105.224.226.248

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: Telkom SA Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2019-09-07 05:30:33

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.224.226.248
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23784
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.224.226.248.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090601 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Sep 07 05:30:26 CST 2019
;; MSG SIZE  rcvd: 119

Host info

248.226.224.105.in-addr.arpa domain name pointer 105-224-226-248.ti-dsl.telkomsa.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
248.226.224.105.in-addr.arpa	name = 105-224-226-248.ti-dsl.telkomsa.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.76.173.244	attack	Sep 16 08:47:12 localhost sshd\[89316\]: Invalid user dns from 61.76.173.244 port 8280 Sep 16 08:47:12 localhost sshd\[89316\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.173.244 Sep 16 08:47:14 localhost sshd\[89316\]: Failed password for invalid user dns from 61.76.173.244 port 8280 ssh2 Sep 16 08:52:17 localhost sshd\[89456\]: Invalid user fm from 61.76.173.244 port 51958 Sep 16 08:52:17 localhost sshd\[89456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.173.244 ...	2019-09-16 17:04:35
106.13.83.251	attackbots	Sep 15 22:25:18 aiointranet sshd\[4629\]: Invalid user nasec from 106.13.83.251 Sep 15 22:25:18 aiointranet sshd\[4629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.83.251 Sep 15 22:25:20 aiointranet sshd\[4629\]: Failed password for invalid user nasec from 106.13.83.251 port 33678 ssh2 Sep 15 22:29:57 aiointranet sshd\[4984\]: Invalid user pkangara from 106.13.83.251 Sep 15 22:29:57 aiointranet sshd\[4984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.83.251	2019-09-16 16:36:36
43.241.37.204	attackbots	firewall-block, port(s): 5900/tcp	2019-09-16 16:24:53
69.94.133.141	attackbots	Lines containing failures of 69.94.133.141 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=69.94.133.141	2019-09-16 16:38:10
106.12.178.127	attackspam	Sep 16 11:49:12 server sshd\[30364\]: Invalid user john@123 from 106.12.178.127 port 59844 Sep 16 11:49:12 server sshd\[30364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.127 Sep 16 11:49:14 server sshd\[30364\]: Failed password for invalid user john@123 from 106.12.178.127 port 59844 ssh2 Sep 16 11:53:59 server sshd\[11452\]: Invalid user graphics123 from 106.12.178.127 port 45058 Sep 16 11:53:59 server sshd\[11452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.127	2019-09-16 16:56:45
156.216.247.144	attack	Sep 16 05:35:49 master sshd[26024]: Failed password for invalid user admin from 156.216.247.144 port 60317 ssh2	2019-09-16 17:03:08
78.183.165.69	attackbots	" "	2019-09-16 16:34:36
54.161.243.241	attackspam	by Amazon Technologies Inc.	2019-09-16 16:38:46
201.182.223.59	attackspambots	Sep 15 22:39:55 kapalua sshd\[17807\]: Invalid user ewilliams from 201.182.223.59 Sep 15 22:39:55 kapalua sshd\[17807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.182.223.59 Sep 15 22:39:57 kapalua sshd\[17807\]: Failed password for invalid user ewilliams from 201.182.223.59 port 37251 ssh2 Sep 15 22:45:06 kapalua sshd\[18231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.182.223.59 user=mysql Sep 15 22:45:08 kapalua sshd\[18231\]: Failed password for mysql from 201.182.223.59 port 57649 ssh2	2019-09-16 16:52:25
36.105.242.36	attackspam	Telnet Server BruteForce Attack	2019-09-16 17:02:14
153.36.236.35	attackspambots	Sep 16 11:26:45 server2 sshd\[8592\]: User root from 153.36.236.35 not allowed because not listed in AllowUsers Sep 16 11:26:48 server2 sshd\[8594\]: User root from 153.36.236.35 not allowed because not listed in AllowUsers Sep 16 11:26:53 server2 sshd\[8598\]: User root from 153.36.236.35 not allowed because not listed in AllowUsers Sep 16 11:36:08 server2 sshd\[9266\]: User root from 153.36.236.35 not allowed because not listed in AllowUsers Sep 16 11:36:08 server2 sshd\[9265\]: User root from 153.36.236.35 not allowed because not listed in AllowUsers Sep 16 11:36:08 server2 sshd\[9271\]: User root from 153.36.236.35 not allowed because not listed in AllowUsers Sep 16 11:36:08 server2 sshd\[9273\]: User root from 153.36.236.35 not allowed because not listed in AllowUsers Sep 16 11:36:08 server2 sshd\[9269\]: User root from 153.36.236.35 not allowed because not listed in AllowUsers	2019-09-16 16:45:36
106.12.28.36	attack	Sep 15 22:26:18 tdfoods sshd\[5057\]: Invalid user newadmin from 106.12.28.36 Sep 15 22:26:18 tdfoods sshd\[5057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.28.36 Sep 15 22:26:20 tdfoods sshd\[5057\]: Failed password for invalid user newadmin from 106.12.28.36 port 54136 ssh2 Sep 15 22:29:29 tdfoods sshd\[5347\]: Invalid user dietpi from 106.12.28.36 Sep 15 22:29:29 tdfoods sshd\[5347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.28.36	2019-09-16 16:58:20
159.89.169.137	attackbots	Sep 15 23:02:47 auw2 sshd\[12722\]: Invalid user taf from 159.89.169.137 Sep 15 23:02:47 auw2 sshd\[12722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.137 Sep 15 23:02:49 auw2 sshd\[12722\]: Failed password for invalid user taf from 159.89.169.137 port 41432 ssh2 Sep 15 23:07:39 auw2 sshd\[13205\]: Invalid user student1 from 159.89.169.137 Sep 15 23:07:39 auw2 sshd\[13205\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.137	2019-09-16 17:14:28
36.22.187.34	attack	Sep 16 03:48:36 lnxmail61 sshd[6746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.22.187.34	2019-09-16 16:32:54
94.191.31.230	attack	Sep 16 07:13:58 host sshd\[32436\]: Invalid user mwolter from 94.191.31.230 port 60688 Sep 16 07:13:58 host sshd\[32436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.31.230 ...	2019-09-16 16:28:55

Recently Reported IPs

124.158.179.16	70.178.225.99	88.225.212.159	35.221.190.134
186.90.145.127	31.13.144.45	21.245.156.95	113.84.204.188
22.179.95.94	117.6.125.61	81.214.55.30	202.158.17.253
95.40.51.80	108.171.196.71	44.142.193.232	222.7.238.56
123.71.139.86	117.6.98.163	145.159.96.70	2a01:4f8:c0c:7df::2