209.141.53.147

Basic Info

City: Las Vegas

Region: Nevada

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
209.141.53.10	attackbots	Jun 1 10:45:08 mxgate1 sshd[20407]: Connection closed by 209.141.53.10 port 56126 [preauth] Jun 1 10:45:12 mxgate1 sshd[20409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.53.10 user=sshd Jun 1 10:45:14 mxgate1 sshd[20409]: Failed password for sshd from 209.141.53.10 port 56380 ssh2 Jun 1 10:45:15 mxgate1 sshd[20409]: Failed password for sshd from 209.141.53.10 port 56380 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=209.141.53.10	2020-06-07 18:35:46
209.141.53.207	attackspambots	1590269422 - 05/23/2020 23:30:22 Host: ./209.141.53.207 Port: 389 UDP Blocked	2020-05-24 07:31:41
209.141.53.42	attack	scans 2 times in preceeding hours on the ports (in chronological order) 8088 8088	2020-04-17 03:58:58
209.141.53.35	attackspambots	999/tcp 999/tcp [2020-04-14]2pkt	2020-04-15 06:26:47
209.141.53.185	attack	Attempted upload of known exploit via /wp-content/plugins/cherry-plugin/admin/import-export/upload.php	2020-01-25 16:22:52
209.141.53.82	botsattack	http:///phpmyadmin/scripts/setup.php http:///mysql/scripts/setup.php http:///phpmyadmin2/scripts/setup.php Requests 1 every 1.5 hrs or so.	2019-08-24 18:37:40
209.141.53.185	attack	WordPress brute force	2019-08-17 10:48:54
209.141.53.82	attackbots	209.141.53.82 - - - [08/Aug/2019:06:23:07 +0000] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 400 166 "-" "-" "-" "-"	2019-08-08 15:18:54
209.141.53.249	attackbots	Jul 23 19:21:05 plusreed sshd[1537]: Invalid user nathalia from 209.141.53.249 ...	2019-07-24 07:26:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 209.141.53.147
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33312
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;209.141.53.147.			IN	A

;; AUTHORITY SECTION:
.			283	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022082800 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 28 19:47:22 CST 2022
;; MSG SIZE  rcvd: 107

Host info

147.53.141.209.in-addr.arpa domain name pointer jetbackup.server405.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
147.53.141.209.in-addr.arpa	name = jetbackup.server405.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.150.160.184	attackbotsspam	Unauthorized connection attempt from IP address 178.150.160.184 on Port 445(SMB)	2019-11-26 05:53:40
122.154.120.230	attackbots	Trying to (more than 3 packets) bruteforce (not open) Samba/Microsoft-DS port 445	2019-11-26 05:44:57
51.15.231.74	attack	evolve-al.com spam	2019-11-26 05:26:59
45.141.86.122	attackspambots	firewall-block, port(s): 3475/tcp, 3496/tcp, 3506/tcp, 3534/tcp, 3536/tcp, 3548/tcp, 3551/tcp, 3555/tcp, 3556/tcp, 3559/tcp, 3581/tcp, 3587/tcp, 3685/tcp, 3688/tcp, 3695/tcp, 3709/tcp, 3710/tcp, 3719/tcp, 3740/tcp, 3756/tcp, 3772/tcp, 3778/tcp, 3817/tcp, 3824/tcp, 3825/tcp, 3869/tcp, 3894/tcp, 3910/tcp, 3971/tcp, 3978/tcp	2019-11-26 05:38:15
113.106.159.218	attackbots	firewall-block, port(s): 3389/tcp	2019-11-26 06:05:14
122.51.68.196	attackbots	Unauthorized SSH login attempts	2019-11-26 05:25:07
203.189.206.109	attack	Nov 25 15:30:29 serwer sshd\[32025\]: Invalid user ubuntu from 203.189.206.109 port 54324 Nov 25 15:30:29 serwer sshd\[32025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.189.206.109 Nov 25 15:30:31 serwer sshd\[32025\]: Failed password for invalid user ubuntu from 203.189.206.109 port 54324 ssh2 ...	2019-11-26 05:58:44
156.208.20.166	attack	Unauthorized connection attempt from IP address 156.208.20.166 on Port 445(SMB)	2019-11-26 05:35:00
129.122.16.156	attackbotsspam	Nov 25 21:57:51 MK-Soft-VM8 sshd[25549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.122.16.156 Nov 25 21:57:53 MK-Soft-VM8 sshd[25549]: Failed password for invalid user guest from 129.122.16.156 port 60586 ssh2 ...	2019-11-26 05:38:32
45.235.130.202	attackbots	Unauthorized connection attempt from IP address 45.235.130.202 on Port 445(SMB)	2019-11-26 05:54:41
52.166.165.164	attackbotsspam	Nov 25 14:12:05 mxgate1 postfix/postscreen[15688]: CONNECT from [52.166.165.164]:60657 to [176.31.12.44]:25 Nov 25 14:12:05 mxgate1 postfix/dnsblog[15692]: addr 52.166.165.164 listed by domain zen.spamhaus.org as 127.0.0.2 Nov 25 14:12:05 mxgate1 postfix/dnsblog[15693]: addr 52.166.165.164 listed by domain bl.spamcop.net as 127.0.0.2 Nov 25 14:12:11 mxgate1 postfix/postscreen[15688]: DNSBL rank 3 for [52.166.165.164]:60657 Nov 25 14:12:11 mxgate1 postfix/tlsproxy[15859]: CONNECT from [52.166.165.164]:60657 Nov x@x Nov 25 14:12:12 mxgate1 postfix/postscreen[15688]: DISCONNECT [52.166.165.164]:60657 Nov 25 14:12:12 mxgate1 postfix/tlsproxy[15859]: DISCONNECT [52.166.165.164]:60657 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=52.166.165.164	2019-11-26 05:46:50
175.211.116.226	attackbotsspam	2019-11-25T20:03:23.601216abusebot-5.cloudsearch.cf sshd\[30278\]: Invalid user bjorn from 175.211.116.226 port 59150	2019-11-26 05:30:42
177.124.185.111	attackbotsspam	Unauthorized connection attempt from IP address 177.124.185.111 on Port 445(SMB)	2019-11-26 05:29:39
187.174.191.154	attackspambots	Nov 25 21:15:29 server sshd\[1322\]: Invalid user backup from 187.174.191.154 Nov 25 21:15:29 server sshd\[1322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.174.191.154 Nov 25 21:15:31 server sshd\[1322\]: Failed password for invalid user backup from 187.174.191.154 port 33476 ssh2 Nov 25 21:23:55 server sshd\[3283\]: Invalid user rpc from 187.174.191.154 Nov 25 21:23:55 server sshd\[3283\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.174.191.154 ...	2019-11-26 05:53:10
63.88.23.217	attackbots	63.88.23.217 was recorded 15 times by 8 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 15, 71, 674	2019-11-26 05:43:42

Recently Reported IPs

103.145.36.189	79.98.240.134	173.12.200.213	2804:18:1093:91d1:a96c:cae8:124d:42c9
157.230.193.15	38.54.32.194	103.109.56.174	91.240.118.99
174.119.80.118	36.70.253.79	32.49.0.143	78.157.42.86
95.111.240.86	240e:378:c01:7fe2:44d0:3ea3:7267:2bd5	184.43.12.182	143.185.155.110
37.199.161.147	224.111.115.225	48.178.54.93	183.56.161.249