JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 111.53.0.169

111.53.0.169 was found in our database!

This IP was reported 98 times. Confidence of Abuse is 100%: ?

100%

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS56042
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Yangquan, Shanxi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 111.53.0.169

Whois 111.53.0.169

IP Abuse Reports for 111.53.0.169:

This IP address has been reported a total of 98 times from 76 distinct sources. 111.53.0.169 was first reported on May 28th 2026, and the most recent report was 2 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 djboddington	2026-06-05 12:45:58 (2 minutes ago)	This IP was detected by CrowdSec triggering crowdsecurity/ssh-bf	SSH Brute-Force
🇺🇸 bigscoots.com	2026-06-05 12:17:53 (30 minutes ago)	111.53.0.169 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports ... show more 111.53.0.169 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 5 07:17:32 14107 sshd[4523]: Failed password for root from 111.53.0.169 port 41392 ssh2 Jun 5 07:17:45 14107 sshd[5497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.53.0.169 user=root Jun 5 07:17:29 14107 sshd[4523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.53.0.169 user=root Jun 5 06:33:28 14107 sshd[15434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.202.206.50 user=root Jun 5 06:33:30 14107 sshd[15434]: Failed password for root from 176.202.206.50 port 44308 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇦🇹 michal21	2026-06-05 11:11:28 (1 hour ago)	Fail2Ban: SSH brute-force detected	Brute-Force
🇬🇧 PeravixGroup	2026-06-05 11:09:16 (1 hour ago)	Honeypot detection: SSH brute-force authentication attempt on port 22. Severity: MEDIUM. Aaran.cloud	SSH Brute-Force
🇩🇪 licen777	2026-06-05 11:05:53 (1 hour ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-05T11:04:26Z and 2026-06-0 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-05T11:04:26Z and 2026-06-05T11:05:53Z show less	Brute-Force SSH
🇩🇪 Justin F. \| AS204464	2026-06-05 07:17:59 (5 hours ago)	Honeypot [nx-infrastructure]: Unauthorized connection attempt detected on 22/SSH Reported by: Justin ... show more Honeypot [nx-infrastructure]: Unauthorized connection attempt detected on 22/SSH Reported by: Justin F. show less	SSH Port Scan
🇳🇱 AS213449.net	2026-06-05 06:59:19 (5 hours ago)	06/05/2026-08:59:19.850936 src=111.53.0.169 dst=5.175.170.18:22 proto=6 msg=ET SCAN Potential SSH Sc ... show more 06/05/2026-08:59:19.850936 src=111.53.0.169 dst=5.175.170.18:22 proto=6 msg=ET SCAN Potential SSH Scan show less	Brute-Force SSH
🇳🇱 donarev419	2026-06-05 06:23:39 (6 hours ago)	Port scan detected on port 5022 (connection without data transfer)	Port Scan
🇩🇪 zUnlegit	2026-06-05 03:15:52 (9 hours ago)	2026-06-05T05:15:43.925477+02:00 root260 sshd-session[94516]: Failed password for root from 111.53.0 ... show more 2026-06-05T05:15:43.925477+02:00 root260 sshd-session[94516]: Failed password for root from 111.53.0.169 port 38638 ssh2 2026-06-05T05:15:46.169724+02:00 root260 sshd-session[95453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.53.0.169 user=root 2026-06-05T05:15:48.442462+02:00 root260 sshd-session[95453]: Failed password for root from 111.53.0.169 port 38238 ssh2 2026-06-05T05:15:50.613326+02:00 root260 sshd-session[96428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.53.0.169 user=root 2026-06-05T05:15:51.910453+02:00 root260 sshd-session[96428]: Failed password for root from 111.53.0.169 port 38254 ssh2 ... show less	Brute-Force SSH
🇬🇧 Portuseco Biling	2026-06-05 02:58:42 (9 hours ago)	--hosteroid-F2B blocked SSH BF--	Brute-Force SSH
🇫🇷 bellovacorp	2026-06-05 02:52:32 (9 hours ago)	Customer Telecom - Router Mikrotik perimeter blacklist	Port Scan Hacking
🇬🇧 gbzret4d	2026-06-04 15:52:14 (20 hours ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 2222 [1] TCP	Port Scan
🇩🇪 LoNET	2026-06-04 14:24:49 (22 hours ago)	Report 2431060 with IP 3478627 for SSH brute-force attack by source 3473285 via ssh-honeypot/0.2.1+h ... show more Report 2431060 with IP 3478627 for SSH brute-force attack by source 3473285 via ssh-honeypot/0.2.1+http show less	Brute-Force SSH
🇯🇵 mkaraki	2026-06-04 13:46:54 (23 hours ago)	1780580813 # Service_probe # SIGNATURE_SEND # source_ip:111.53.0.169 # dst_port:10001 ...	Port Scan
🇨🇭 blinx	2026-06-04 13:16:53 (23 hours ago)	2026-06-04T15:16:52.884417+02:00 blinx-rpi4 endlessh[359]: 2026-06-04T13:16:52.884Z CLOSE host=::fff ... show more 2026-06-04T15:16:52.884417+02:00 blinx-rpi4 endlessh[359]: 2026-06-04T13:16:52.884Z CLOSE host=::ffff:111.53.0.169 port=20229 fd=4 time=20.012 bytes=3 ... show less	Brute-Force SSH

Showing 1 to 15 of 98 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 130.12.181.104

🇧🇩 103.166.152.201

🇺🇸 66.132.186.136

🇮🇩 180.252.87.162

🇸🇬 165.154.205.91

🇸🇬 159.223.36.55

🇨🇳 115.190.171.172

🇨🇳 27.185.17.40

🇰🇷 211.240.117.40

🇧🇷 205.210.31.216

🇩🇪 130.61.152.179

🇨🇳 115.190.150.8

🇺🇸 72.18.83.212

🇸🇬 43.134.24.11

🇩🇪 196.242.141.20

🇲🇽 186.96.145.241

🇨🇳 115.190.138.163

🇧🇩 103.183.62.0

🇻🇳 103.166.182.155

🇺🇸 47.251.51.155