103.133.139.53

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: www.linkchina.hk

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Invalid user matoti from 103.133.139.53 port 38568	2019-11-15 04:40:49
attack	$f2bV_matches	2019-11-11 15:50:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.133.139.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47346
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.133.139.53.			IN	A

;; AUTHORITY SECTION:
.			580	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111100 1800 900 604800 86400

;; Query time: 235 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 11 15:50:37 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 53.139.133.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.139.133.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.71.196.176	attackbots	Sep 17 10:31:02 inter-technics sshd[22833]: Invalid user mcedit from 167.71.196.176 port 48240 Sep 17 10:31:02 inter-technics sshd[22833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.196.176 Sep 17 10:31:02 inter-technics sshd[22833]: Invalid user mcedit from 167.71.196.176 port 48240 Sep 17 10:31:04 inter-technics sshd[22833]: Failed password for invalid user mcedit from 167.71.196.176 port 48240 ssh2 Sep 17 10:35:32 inter-technics sshd[23072]: Invalid user jboss from 167.71.196.176 port 60844 ...	2020-09-17 17:01:00
198.251.83.248	attackbotsspam	2020-09-16T23:37:55+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-09-17 17:13:52
115.98.236.25	attack	TCP (SYN) 115.98.236.25:62341 -> port 23, len 44	2020-09-17 17:17:57
137.52.12.251	attackbots	tcp 3389 rdp	2020-09-17 17:25:29
79.177.4.233	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-17 17:12:18
181.129.14.218	attackspam	SSH Brute-force	2020-09-17 17:07:30
176.195.139.130	attack	Honeypot attack, port: 445, PTR: ip-176-195-139-130.bb.netbynet.ru.	2020-09-17 17:24:57
176.235.216.155	attack	[17/Sep/2020:05:17:03 +0200] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-17 17:00:44
5.135.224.151	attackspam	$f2bV_matches	2020-09-17 17:01:31
164.132.46.14	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-17 17:02:01
192.95.6.110	attackspam	Sep 16 23:05:00 gw1 sshd[3605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.95.6.110 Sep 16 23:05:02 gw1 sshd[3605]: Failed password for invalid user dmdba from 192.95.6.110 port 44900 ssh2 ...	2020-09-17 17:09:12
89.178.206.37	attack	TCP (SYN) 89.178.206.37:48182 -> port 8080, len 44	2020-09-17 17:08:23
191.235.73.232	attackbotsspam	Sep 16 20:50:55 mail.srvfarm.net postfix/smtps/smtpd[3653364]: warning: unknown[191.235.73.232]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 20:52:17 mail.srvfarm.net postfix/smtps/smtpd[3655341]: warning: unknown[191.235.73.232]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 20:53:41 mail.srvfarm.net postfix/smtps/smtpd[3653364]: warning: unknown[191.235.73.232]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 20:55:08 mail.srvfarm.net postfix/smtps/smtpd[3653365]: warning: unknown[191.235.73.232]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 20:56:28 mail.srvfarm.net postfix/smtps/smtpd[3656359]: warning: unknown[191.235.73.232]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-17 17:29:59
111.229.251.83	attack	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-09-17 17:16:32
45.55.60.215	attack	Attempts to probe web pages for vulnerable PHP or other applications	2020-09-17 17:26:26

Recently Reported IPs

14.32.92.96	5.54.13.139	154.223.40.244	61.176.242.152
177.69.221.75	178.128.84.200	31.222.195.30	200.61.163.27
52.38.205.63	171.100.190.195	61.149.136.46	94.130.14.92
180.183.180.6	194.108.0.86	152.250.28.63	122.121.105.217
167.71.219.231	61.184.253.154	45.136.109.243	123.124.158.23