104.105.226.10

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Akamai Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Content Delivery Network

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Mar 31 05:52:24 debian-2gb-nbg1-2 kernel: \[7885799.411924\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.105.226.10 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=443 DPT=41361 WINDOW=29200 RES=0x00 ACK SYN URGP=0	2020-03-31 17:25:02

Type

Details

Datetime

attack

Mar 31 05:52:24 debian-2gb-nbg1-2 kernel: \[7885799.411924\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.105.226.10 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=443 DPT=41361 WINDOW=29200 RES=0x00 ACK SYN URGP=0

2020-03-31 17:25:02

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.105.226.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20215
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.105.226.10.			IN	A

;; AUTHORITY SECTION:
.			477	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033100 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 31 17:24:55 CST 2020
;; MSG SIZE  rcvd: 118

Host info

10.226.105.104.in-addr.arpa domain name pointer a104-105-226-10.deploy.static.akamaitechnologies.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
10.226.105.104.in-addr.arpa	name = a104-105-226-10.deploy.static.akamaitechnologies.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.51.83.175	attack	SSH Invalid Login	2020-04-12 06:30:32
49.235.226.43	attack	Apr 11 22:55:28 nextcloud sshd\[19306\]: Invalid user web!@\#123 from 49.235.226.43 Apr 11 22:55:28 nextcloud sshd\[19306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.226.43 Apr 11 22:55:30 nextcloud sshd\[19306\]: Failed password for invalid user web!@\#123 from 49.235.226.43 port 33278 ssh2	2020-04-12 06:32:41
103.73.183.186	attackspam	port scan and connect, tcp 80 (http)	2020-04-12 06:34:42
218.92.0.168	attack	2020-04-12T00:32:57.707109ns386461 sshd\[10208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root 2020-04-12T00:32:59.607474ns386461 sshd\[10208\]: Failed password for root from 218.92.0.168 port 1404 ssh2 2020-04-12T00:33:02.493169ns386461 sshd\[10208\]: Failed password for root from 218.92.0.168 port 1404 ssh2 2020-04-12T00:33:05.122559ns386461 sshd\[10208\]: Failed password for root from 218.92.0.168 port 1404 ssh2 2020-04-12T00:33:07.833983ns386461 sshd\[10208\]: Failed password for root from 218.92.0.168 port 1404 ssh2 ...	2020-04-12 06:39:46
47.5.200.48	attackbotsspam	Apr 12 00:16:24 eventyay sshd[7179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.5.200.48 Apr 12 00:16:27 eventyay sshd[7179]: Failed password for invalid user sumi from 47.5.200.48 port 60178 ssh2 Apr 12 00:23:41 eventyay sshd[7560]: Failed password for root from 47.5.200.48 port 40720 ssh2 ...	2020-04-12 06:27:15
152.136.207.121	attack	Apr 12 00:01:03 nextcloud sshd\[27280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.207.121 user=root Apr 12 00:01:05 nextcloud sshd\[27280\]: Failed password for root from 152.136.207.121 port 48494 ssh2 Apr 12 00:06:52 nextcloud sshd\[1157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.207.121 user=root	2020-04-12 06:16:42
192.144.225.182	attackbotsspam	SSH Invalid Login	2020-04-12 06:23:36
106.54.121.45	attackspambots	SSH Invalid Login	2020-04-12 06:30:52
31.153.85.162	attackspambots	Apr 11 22:56:08 host5 sshd[23426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31-85-162.netrun.cytanet.com.cy user=root Apr 11 22:56:10 host5 sshd[23426]: Failed password for root from 31.153.85.162 port 50899 ssh2 ...	2020-04-12 06:12:53
191.184.42.175	attackbots	Invalid user postgres from 191.184.42.175 port 60060	2020-04-12 06:43:21
117.50.97.216	attackbotsspam	Apr 11 23:44:14 eventyay sshd[5445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.97.216 Apr 11 23:44:16 eventyay sshd[5445]: Failed password for invalid user weagle from 117.50.97.216 port 42346 ssh2 Apr 11 23:50:15 eventyay sshd[5767]: Failed password for root from 117.50.97.216 port 45168 ssh2 ...	2020-04-12 06:11:23
163.172.230.4	attackbotsspam	[2020-04-11 18:22:12] NOTICE[12114][C-00004949] chan_sip.c: Call from '' (163.172.230.4:58723) to extension '9999999999011972592277524' rejected because extension not found in context 'public'. [2020-04-11 18:22:12] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-11T18:22:12.835-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9999999999011972592277524",SessionID="0x7f020c167898",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.230.4/58723",ACLName="no_extension_match" [2020-04-11 18:25:16] NOTICE[12114][C-00004950] chan_sip.c: Call from '' (163.172.230.4:52546) to extension '99999999999011972592277524' rejected because extension not found in context 'public'. [2020-04-11 18:25:16] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-11T18:25:16.861-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="99999999999011972592277524",SessionID="0x7f020c06be08",LocalAddress="IPV4/UD ...	2020-04-12 06:27:53
187.38.26.173	attackspambots	IP blocked	2020-04-12 06:05:47
45.134.179.50	attackbots	Multiport scan : 110 ports scanned 242 474 524 761 936 1022 2334 2577 2621 2651 2964 3131 3201 3593 3691 4802 8402 9946 10595 11668 13856 14393 15093 15532 16451 16651 17153 17361 17623 17825 18062 18342 18421 18998 19141 19198 19223 19815 19822 20776 21510 21710 21746 22374 22836 22873 22998 23766 24682 24792 25853 26365 26602 26734 26996 27268 27670 30950 32416 33120 33761 34019 34148 34460 34603 35178 35303 36201 36239 36526 36843 .....	2020-04-12 06:24:24
192.241.238.201	attackspam	Port scan: Attack repeated for 24 hours	2020-04-12 06:03:06

Recently Reported IPs

180.108.180.192	2601:589:4480:a5a0:1d50:ef6d:fec8:50ef	209.141.52.28	242.132.253.139
185.220.101.8	31.184.198.150	66.198.245.219	252.220.22.143
104.248.29.200	122.98.161.120	202.242.180.86	165.33.53.33
163.136.239.21	107.79.147.79	154.106.75.175	10.38.53.31
249.91.10.109	109.37.133.212	95.135.88.33	200.85.77.5