209.141.53.85 - IPInfo

Basic Info

City: Las Vegas

Region: Nevada

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: FranTech Solutions

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
209.141.53.10	attackbots	Jun 1 10:45:08 mxgate1 sshd[20407]: Connection closed by 209.141.53.10 port 56126 [preauth] Jun 1 10:45:12 mxgate1 sshd[20409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.53.10 user=sshd Jun 1 10:45:14 mxgate1 sshd[20409]: Failed password for sshd from 209.141.53.10 port 56380 ssh2 Jun 1 10:45:15 mxgate1 sshd[20409]: Failed password for sshd from 209.141.53.10 port 56380 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=209.141.53.10	2020-06-07 18:35:46
209.141.53.207	attackspambots	1590269422 - 05/23/2020 23:30:22 Host: ./209.141.53.207 Port: 389 UDP Blocked	2020-05-24 07:31:41
209.141.53.42	attack	scans 2 times in preceeding hours on the ports (in chronological order) 8088 8088	2020-04-17 03:58:58
209.141.53.35	attackspambots	999/tcp 999/tcp [2020-04-14]2pkt	2020-04-15 06:26:47
209.141.53.185	attack	Attempted upload of known exploit via /wp-content/plugins/cherry-plugin/admin/import-export/upload.php	2020-01-25 16:22:52
209.141.53.82	botsattack	http:///phpmyadmin/scripts/setup.php http:///mysql/scripts/setup.php http:///phpmyadmin2/scripts/setup.php Requests 1 every 1.5 hrs or so.	2019-08-24 18:37:40
209.141.53.185	attack	WordPress brute force	2019-08-17 10:48:54
209.141.53.82	attackbots	209.141.53.82 - - - [08/Aug/2019:06:23:07 +0000] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 400 166 "-" "-" "-" "-"	2019-08-08 15:18:54
209.141.53.249	attackbots	Jul 23 19:21:05 plusreed sshd[1537]: Invalid user nathalia from 209.141.53.249 ...	2019-07-24 07:26:50

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 209.141.53.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12891
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;209.141.53.85.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042701 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 28 01:08:39 +08 2019
;; MSG SIZE  rcvd: 117

Host info

85.53.141.209.in-addr.arpa domain name pointer www.torproject.org.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
85.53.141.209.in-addr.arpa	name = www.torproject.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
206.189.239.103	attack	Feb 12 08:37:18 vps647732 sshd[32314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103 Feb 12 08:37:20 vps647732 sshd[32314]: Failed password for invalid user angella from 206.189.239.103 port 35400 ssh2 ...	2020-02-12 18:44:14
77.246.145.181	attackbots	Automatic report - SSH Brute-Force Attack	2020-02-12 18:36:48
191.7.155.180	attackspam	Telnet Server BruteForce Attack	2020-02-12 18:51:50
49.235.145.231	attack	Feb 12 05:23:56 ovpn sshd\[29340\]: Invalid user italy from 49.235.145.231 Feb 12 05:23:56 ovpn sshd\[29340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.145.231 Feb 12 05:23:58 ovpn sshd\[29340\]: Failed password for invalid user italy from 49.235.145.231 port 34494 ssh2 Feb 12 05:52:00 ovpn sshd\[4277\]: Invalid user admin from 49.235.145.231 Feb 12 05:52:00 ovpn sshd\[4277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.145.231	2020-02-12 18:15:01
128.199.103.239	attackbots	Feb 12 05:35:55 plusreed sshd[28046]: Invalid user rushmore from 128.199.103.239 ...	2020-02-12 18:47:33
49.88.112.111	attackbots	Feb 12 11:16:09 localhost sshd\[32002\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.111 user=root Feb 12 11:16:11 localhost sshd\[32002\]: Failed password for root from 49.88.112.111 port 48003 ssh2 Feb 12 11:16:14 localhost sshd\[32002\]: Failed password for root from 49.88.112.111 port 48003 ssh2	2020-02-12 18:33:37
85.237.63.124	attackbotsspam	email spam	2020-02-12 18:22:08
49.235.134.224	attackspam	Feb 12 14:41:13 gw1 sshd[7342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.134.224 Feb 12 14:41:14 gw1 sshd[7342]: Failed password for invalid user sakamaki from 49.235.134.224 port 43482 ssh2 ...	2020-02-12 18:24:59
45.226.72.182	attackbots	Feb 12 09:50:51 game-panel sshd[15029]: Failed password for root from 45.226.72.182 port 34227 ssh2 Feb 12 09:55:42 game-panel sshd[15281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.226.72.182 Feb 12 09:55:45 game-panel sshd[15281]: Failed password for invalid user nbrooke from 45.226.72.182 port 47372 ssh2	2020-02-12 18:19:51
46.98.251.57	attackbots	Feb 10 01:24:34 django sshd[115804]: reveeclipse mapping checking getaddrinfo for 57.251.pppoe.fregat.ua [46.98.251.57] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 10 01:24:34 django sshd[115804]: Invalid user naa from 46.98.251.57 Feb 10 01:24:34 django sshd[115804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.98.251.57 Feb 10 01:24:36 django sshd[115804]: Failed password for invalid user naa from 46.98.251.57 port 41208 ssh2 Feb 10 01:24:36 django sshd[115805]: Received disconnect from 46.98.251.57: 11: Bye Bye Feb 10 01:27:21 django sshd[116186]: reveeclipse mapping checking getaddrinfo for 57.251.pppoe.fregat.ua [46.98.251.57] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 10 01:27:21 django sshd[116186]: Invalid user kmh from 46.98.251.57 Feb 10 01:27:21 django sshd[116186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.98.251.57 ........ ----------------------------------------------- https://www.blocklist.de/en/view.ht	2020-02-12 18:28:21
198.71.236.73	attack	$f2bV_matches	2020-02-12 18:34:17
109.175.166.38	attackspambots	ssh brute force	2020-02-12 18:24:28
91.166.58.22	attackbots	Feb 10 14:23:30 lock-38 sshd[16773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.166.58.22 Feb 10 14:23:32 lock-38 sshd[16773]: Failed password for invalid user rbg from 91.166.58.22 port 42766 ssh2 Feb 10 15:00:54 lock-38 sshd[16882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.166.58.22 ...	2020-02-12 18:40:00
36.226.28.123	attackbotsspam	Telnet Server BruteForce Attack	2020-02-12 18:43:43
202.151.30.145	attackspambots	Feb 12 05:51:46 MK-Soft-VM8 sshd[25409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.151.30.145 Feb 12 05:51:48 MK-Soft-VM8 sshd[25409]: Failed password for invalid user emc from 202.151.30.145 port 45050 ssh2 ...	2020-02-12 18:23:40

Recently Reported IPs

148.211.166.65	72.93.243.210	72.79.88.202	116.132.125.61
184.168.200.202	214.104.232.41	78.163.23.156	98.17.173.219
111.171.92.117	201.227.67.36	81.130.236.112	38.128.28.34
148.244.79.47	202.173.222.158	79.34.138.251	55.32.128.94
59.4.8.212	148.100.159.168	178.149.48.178	32.193.115.146