59.149.237.145

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Broadband Network Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Dec 7 05:45:14 vps666546 sshd\[10454\]: Invalid user zhou from 59.149.237.145 port 36813 Dec 7 05:45:14 vps666546 sshd\[10454\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Dec 7 05:45:17 vps666546 sshd\[10454\]: Failed password for invalid user zhou from 59.149.237.145 port 36813 ssh2 Dec 7 05:55:03 vps666546 sshd\[10786\]: Invalid user evelynp from 59.149.237.145 port 42455 Dec 7 05:55:03 vps666546 sshd\[10786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 ...	2019-12-07 13:11:38
attackbots	Nov 28 09:02:50 vps647732 sshd[10058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Nov 28 09:02:52 vps647732 sshd[10058]: Failed password for invalid user verville from 59.149.237.145 port 35445 ssh2 ...	2019-11-28 16:17:09
attack	$f2bV_matches	2019-11-14 08:10:18
attackbots	Oct 29 20:12:00 venus sshd\[7148\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 user=root Oct 29 20:12:02 venus sshd\[7148\]: Failed password for root from 59.149.237.145 port 35090 ssh2 Oct 29 20:17:17 venus sshd\[7232\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 user=root ...	2019-10-30 06:44:40
attack	Oct 3 13:54:20 venus sshd\[17809\]: Invalid user iy from 59.149.237.145 port 47974 Oct 3 13:54:20 venus sshd\[17809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Oct 3 13:54:22 venus sshd\[17809\]: Failed password for invalid user iy from 59.149.237.145 port 47974 ssh2 ...	2019-10-03 22:09:45
attackbots	Sep 28 02:12:23 ny01 sshd[7227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Sep 28 02:12:24 ny01 sshd[7227]: Failed password for invalid user sahora from 59.149.237.145 port 40683 ssh2 Sep 28 02:18:03 ny01 sshd[8269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145	2019-09-28 14:18:31
attack	2019-09-18 17:05:48,619 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 59.149.237.145 2019-09-18 17:36:13,352 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 59.149.237.145 2019-09-18 18:10:49,465 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 59.149.237.145 2019-09-18 18:45:22,213 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 59.149.237.145 2019-09-18 19:19:56,076 fail2ban.actions \[946\]: NOTICE \[sshd\] Ban 59.149.237.145 ...	2019-09-23 00:37:14
attackbots	Sep 21 12:36:43 lcdev sshd\[27736\]: Invalid user changeme from 59.149.237.145 Sep 21 12:36:43 lcdev sshd\[27736\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com Sep 21 12:36:45 lcdev sshd\[27736\]: Failed password for invalid user changeme from 59.149.237.145 port 53624 ssh2 Sep 21 12:42:33 lcdev sshd\[28435\]: Invalid user HANACWI888\* from 59.149.237.145 Sep 21 12:42:33 lcdev sshd\[28435\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com	2019-09-22 06:54:35
attackbotsspam	F2B jail: sshd. Time: 2019-09-16 22:38:21, Reported by: VKReport	2019-09-17 07:18:33
attackbotsspam	Sep 11 23:20:51 markkoudstaal sshd[28727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Sep 11 23:20:53 markkoudstaal sshd[28727]: Failed password for invalid user git from 59.149.237.145 port 36410 ssh2 Sep 11 23:29:25 markkoudstaal sshd[29459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145	2019-09-12 05:33:29
attackbots	Sep 10 12:07:03 eddieflores sshd\[11088\]: Invalid user bitnami from 59.149.237.145 Sep 10 12:07:03 eddieflores sshd\[11088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com Sep 10 12:07:05 eddieflores sshd\[11088\]: Failed password for invalid user bitnami from 59.149.237.145 port 49393 ssh2 Sep 10 12:15:29 eddieflores sshd\[11992\]: Invalid user usuario from 59.149.237.145 Sep 10 12:15:29 eddieflores sshd\[11992\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com	2019-09-11 06:31:05
attackbots	Sep 10 04:08:09 hcbbdb sshd\[7007\]: Invalid user ubuntu from 59.149.237.145 Sep 10 04:08:09 hcbbdb sshd\[7007\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com Sep 10 04:08:11 hcbbdb sshd\[7007\]: Failed password for invalid user ubuntu from 59.149.237.145 port 59805 ssh2 Sep 10 04:16:41 hcbbdb sshd\[7917\]: Invalid user oracle from 59.149.237.145 Sep 10 04:16:41 hcbbdb sshd\[7917\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=059149237145.ctinets.com	2019-09-10 12:31:52
