105.224.119.245

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: Telkom SA Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	1433/tcp [2020-02-19]1pkt	2020-02-20 00:04:11

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.224.119.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46090
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.224.119.245.		IN	A

;; AUTHORITY SECTION:
.			418	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021900 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 00:04:04 CST 2020
;; MSG SIZE  rcvd: 119

Host info

245.119.224.105.in-addr.arpa domain name pointer 105-224-119-245.ti-dsl.telkomsa.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.119.224.105.in-addr.arpa	name = 105-224-119-245.ti-dsl.telkomsa.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.99.226.79	attack	DATE:2020-09-18 19:00:24, IP:125.99.226.79, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-09-20 00:20:03
103.235.3.139	attackspam	WordPress wp-login brute force :: 103.235.3.139 0.124 - [18/Sep/2020:17:00:21 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-09-20 00:25:18
123.252.137.30	attack	Unauthorized connection attempt from IP address 123.252.137.30 on Port 445(SMB)	2020-09-20 00:17:05
122.165.206.136	attackbots	Unauthorized connection attempt from IP address 122.165.206.136 on Port 445(SMB)	2020-09-20 00:18:48
37.59.48.181	attackspam	Sep 19 18:02:19 vps647732 sshd[10106]: Failed password for root from 37.59.48.181 port 35872 ssh2 ...	2020-09-20 00:37:07
106.13.167.62	attackbots	prod11 ...	2020-09-20 00:19:34
42.2.125.4	attackspam	Sep 18 07:00:14 scw-focused-cartwright sshd[17103]: Failed password for root from 42.2.125.4 port 55468 ssh2	2020-09-20 00:31:22
219.68.245.173	attack	Sep 19 19:06:15 root sshd[7172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.68.245.173 user=root Sep 19 19:06:18 root sshd[7172]: Failed password for root from 219.68.245.173 port 32811 ssh2 ...	2020-09-20 00:23:26
170.239.60.130	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-20 00:04:57
149.56.19.4	attackbots	149.56.19.4 - - [19/Sep/2020:17:19:15 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.56.19.4 - - [19/Sep/2020:17:19:21 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.56.19.4 - - [19/Sep/2020:17:19:27 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-20 00:38:18
49.35.208.181	attack	Auto Detect Rule! proto TCP (SYN), 49.35.208.181:59652->gjan.info:8291, len 52	2020-09-20 00:11:27
196.52.43.90	attackspambots	" "	2020-09-20 00:02:14
83.239.66.174	attackbots	Unauthorized connection attempt from IP address 83.239.66.174 on Port 445(SMB)	2020-09-20 00:35:50
14.35.215.3	attack	...	2020-09-20 00:00:28
40.122.149.176	attackspambots	SSH break in attempt ...	2020-09-20 00:41:47

Recently Reported IPs

203.218.101.116	218.237.207.4	115.75.91.201	27.74.168.92
41.65.169.7	103.74.111.63	221.213.48.51	190.201.113.141
93.182.74.142	153.126.183.213	198.13.41.60	178.46.215.129
35.210.131.58	125.161.128.155	103.98.210.115	27.74.88.115
63.80.88.191	14.254.181.84	218.240.137.68	103.89.42.169