost connection after AUTH from unknown[117.82.206.67]
Nov 26 09:28:13 esmtp postfix/smtpd[10856]: lost connection after AUTH from unknown[117.82.206.67]
Nov 26 09:28:15 esmtp postfix/smtpd[11080]: lost connection after AUTH from unknown[117.82.206.67]

........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=117.82.206.67
2019-11-26 23:34:55
198.98.52.141 attackbots
Nov 26 14:47:10 localhost sshd\[25789\]: Invalid user user from 198.98.52.141 port 38680
Nov 26 14:47:10 localhost sshd\[25782\]: Invalid user vagrant from 198.98.52.141 port 38672
Nov 26 14:47:10 localhost sshd\[25788\]: Invalid user vsftp from 198.98.52.141 port 38684
...
2019-11-26 23:00:55
85.95.184.116 attack
Unauthorized connection attempt from IP address 85.95.184.116 on Port 445(SMB)
2019-11-26 23:28:06
203.112.130.102 attackspambots
Unauthorized connection attempt from IP address 203.112.130.102 on Port 445(SMB)
2019-11-26 23:16:07
178.128.31.218 attackbotsspam
WordPress login Brute force / Web App Attack on client site.
2019-11-26 22:58:58

Recently Reported IPs

110.139.80.22 95.218.32.236 180.242.177.234 220.189.119.8
54.177.213.229 24.48.230.191 42.118.107.76 138.186.114.111
27.50.22.130 117.86.76.217 14.231.165.214 119.28.49.72
41.208.65.125 204.183.207.165 97.91.164.66 113.178.92.240
114.143.166.90 182.232.156.83 52.200.37.224 1.36.112.154