attackbotsspam	2019-09-06T00:25:05.597588 sshd[3540]: Invalid user ubuntu from 59.149.237.145 port 48159 2019-09-06T00:25:05.610571 sshd[3540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 2019-09-06T00:25:05.597588 sshd[3540]: Invalid user ubuntu from 59.149.237.145 port 48159 2019-09-06T00:25:07.583879 sshd[3540]: Failed password for invalid user ubuntu from 59.149.237.145 port 48159 ssh2 2019-09-06T00:31:17.377662 sshd[3620]: Invalid user vncuser from 59.149.237.145 port 42600 ...	2019-09-06 07:30:29
attackbots	$f2bV_matches	2019-08-30 00:38:04
attack	Aug 27 14:29:29 vps647732 sshd[22517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Aug 27 14:29:31 vps647732 sshd[22517]: Failed password for invalid user matt from 59.149.237.145 port 38299 ssh2 ...	2019-08-27 22:41:50
attackspam	Aug 25 09:17:53 XXX sshd[11251]: Invalid user postgres from 59.149.237.145 port 33819	2019-08-25 21:41:45
attackbots	2019-08-24T03:12:08.668062 sshd[22905]: Invalid user peng from 59.149.237.145 port 46973 2019-08-24T03:12:08.683875 sshd[22905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 2019-08-24T03:12:08.668062 sshd[22905]: Invalid user peng from 59.149.237.145 port 46973 2019-08-24T03:12:10.175888 sshd[22905]: Failed password for invalid user peng from 59.149.237.145 port 46973 ssh2 2019-08-24T03:17:57.712170 sshd[22992]: Invalid user qhsupport from 59.149.237.145 port 42128 ...	2019-08-24 09:37:21
attack	Aug 18 19:02:49 MK-Soft-VM7 sshd\[32297\]: Invalid user martyn from 59.149.237.145 port 35045 Aug 18 19:02:49 MK-Soft-VM7 sshd\[32297\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Aug 18 19:02:52 MK-Soft-VM7 sshd\[32297\]: Failed password for invalid user martyn from 59.149.237.145 port 35045 ssh2 ...	2019-08-19 03:45:03
attackbotsspam	Aug 16 08:38:19 eventyay sshd[29618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Aug 16 08:38:21 eventyay sshd[29618]: Failed password for invalid user gg from 59.149.237.145 port 48413 ssh2 Aug 16 08:44:34 eventyay sshd[31181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 ...	2019-08-16 14:54:17
attackspam	Aug 15 09:24:55 MK-Soft-VM7 sshd\[24669\]: Invalid user csvn from 59.149.237.145 port 57397 Aug 15 09:24:55 MK-Soft-VM7 sshd\[24669\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Aug 15 09:24:57 MK-Soft-VM7 sshd\[24669\]: Failed password for invalid user csvn from 59.149.237.145 port 57397 ssh2 ...	2019-08-15 22:28:21
attackspambots	Aug 1 10:13:31 localhost sshd\[31446\]: Invalid user demo123 from 59.149.237.145 port 54405 Aug 1 10:13:31 localhost sshd\[31446\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Aug 1 10:13:33 localhost sshd\[31446\]: Failed password for invalid user demo123 from 59.149.237.145 port 54405 ssh2 Aug 1 10:20:01 localhost sshd\[31606\]: Invalid user marketing1 from 59.149.237.145 port 52457 Aug 1 10:20:01 localhost sshd\[31606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 ...	2019-08-01 21:25:52
attackbotsspam	2019-07-14T18:56:42.433317abusebot-4.cloudsearch.cf sshd\[16585\]: Invalid user prova from 59.149.237.145 port 36614	2019-07-15 04:32:41
attackspambots	2019-07-14T04:49:53.019219abusebot-4.cloudsearch.cf sshd\[13297\]: Invalid user peru from 59.149.237.145 port 34190	2019-07-14 12:53:28
attackbotsspam	Jul 12 22:09:41 MK-Soft-Root1 sshd\[17112\]: Invalid user tsbot from 59.149.237.145 port 43837 Jul 12 22:09:41 MK-Soft-Root1 sshd\[17112\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Jul 12 22:09:44 MK-Soft-Root1 sshd\[17112\]: Failed password for invalid user tsbot from 59.149.237.145 port 43837 ssh2 ...	2019-07-13 05:06:39
attack	Jul 9 19:34:16 server sshd\[216102\]: Invalid user dev from 59.149.237.145 Jul 9 19:34:16 server sshd\[216102\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Jul 9 19:34:17 server sshd\[216102\]: Failed password for invalid user dev from 59.149.237.145 port 48910 ssh2 ...	2019-07-10 08:39:33
attackbots	Jun 27 06:54:18 srv-4 sshd\[31229\]: Invalid user gui from 59.149.237.145 Jun 27 06:54:18 srv-4 sshd\[31229\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Jun 27 06:54:20 srv-4 sshd\[31229\]: Failed password for invalid user gui from 59.149.237.145 port 54504 ssh2 ...	2019-06-27 12:02:00

