175.139.16.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Malaysia

Internet Service Provider: Telekom Malaysia Berhad

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Lines containing failures of 175.139.16.53 Oct 18 13:25:41 omfg postfix-submission/smtpd[23676]: connect from unknown[175.139.16.53] Oct 18 13:25:42 omfg postfix-submission/smtpd[23677]: connect from unknown[175.139.16.53] Oct 18 13:25:44 omfg postfix-submission/smtpd[23679]: connect from unknown[175.139.16.53] Oct 18 13:25:44 omfg postfix-submission/smtpd[23680]: connect from unknown[175.139.16.53] Oct 18 13:25:45 omfg postfix-submission/smtpd[23676]: lost connection after CONNECT from unknown[175.139.16.53] Oct 18 13:25:45 omfg postfix-submission/smtpd[23676]: disconnect from unknown[175.139.16.53] commands=0/0 Oct 18 13:25:45 omfg postfix-submission/smtpd[23677]: lost connection after CONNECT from unknown[175.139.16.53] Oct 18 13:25:45 omfg postfix-submission/smtpd[23677]: disconnect from unknown[175.139.16.53] commands=0/0 Oct 18 13:25:45 omfg postfix-submission/smtpd[23679]: lost connection after CONNECT from unknown[175.139.16.53] Oct 18 13:25:45 omfg postfix-submi........ ------------------------------	2019-10-19 01:20:27

Type

Details

Datetime

attackspam

Lines containing failures of 175.139.16.53
Oct 18 13:25:41 omfg postfix-submission/smtpd[23676]: connect from unknown[175.139.16.53]
Oct 18 13:25:42 omfg postfix-submission/smtpd[23677]: connect from unknown[175.139.16.53]
Oct 18 13:25:44 omfg postfix-submission/smtpd[23679]: connect from unknown[175.139.16.53]
Oct 18 13:25:44 omfg postfix-submission/smtpd[23680]: connect from unknown[175.139.16.53]
Oct 18 13:25:45 omfg postfix-submission/smtpd[23676]: lost connection after CONNECT from unknown[175.139.16.53]
Oct 18 13:25:45 omfg postfix-submission/smtpd[23676]: disconnect from unknown[175.139.16.53] commands=0/0
Oct 18 13:25:45 omfg postfix-submission/smtpd[23677]: lost connection after CONNECT from unknown[175.139.16.53]
Oct 18 13:25:45 omfg postfix-submission/smtpd[23677]: disconnect from unknown[175.139.16.53] commands=0/0
Oct 18 13:25:45 omfg postfix-submission/smtpd[23679]: lost connection after CONNECT from unknown[175.139.16.53]
Oct 18 13:25:45 omfg postfix-submi........
------------------------------

2019-10-19 01:20:27

Comments on same subnet:

IP	Type	Details	Datetime
175.139.164.181	attackspambots	1,31-13/05 [bc01/m07] PostRequest-Spammer scoring: brussels	2020-06-23 20:46:00
175.139.165.28	attackspambots	WebFormToEmail Comment SPAM	2020-06-10 17:23:42
175.139.166.45	attack	[portscan] Port scan	2020-02-08 08:14:58
175.139.166.252	attackspambots	Jan 31 09:31:07 srv01 sshd[12096]: Invalid user admin from 175.139.166.252 port 49307 Jan 31 09:31:07 srv01 sshd[12096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.166.252 Jan 31 09:31:07 srv01 sshd[12096]: Invalid user admin from 175.139.166.252 port 49307 Jan 31 09:31:09 srv01 sshd[12096]: Failed password for invalid user admin from 175.139.166.252 port 49307 ssh2 Jan 31 09:31:07 srv01 sshd[12096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.166.252 Jan 31 09:31:07 srv01 sshd[12096]: Invalid user admin from 175.139.166.252 port 49307 Jan 31 09:31:09 srv01 sshd[12096]: Failed password for invalid user admin from 175.139.166.252 port 49307 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=175.139.166.252	2020-01-31 23:32:03
175.139.166.139	attack	WP sniffing	2019-11-14 23:12:16
175.139.164.167	attackspambots	[portscan] Port scan	2019-11-02 00:33:06
175.139.160.85	attackbots	port scan and connect, tcp 8000 (http-alt)	2019-10-07 00:48:18
175.139.168.213	attackspam	MY - - [07 Aug 2019:04:47:36 +0300] GET redirect ?go=http: rkelevator.com.my HTTP 1.1 302 - - Mozilla 5.0 Windows NT 6.1; WOW64 AppleWebKit 537.36 KHTML, like Gecko Chrome 42.0.2311.135 Safari 537.36	2019-08-07 15:43:21
175.139.164.234	attack	Mar 22 16:44:18 vpn sshd[27687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.164.234 Mar 22 16:44:20 vpn sshd[27687]: Failed password for invalid user carol from 175.139.164.234 port 57345 ssh2 Mar 22 16:49:59 vpn sshd[27732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.164.234	2019-07-19 06:11:39
175.139.167.242	attack	Looking for resource vulnerabilities	2019-06-29 09:51:56
175.139.163.107	attackspambots	Request: "GET / HTTP/1.1"	2019-06-22 04:16:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 175.139.16.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39901
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;175.139.16.53.			IN	A

