175.139.160.85

Basic Info

City: unknown

Region: unknown

Country: Malaysia

Internet Service Provider: Telekom Malaysia Berhad

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	port scan and connect, tcp 8000 (http-alt)	2019-10-07 00:48:18

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 175.139.160.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50540
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;175.139.160.85.			IN	A

;; AUTHORITY SECTION:
.			499	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100600 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 07 00:48:14 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 85.160.139.175.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.160.139.175.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.140.172.57	attackspam	...	2020-08-01 05:35:37
196.201.228.58	attackbotsspam	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-08-01 05:46:43
122.51.195.237	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-31T20:30:34Z and 2020-07-31T20:32:50Z	2020-08-01 05:50:48
14.249.195.147	attackspam	Jul 31 14:33:30 Host-KLAX-C postfix/smtpd[2071]: lost connection after EHLO from unknown[14.249.195.147] ...	2020-08-01 05:18:46
213.33.226.118	attackbotsspam	Aug 1 00:04:54 journals sshd\[48621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.33.226.118 user=root Aug 1 00:04:57 journals sshd\[48621\]: Failed password for root from 213.33.226.118 port 39924 ssh2 Aug 1 00:08:49 journals sshd\[48871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.33.226.118 user=root Aug 1 00:08:51 journals sshd\[48871\]: Failed password for root from 213.33.226.118 port 52074 ssh2 Aug 1 00:12:52 journals sshd\[49103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.33.226.118 user=root ...	2020-08-01 05:21:42
1.119.195.58	attack	Jul 31 22:18:01 rocket sshd[22740]: Failed password for root from 1.119.195.58 port 55728 ssh2 Jul 31 22:22:05 rocket sshd[23402]: Failed password for root from 1.119.195.58 port 14121 ssh2 ...	2020-08-01 05:36:44
111.229.28.34	attack	Jul 31 22:34:06 ajax sshd[24189]: Failed password for root from 111.229.28.34 port 53514 ssh2	2020-08-01 05:56:50
180.76.114.141	attack	Jul 31 21:17:25 vps-51d81928 sshd[354696]: Failed password for root from 180.76.114.141 port 34154 ssh2 Jul 31 21:18:34 vps-51d81928 sshd[354727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.114.141 user=root Jul 31 21:18:37 vps-51d81928 sshd[354727]: Failed password for root from 180.76.114.141 port 49914 ssh2 Jul 31 21:19:40 vps-51d81928 sshd[354764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.114.141 user=root Jul 31 21:19:43 vps-51d81928 sshd[354764]: Failed password for root from 180.76.114.141 port 37440 ssh2 ...	2020-08-01 05:27:30
80.229.157.225	attackbotsspam	Jul 31 22:33:03 PorscheCustomer sshd[26564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.229.157.225 Jul 31 22:33:05 PorscheCustomer sshd[26564]: Failed password for invalid user ethos from 80.229.157.225 port 51634 ssh2 Jul 31 22:33:10 PorscheCustomer sshd[26576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.229.157.225 ...	2020-08-01 05:25:21
51.178.138.1	attackbots	bruteforce detected	2020-08-01 05:58:20
78.46.61.245	attackspam	20 attempts against mh-misbehave-ban on milky	2020-08-01 05:53:34
122.116.239.187	attack	Automatic report - Port Scan Attack	2020-08-01 05:45:47
223.68.169.180	attackspam	2020-07-31T21:31:17.778749shield sshd\[16292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.68.169.180 user=root 2020-07-31T21:31:19.620385shield sshd\[16292\]: Failed password for root from 223.68.169.180 port 47348 ssh2 2020-07-31T21:34:40.348762shield sshd\[17476\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.68.169.180 user=root 2020-07-31T21:34:42.390872shield sshd\[17476\]: Failed password for root from 223.68.169.180 port 39908 ssh2 2020-07-31T21:38:18.307914shield sshd\[19081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.68.169.180 user=root	2020-08-01 05:40:55
212.72.137.221	attackspambots	jannisjulius.de 212.72.137.221 [31/Jul/2020:22:32:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4269 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" jannisjulius.de 212.72.137.221 [31/Jul/2020:22:32:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4269 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-08-01 05:54:40
41.39.80.194	attackbots	20/7/31@16:33:25: FAIL: Alarm-Network address from=41.39.80.194 ...	2020-08-01 05:22:47

Recently Reported IPs

195.14.36.199	216.169.18.235	110.244.75.92	86.106.4.72
176.37.147.250	252.18.127.28	166.62.80.109	171.242.115.214
104.248.14.171	90.143.146.224	113.161.114.4	124.232.133.84
222.186.31.46	116.20.61.205	187.178.174.153	82.165.133.145
58.220.249.130	107.91.104.118	101.29.180.123	187.167.68.208