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.149.237.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7265
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.149.237.145.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062602 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 27 12:01:54 CST 2019
;; MSG SIZE  rcvd: 118

Host info

145.237.149.59.in-addr.arpa domain name pointer 059149237145.ctinets.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
145.237.149.59.in-addr.arpa	name = 059149237145.ctinets.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
173.212.225.148	attackbots	WordPress XMLRPC scan :: 173.212.225.148 0.192 BYPASS [21/Sep/2019:13:47:17 1000] www.[censored_1] "POST /xmlrpc.php HTTP/1.1" 200 382 "https://www.[censored_1]/" "PHP/7.2.19"	2019-09-21 20:04:06
112.237.3.141	attack	Unauthorised access (Sep 21) SRC=112.237.3.141 LEN=40 TTL=49 ID=10565 TCP DPT=8080 WINDOW=61389 SYN	2019-09-21 20:23:50
150.109.63.147	attackbotsspam	Invalid user mpsp from 150.109.63.147 port 42718	2019-09-21 20:06:57
145.239.102.181	attackbots	Sep 20 17:42:48 hiderm sshd\[11121\]: Invalid user temp from 145.239.102.181 Sep 20 17:42:48 hiderm sshd\[11121\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip181.ip-145-239-102.eu Sep 20 17:42:50 hiderm sshd\[11121\]: Failed password for invalid user temp from 145.239.102.181 port 50112 ssh2 Sep 20 17:46:44 hiderm sshd\[11648\]: Invalid user oracle from 145.239.102.181 Sep 20 17:46:44 hiderm sshd\[11648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip181.ip-145-239-102.eu	2019-09-21 20:23:20
110.133.139.98	attackspam	Unauthorised access (Sep 21) SRC=110.133.139.98 LEN=40 TTL=47 ID=4463 TCP DPT=8080 WINDOW=47197 SYN Unauthorised access (Sep 21) SRC=110.133.139.98 LEN=40 TTL=47 ID=3559 TCP DPT=8080 WINDOW=47197 SYN	2019-09-21 19:54:42
54.36.150.42	attackspambots	Automatic report - Banned IP Access	2019-09-21 19:50:03
36.78.92.136	attackbotsspam	19/9/20@23:47:38: FAIL: Alarm-Intrusion address from=36.78.92.136 ...	2019-09-21 19:52:07
171.15.164.164	attack	scan r	2019-09-21 20:33:30
112.35.88.241	attack	Invalid user zhouh from 112.35.88.241 port 45484	2019-09-21 20:18:56
84.193.142.76	attackspambots	Automatic report - Banned IP Access	2019-09-21 20:21:20
2607:f1c0:866:c89d:c646:3559:2d38:0	attackbots	10 attempts against mh-misc-ban on heat.magehost.pro	2019-09-21 19:52:34
103.69.218.114	attack	Sep 21 05:46:30 smtp postfix/smtpd[61469]: NOQUEUE: reject: RCPT from unknown[103.69.218.114]: 554 5.7.1 Service unavailable; Client host [103.69.218.114] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?103.69.218.114; from= to= proto=ESMTP helo= ...	2019-09-21 20:36:48
177.207.226.104	attackspambots	Sep 21 12:05:30 venus sshd\[20190\]: Invalid user n3xus1t from 177.207.226.104 port 48158 Sep 21 12:05:30 venus sshd\[20190\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.207.226.104 Sep 21 12:05:32 venus sshd\[20190\]: Failed password for invalid user n3xus1t from 177.207.226.104 port 48158 ssh2 ...	2019-09-21 20:22:45
139.59.95.216	attackbots	Sep 20 21:34:19 web1 sshd\[26288\]: Invalid user sonar from 139.59.95.216 Sep 20 21:34:19 web1 sshd\[26288\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.95.216 Sep 20 21:34:21 web1 sshd\[26288\]: Failed password for invalid user sonar from 139.59.95.216 port 54214 ssh2 Sep 20 21:40:28 web1 sshd\[26959\]: Invalid user admin from 139.59.95.216 Sep 20 21:40:28 web1 sshd\[26959\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.95.216	2019-09-21 20:18:18
222.186.180.20	attack	SSH Brute-Force reported by Fail2Ban	2019-09-21 20:13:49

Recently Reported IPs

110.139.80.22	95.218.32.236	180.242.177.234	220.189.119.8
54.177.213.229	24.48.230.191	42.118.107.76	138.186.114.111
27.50.22.130	117.86.76.217	14.231.165.214	119.28.49.72
41.208.65.125	204.183.207.165	97.91.164.66	113.178.92.240
114.143.166.90	182.232.156.83	52.200.37.224	1.36.112.154