;; AUTHORITY SECTION:
.			549	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101800 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 19 01:20:24 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 53.16.139.175.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.16.139.175.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
38.102.28.1	attack	2020-10-03T22:50:08.468926morrigan.ad5gb.com sshd[790674]: Invalid user david from 38.102.28.1 port 50554	2020-10-04 12:04:53
24.0.14.227	attackspambots	Unauthorized admin access - /admin/css/datepicker.css?v=913-new-social-icons34f0b7ad653faf15	2020-10-04 12:17:53
180.76.180.231	attackbotsspam	Oct 4 14:34:16 localhost sshd[64357]: Invalid user alvin from 180.76.180.231 port 43490 ...	2020-10-04 12:08:52
178.128.107.120	attackspam	SSH Honeypot -> SSH Bruteforce / Login	2020-10-04 12:03:44
58.102.31.36	attackspam	SSH bruteforce	2020-10-04 12:06:49
203.151.81.77	attack	SSH / Telnet Brute Force Attempts on Honeypot	2020-10-04 09:23:10
218.18.161.186	attack	$f2bV_matches	2020-10-04 12:20:16
61.50.99.26	attackspam	Oct 4 02:52:08 ip106 sshd[3089]: Failed password for root from 61.50.99.26 port 34065 ssh2 Oct 4 02:54:41 ip106 sshd[3181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.50.99.26 ...	2020-10-04 09:22:52
122.194.229.37	attack	Oct 4 06:00:46 vps647732 sshd[7749]: Failed password for root from 122.194.229.37 port 40856 ssh2 Oct 4 06:01:00 vps647732 sshd[7749]: error: maximum authentication attempts exceeded for root from 122.194.229.37 port 40856 ssh2 [preauth] ...	2020-10-04 12:08:11
27.128.233.3	attackspam	2020-10-04T03:05:29.876658lavrinenko.info sshd[8250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.233.3 2020-10-04T03:05:29.866883lavrinenko.info sshd[8250]: Invalid user president from 27.128.233.3 port 35368 2020-10-04T03:05:31.962445lavrinenko.info sshd[8250]: Failed password for invalid user president from 27.128.233.3 port 35368 ssh2 2020-10-04T03:09:33.229478lavrinenko.info sshd[8331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.233.3 user=root 2020-10-04T03:09:35.144992lavrinenko.info sshd[8331]: Failed password for root from 27.128.233.3 port 38952 ssh2 ...	2020-10-04 09:26:31
128.199.143.157	attackspambots	Fail2Ban Ban Triggered	2020-10-04 12:02:42
46.221.8.142	attackbots	Lines containing failures of 46.221.8.142 Oct 3 22:26:46 mx-in-02 sshd[9218]: Did not receive identification string from 46.221.8.142 port 53006 Oct 3 22:26:50 mx-in-02 sshd[9219]: Invalid user support from 46.221.8.142 port 53423 Oct 3 22:26:50 mx-in-02 sshd[9219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.221.8.142 Oct 3 22:26:53 mx-in-02 sshd[9219]: Failed password for invalid user support from 46.221.8.142 port 53423 ssh2 Oct 3 22:26:53 mx-in-02 sshd[9219]: Connection closed by invalid user support 46.221.8.142 port 53423 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=46.221.8.142	2020-10-04 12:15:36
185.132.53.115	attackbotsspam	TCP (SYN) 185.132.53.115:32552 -> port 22, len 48	2020-10-04 12:19:24
218.92.0.165	attackbotsspam	Oct 4 00:13:16 NPSTNNYC01T sshd[2841]: Failed password for root from 218.92.0.165 port 13711 ssh2 Oct 4 00:13:28 NPSTNNYC01T sshd[2841]: error: maximum authentication attempts exceeded for root from 218.92.0.165 port 13711 ssh2 [preauth] Oct 4 00:13:34 NPSTNNYC01T sshd[2865]: Failed password for root from 218.92.0.165 port 40097 ssh2 Oct 4 00:13:50 NPSTNNYC01T sshd[2865]: error: maximum authentication attempts exceeded for root from 218.92.0.165 port 40097 ssh2 [preauth] Oct 4 00:13:55 NPSTNNYC01T sshd[2870]: Failed password for root from 218.92.0.165 port 7535 ssh2 ...	2020-10-04 12:25:39
112.33.13.124	attack	Oct 3 23:52:55 game-panel sshd[3156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.33.13.124 Oct 3 23:52:58 game-panel sshd[3156]: Failed password for invalid user web from 112.33.13.124 port 46038 ssh2 Oct 3 23:57:18 game-panel sshd[3382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.33.13.124	2020-10-04 09:24:03

Recently Reported IPs

95.62.214.29	211.112.64.16	87.236.92.138	81.28.100.215
151.24.1.133	14.232.29.93	145.239.69.74	10.213.179.44
183.45.177.45	103.84.83.59	87.248.85.11	193.112.9.189
185.53.88.90	211.20.26.164	195.97.30.100	110.180.129.28
95.9.2.195	203.55.115.202	151.253.165.70	105.155.219.147