85.252.106.141

Basic Info

City: unknown

Region: unknown

Country: Norway

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.252.106.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25651
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.252.106.141.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012400 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 15:07:38 CST 2025
;; MSG SIZE  rcvd: 107

Host info

141.106.252.85.in-addr.arpa domain name pointer static141.banetele-cust.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
141.106.252.85.in-addr.arpa	name = static141.banetele-cust.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
34.95.205.251	attackbotsspam	Dec 4 08:06:42 kapalua sshd\[4317\]: Invalid user coe from 34.95.205.251 Dec 4 08:06:42 kapalua sshd\[4317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=251.205.95.34.bc.googleusercontent.com Dec 4 08:06:44 kapalua sshd\[4317\]: Failed password for invalid user coe from 34.95.205.251 port 44544 ssh2 Dec 4 08:13:31 kapalua sshd\[5081\]: Invalid user crichard from 34.95.205.251 Dec 4 08:13:31 kapalua sshd\[5081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=251.205.95.34.bc.googleusercontent.com	2019-12-05 03:25:34
186.4.123.139	attackspambots	Dec 4 15:35:34 firewall sshd[19243]: Invalid user kacie from 186.4.123.139 Dec 4 15:35:36 firewall sshd[19243]: Failed password for invalid user kacie from 186.4.123.139 port 35596 ssh2 Dec 4 15:43:27 firewall sshd[19440]: Invalid user leyden from 186.4.123.139 ...	2019-12-05 03:25:15
182.254.184.247	attack	Repeated brute force against a port	2019-12-05 03:24:44
82.165.35.17	attack	Dec 4 20:43:34 MK-Soft-VM3 sshd[10587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.165.35.17 Dec 4 20:43:37 MK-Soft-VM3 sshd[10587]: Failed password for invalid user client from 82.165.35.17 port 37162 ssh2 ...	2019-12-05 04:01:27
80.211.133.238	attack	Dec 4 20:22:58 MK-Soft-VM5 sshd[2816]: Failed password for root from 80.211.133.238 port 54098 ssh2 ...	2019-12-05 03:54:04
165.227.157.168	attackspambots	Dec 4 09:38:20 tdfoods sshd\[30392\]: Invalid user aminudin from 165.227.157.168 Dec 4 09:38:20 tdfoods sshd\[30392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.157.168 Dec 4 09:38:21 tdfoods sshd\[30392\]: Failed password for invalid user aminudin from 165.227.157.168 port 41292 ssh2 Dec 4 09:43:47 tdfoods sshd\[31034\]: Invalid user mylinux from 165.227.157.168 Dec 4 09:43:47 tdfoods sshd\[31034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.157.168	2019-12-05 03:55:03
109.136.242.203	attack	Dec 4 12:13:52 mailserver dovecot: auth-worker(41141): sql([hidden],109.136.242.203,): unknown user Dec 4 12:13:54 mailserver dovecot: imap-login: Aborted login (auth failed, 1 attempts in 2 secs): user=<[hidden]>, method=PLAIN, rip=109.136.242.203, lip=[hidden], TLS, session= Dec 4 12:13:58 mailserver dovecot: auth-worker(41141): sql([hidden],109.136.242.203,): unknown user Dec 4 12:14:00 mailserver dovecot: imap-login: Aborted login (auth failed, 1 attempts in 6 secs): user=<[hidden]>, method=PLAIN, rip=109.136.242.203, lip=[hidden], TLS, session= Dec 4 12:14:04 mailserver dovecot: auth-worker(41141): sql([hidden],109.136.242.203,): unknown user Dec 4 12:14:06 mailserver dovecot: imap-login: Aborted login (auth failed, 1 attempts in 6 secs): user=<[hidden]>, method=PLAIN, rip=109.136.242.203, lip=[hidden], TLS, session= Dec 4 15:05:18 mailserver dovecot: auth-worker(43210): sql([hidden],109.136	2019-12-05 03:21:51
