105.185.166.71

Basic Info

City: Bellville

Region: Western Cape

Country: South Africa

Internet Service Provider: Telkom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.185.166.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1921
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.185.166.71.			IN	A

;; AUTHORITY SECTION:
.			180	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091202 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 13 07:53:08 CST 2020
;; MSG SIZE  rcvd: 118

Host info

71.166.185.105.in-addr.arpa domain name pointer 105-185-166-71.telkomsa.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
71.166.185.105.in-addr.arpa	name = 105-185-166-71.telkomsa.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.248.174.219	attackbotsspam	[portscan] tcp/23 [TELNET] [portscan] tcp/88 [Kerberos] [scan/connect: 13 time(s)] *(RWIN=65535)(09011312)	2019-09-01 19:18:24
142.93.1.100	attackbots	ssh failed login	2019-09-01 19:43:39
107.174.101.102	attack	Honeypot attack, port: 23, PTR: 107-174-101-102-host.colocrossing.com.	2019-09-01 19:31:39
12.35.132.58	attackbots	Hits on port : 445	2019-09-01 19:22:05
108.62.5.91	attack	(From raphaeRiz@gmail.com) Ciao! mccansechiropractic.com We propose Sending your message through the feedback form which can be found on the sites in the Communication partition. Contact form are filled in by our software and the captcha is solved. The superiority of this method is that messages sent through feedback forms are whitelisted. This technique raise the probability that your message will be read. Our database contains more than 25 million sites around the world to which we can send your message. The cost of one million messages 49 USD FREE TEST mailing of 50,000 messages to any country of your choice. This message is automatically generated to use our contacts for communication. Contact us. Telegram - @FeedbackFormEU Skype FeedbackForm2019 Email - FeedbackForm@make-success.com	2019-09-01 19:29:48
1.175.63.231	attackbots	Scanning random ports - tries to find possible vulnerable services	2019-09-01 19:26:42
199.195.252.213	attack	2019-09-01T07:47:56.158788abusebot-4.cloudsearch.cf sshd\[32613\]: Invalid user console from 199.195.252.213 port 45962	2019-09-01 19:50:46
60.251.80.75	attackspambots	[SMB remote code execution attempt: port tcp/445] [scan/connect: 3 time(s)] *(RWIN=8192,65535)(09011312)	2019-09-01 19:19:34
51.38.186.182	attack	Sep 1 13:44:01 legacy sshd[8030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.182 Sep 1 13:44:04 legacy sshd[8030]: Failed password for invalid user ubnt from 51.38.186.182 port 52906 ssh2 Sep 1 13:47:37 legacy sshd[8152]: Failed password for root from 51.38.186.182 port 39142 ssh2 ...	2019-09-01 19:50:13
118.25.198.163	attackspambots	Sep 1 03:29:29 vps200512 sshd\[17672\]: Invalid user test from 118.25.198.163 Sep 1 03:29:29 vps200512 sshd\[17672\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.198.163 Sep 1 03:29:31 vps200512 sshd\[17672\]: Failed password for invalid user test from 118.25.198.163 port 33398 ssh2 Sep 1 03:38:38 vps200512 sshd\[17880\]: Invalid user oracle from 118.25.198.163 Sep 1 03:38:38 vps200512 sshd\[17880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.198.163	2019-09-01 19:48:11
14.142.189.10	attackspambots	Scanning random ports - tries to find possible vulnerable services	2019-09-01 19:21:23
51.83.69.183	attackspam	Sep 1 01:34:10 hpm sshd\[32581\]: Invalid user rpcuser from 51.83.69.183 Sep 1 01:34:10 hpm sshd\[32581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.ip-51-83-69.eu Sep 1 01:34:12 hpm sshd\[32581\]: Failed password for invalid user rpcuser from 51.83.69.183 port 54728 ssh2 Sep 1 01:38:01 hpm sshd\[422\]: Invalid user ubuntu from 51.83.69.183 Sep 1 01:38:01 hpm sshd\[422\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.ip-51-83-69.eu	2019-09-01 19:41:04
23.245.228.28	attack	Scanning random ports - tries to find possible vulnerable services	2019-09-01 19:08:19
134.175.141.29	attackspam	Aug 31 23:38:25 hanapaa sshd\[4104\]: Invalid user spark from 134.175.141.29 Aug 31 23:38:25 hanapaa sshd\[4104\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.141.29 Aug 31 23:38:28 hanapaa sshd\[4104\]: Failed password for invalid user spark from 134.175.141.29 port 33284 ssh2 Aug 31 23:43:31 hanapaa sshd\[4614\]: Invalid user darkman from 134.175.141.29 Aug 31 23:43:31 hanapaa sshd\[4614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.141.29	2019-09-01 19:39:44
211.150.68.188	attack	Trying to (more than 3 packets) bruteforce (not open) telnet port 23	2019-09-01 19:11:05

Recently Reported IPs

176.208.81.46	105.182.235.34	32.14.224.249	51.137.122.50
72.182.86.108	1.226.191.7	31.242.229.252	91.150.237.156
104.254.175.207	24.78.14.102	24.165.39.155	88.100.229.156
41.116.179.96	212.122.35.17	172.223.60.31	54.177.87.5
153.107.39.32	93.231.144.146	63.253.230.109	187.199.199.235