105.225.3.3 - IPInfo

Basic Info

City: Port Elizabeth

Region: Eastern Cape

Country: South Africa

Internet Service Provider: Telkom

Hostname: unknown

Organization: Telkom-Internet

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
105.225.32.225	attackbotsspam	2019-10-21 x@x 2019-10-21 09:43:56 unexpected disconnection while reading SMTP command from (32-225-105-225.north.dsl.telkomsa.net) [105.225.32.225]:29647 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=105.225.32.225	2019-10-23 01:24:59
105.225.32.175	attackspambots	B: Magento admin pass /admin/ test (wrong country)	2019-10-16 03:48:25
105.225.34.16	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/105.225.34.16/ US - 1H : (606) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN37457 IP : 105.225.34.16 CIDR : 105.225.0.0/16 PREFIX COUNT : 64 UNIQUE IP COUNT : 806400 WYKRYTE ATAKI Z ASN37457 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 5 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-27 08:36:32
105.225.32.88	attackspam	Lines containing failures of 105.225.32.88 Jul 13 16:55:40 mellenthin postfix/smtpd[5663]: connect from unknown[105.225.32.88] Jul x@x Jul 13 16:55:41 mellenthin postfix/smtpd[5663]: lost connection after DATA from unknown[105.225.32.88] Jul 13 16:55:41 mellenthin postfix/smtpd[5663]: disconnect from unknown[105.225.32.88] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=105.225.32.88	2019-07-14 06:28:51
105.225.31.63	attack	Trying to deliver email spam, but blocked by RBL	2019-07-03 01:38:20

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.225.3.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25303
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.225.3.3.			IN	A

;; AUTHORITY SECTION:
.			2808	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061301 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 14 02:11:21 CST 2019
;; MSG SIZE  rcvd: 115

Host info

3.3.225.105.in-addr.arpa domain name pointer 3-225-105-3.south.dsl.telkomsa.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
3.3.225.105.in-addr.arpa	name = 3-225-105-3.south.dsl.telkomsa.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
1.4.230.120	attack	Port probing on unauthorized port 445	2020-05-07 18:07:43
95.169.229.108	attack	79.172.201.32:80 95.169.229.108 - - [07/May/2020:05:40:05 +0200] "CONNECT 45.33.35.141:80 HTTP/1.0" 405 555 "-" "-"	2020-05-07 18:02:04
185.50.149.9	attack	May 7 12:03:18 relay postfix/smtpd\[30338\]: warning: unknown\[185.50.149.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 7 12:03:40 relay postfix/smtpd\[12010\]: warning: unknown\[185.50.149.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 7 12:12:34 relay postfix/smtpd\[13754\]: warning: unknown\[185.50.149.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 7 12:12:58 relay postfix/smtpd\[12642\]: warning: unknown\[185.50.149.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 7 12:14:07 relay postfix/smtpd\[13754\]: warning: unknown\[185.50.149.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-07 18:19:36
167.172.187.201	attackbotsspam	prod11 ...	2020-05-07 18:00:45
187.115.154.122	attackbots	SSH Brute-Force attacks	2020-05-07 18:18:35
182.61.3.223	attackspambots	2020-05-07T09:01:39.312808server.espacesoutien.com sshd[11173]: Failed password for invalid user minecraft from 182.61.3.223 port 34520 ssh2 2020-05-07T09:05:20.434884server.espacesoutien.com sshd[11892]: Invalid user xb from 182.61.3.223 port 52206 2020-05-07T09:05:20.450746server.espacesoutien.com sshd[11892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.3.223 2020-05-07T09:05:20.434884server.espacesoutien.com sshd[11892]: Invalid user xb from 182.61.3.223 port 52206 2020-05-07T09:05:22.640794server.espacesoutien.com sshd[11892]: Failed password for invalid user xb from 182.61.3.223 port 52206 ssh2 ...	2020-05-07 18:15:14
164.132.194.160	attack	(mod_security) mod_security (id:210492) triggered by 164.132.194.160 (FR/France/160.ip-164-132-194.eu): 5 in the last 3600 secs	2020-05-07 18:29:49
91.204.248.42	attackspambots	May 7 06:03:13 firewall sshd[24202]: Invalid user cubrid from 91.204.248.42 May 7 06:03:15 firewall sshd[24202]: Failed password for invalid user cubrid from 91.204.248.42 port 45462 ssh2 May 7 06:07:16 firewall sshd[24277]: Invalid user rcs from 91.204.248.42 ...	2020-05-07 18:36:39
110.164.189.53	attackspambots	May 7 08:57:27 mail sshd[10736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.164.189.53 user=root May 7 08:57:28 mail sshd[10736]: Failed password for root from 110.164.189.53 port 48220 ssh2 ...	2020-05-07 17:58:24
18.218.102.142	attack	May 7 07:07:36 ns381471 sshd[26909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.218.102.142 May 7 07:07:38 ns381471 sshd[26909]: Failed password for invalid user test from 18.218.102.142 port 44846 ssh2	2020-05-07 18:30:57
185.153.197.27	attackbotsspam	May 7 10:21:50 debian-2gb-nbg1-2 kernel: \[11098596.693721\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.153.197.27 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=43746 PROTO=TCP SPT=44614 DPT=24128 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-07 18:09:18
87.246.7.105	attackbots	IP reached maximum auth failures	2020-05-07 18:37:05
171.103.33.126	attackspam	Dovecot Invalid User Login Attempt.	2020-05-07 18:07:22
185.153.197.75	attackspam	May 7 10:47:10 debian-2gb-nbg1-2 kernel: \[11100116.284657\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.153.197.75 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=28065 PROTO=TCP SPT=44641 DPT=1255 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-07 18:04:18
222.186.30.59	attackbots	May 7 05:51:57 ny01 sshd[561]: Failed password for root from 222.186.30.59 port 29330 ssh2 May 7 05:54:09 ny01 sshd[802]: Failed password for root from 222.186.30.59 port 49745 ssh2	2020-05-07 18:06:51

Recently Reported IPs

208.18.246.37	187.216.251.182	251.40.201.215	175.115.53.73
222.127.112.252	115.39.39.89	211.177.132.141	79.23.8.203
85.95.245.135	5.157.204.219	179.189.27.248	192.255.123.214
213.169.119.210	182.232.38.251	196.187.205.165	213.84.43.225
118.4.158.152	210.152.122.189	131.50.184.216	131.9.22.83