180.106.197.15	attackbots	Dec 4 11:57:06 mockhub sshd[13101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.106.197.15 Dec 4 11:57:08 mockhub sshd[13101]: Failed password for invalid user hts from 180.106.197.15 port 45576 ssh2 ...	2019-12-05 04:01:06
218.92.0.173	attackspambots	Dec 4 20:33:07 SilenceServices sshd[3022]: Failed password for root from 218.92.0.173 port 14046 ssh2 Dec 4 20:33:11 SilenceServices sshd[3022]: Failed password for root from 218.92.0.173 port 14046 ssh2 Dec 4 20:33:21 SilenceServices sshd[3022]: error: maximum authentication attempts exceeded for root from 218.92.0.173 port 14046 ssh2 [preauth]	2019-12-05 03:39:10
151.80.144.39	attackspambots	Dec 4 20:04:39 mail sshd\[24072\]: Invalid user ploeger from 151.80.144.39 Dec 4 20:04:39 mail sshd\[24072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.144.39 Dec 4 20:04:41 mail sshd\[24072\]: Failed password for invalid user ploeger from 151.80.144.39 port 34384 ssh2 ...	2019-12-05 03:27:44
202.215.36.230	attack	Dec 4 20:12:07 markkoudstaal sshd[522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.215.36.230 Dec 4 20:12:08 markkoudstaal sshd[522]: Failed password for invalid user oyao from 202.215.36.230 port 55950 ssh2 Dec 4 20:18:57 markkoudstaal sshd[1245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.215.36.230	2019-12-05 03:26:29
69.229.6.52	attackbotsspam	Dec 4 20:24:46 eventyay sshd[26525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.229.6.52 Dec 4 20:24:48 eventyay sshd[26525]: Failed password for invalid user hauan from 69.229.6.52 port 52394 ssh2 Dec 4 20:32:55 eventyay sshd[26921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.229.6.52 ...	2019-12-05 03:48:43
122.51.140.164	attackspam	Lines containing failures of 122.51.140.164 Dec 3 09:37:19 myhost sshd[19470]: Invalid user cussey from 122.51.140.164 port 55846 Dec 3 09:37:19 myhost sshd[19470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.140.164 Dec 3 09:37:21 myhost sshd[19470]: Failed password for invalid user cussey from 122.51.140.164 port 55846 ssh2 Dec 3 09:37:21 myhost sshd[19470]: Received disconnect from 122.51.140.164 port 55846:11: Bye Bye [preauth] Dec 3 09:37:21 myhost sshd[19470]: Disconnected from invalid user cussey 122.51.140.164 port 55846 [preauth] Dec 3 09:51:23 myhost sshd[19544]: User r.r from 122.51.140.164 not allowed because not listed in AllowUsers Dec 3 09:51:23 myhost sshd[19544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.140.164 user=r.r Dec 3 09:51:25 myhost sshd[19544]: Failed password for invalid user r.r from 122.51.140.164 port 46762 ssh2 Dec 3 09:51:25 ........ ------------------------------	2019-12-05 03:29:01
81.45.56.199	attack	Dec 4 19:22:03 localhost sshd\[70630\]: Invalid user choong from 81.45.56.199 port 42414 Dec 4 19:22:03 localhost sshd\[70630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 Dec 4 19:22:05 localhost sshd\[70630\]: Failed password for invalid user choong from 81.45.56.199 port 42414 ssh2 Dec 4 19:28:06 localhost sshd\[70798\]: Invalid user 123456 from 81.45.56.199 port 52952 Dec 4 19:28:06 localhost sshd\[70798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.45.56.199 ...	2019-12-05 03:46:29
180.250.204.162	attack	180.250.204.162 - - [04/Dec/2019:12:13:55 +0100] "GET /awstats.pl?lang=en&output=main HTTP/1.0" 404 280 "https://oraux.pnzone.net/" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.170 Safari/537.36"	2019-12-05 03:27:02

Recently Reported IPs

203.94.156.177	23.127.242.34	39.176.181.81	76.225.109.200
216.59.125.174	132.221.240.88	83.162.90.212	252.153.125.151
185.143.192.45	54.58.115.211	85.192.34.111	71.170.92.188
148.3.232.165	81.22.46.96	134.44.97.164	161.110.188.222
127.36.155.111	170.5.183.233	211.49.228.26	45.207.244.247