105.225.109.97

Basic Info

City: Johannesburg

Region: Gauteng

Country: South Africa

Internet Service Provider: Telkom SA Ltd.

Hostname: unknown

Organization: Telkom-Internet

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SSH Bruteforce attack	2019-06-22 16:27:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.225.109.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20532
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.225.109.97.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062201 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 22 16:27:24 CST 2019
;; MSG SIZE  rcvd: 118

Host info

97.109.225.105.in-addr.arpa domain name pointer 109-225-105-97.north.dsl.telkomsa.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
97.109.225.105.in-addr.arpa	name = 109-225-105-97.north.dsl.telkomsa.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.77.52.216	attackspambots	2019-10-17T17:40:37.440651abusebot.cloudsearch.cf sshd\[28173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3138560.ip-51-77-52.eu user=root	2019-10-18 02:47:43
218.92.0.186	attack	Oct 17 15:21:24 tux-35-217 sshd\[21916\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.186 user=root Oct 17 15:21:27 tux-35-217 sshd\[21916\]: Failed password for root from 218.92.0.186 port 63730 ssh2 Oct 17 15:21:30 tux-35-217 sshd\[21916\]: Failed password for root from 218.92.0.186 port 63730 ssh2 Oct 17 15:21:32 tux-35-217 sshd\[21916\]: Failed password for root from 218.92.0.186 port 63730 ssh2 ...	2019-10-18 02:18:49
193.169.145.202	attackbots	GET (not exists) posting.php-spambot	2019-10-18 02:33:11
81.17.27.138	attack	xmlrpc attack	2019-10-18 02:46:10
185.220.101.24	attackbotsspam	Automatic report - Banned IP Access	2019-10-18 02:37:16
123.234.219.226	attackbotsspam	Automatic report - Banned IP Access	2019-10-18 02:20:24
109.70.100.20	attack	GET (not exists) posting.php-spambot	2019-10-18 02:42:55
199.249.230.88	attackspam	GET (not exists) posting.php-spambot	2019-10-18 02:31:24
51.254.37.192	attackbots	2019-10-17T14:00:30.153912shield sshd\[2289\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=www.gogoski.fr user=root 2019-10-17T14:00:32.275482shield sshd\[2289\]: Failed password for root from 51.254.37.192 port 36310 ssh2 2019-10-17T14:04:39.765642shield sshd\[2838\]: Invalid user fa from 51.254.37.192 port 47258 2019-10-17T14:04:39.769855shield sshd\[2838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=www.gogoski.fr 2019-10-17T14:04:41.417821shield sshd\[2838\]: Failed password for invalid user fa from 51.254.37.192 port 47258 ssh2	2019-10-18 02:12:52
106.12.84.115	attack	Oct 17 19:57:25 MK-Soft-VM5 sshd[30836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.115 Oct 17 19:57:27 MK-Soft-VM5 sshd[30836]: Failed password for invalid user ning from 106.12.84.115 port 45228 ssh2 ...	2019-10-18 02:10:52
199.249.230.73	attackspambots	GET (not exists) posting.php-spambot	2019-10-18 02:31:37
144.217.164.104	attackspambots	Automatic report - XMLRPC Attack	2019-10-18 02:41:20
139.217.131.52	attackspam	Oct 17 01:30:35 wbs sshd\[11616\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.131.52 user=root Oct 17 01:30:38 wbs sshd\[11616\]: Failed password for root from 139.217.131.52 port 1152 ssh2 Oct 17 01:35:58 wbs sshd\[12058\]: Invalid user estheti from 139.217.131.52 Oct 17 01:35:58 wbs sshd\[12058\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.131.52 Oct 17 01:36:00 wbs sshd\[12058\]: Failed password for invalid user estheti from 139.217.131.52 port 1152 ssh2	2019-10-18 02:28:08
77.247.181.165	attackbotsspam	10/17/2019-20:42:03.775139 77.247.181.165 Protocol: 6 ET TOR Known Tor Relay/Router (Not Exit) Node Traffic group 79	2019-10-18 02:47:21
185.220.101.32	attackbots	GET (not exists) posting.php-spambot	2019-10-18 02:36:11

Recently Reported IPs

121.200.63.67	55.59.231.57	42.193.99.217	5.234.228.197
214.177.225.237	214.245.239.8	191.66.34.231	1.165.26.53
132.55.150.91	36.66.73.114	183.157.54.99	121.129.64.95
121.18.180.178	129.25.111.14	37.151.43.114	106.175.196.250
211.203.252.77	206.181.192.150	67.35.190.190	190.217.142.10