105.225.3.3 - IPInfo

Basic Info

City: Port Elizabeth

Region: Eastern Cape

Country: South Africa

Internet Service Provider: Telkom

Hostname: unknown

Organization: Telkom-Internet

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
105.225.32.225	attackbotsspam	2019-10-21 x@x 2019-10-21 09:43:56 unexpected disconnection while reading SMTP command from (32-225-105-225.north.dsl.telkomsa.net) [105.225.32.225]:29647 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=105.225.32.225	2019-10-23 01:24:59
105.225.32.175	attackspambots	B: Magento admin pass /admin/ test (wrong country)	2019-10-16 03:48:25
105.225.34.16	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/105.225.34.16/ US - 1H : (606) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN37457 IP : 105.225.34.16 CIDR : 105.225.0.0/16 PREFIX COUNT : 64 UNIQUE IP COUNT : 806400 WYKRYTE ATAKI Z ASN37457 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 5 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-27 08:36:32
105.225.32.88	attackspam	Lines containing failures of 105.225.32.88 Jul 13 16:55:40 mellenthin postfix/smtpd[5663]: connect from unknown[105.225.32.88] Jul x@x Jul 13 16:55:41 mellenthin postfix/smtpd[5663]: lost connection after DATA from unknown[105.225.32.88] Jul 13 16:55:41 mellenthin postfix/smtpd[5663]: disconnect from unknown[105.225.32.88] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=105.225.32.88	2019-07-14 06:28:51
105.225.31.63	attack	Trying to deliver email spam, but blocked by RBL	2019-07-03 01:38:20

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.225.3.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25303
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.225.3.3.			IN	A

;; AUTHORITY SECTION:
.			2808	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061301 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 14 02:11:21 CST 2019
;; MSG SIZE  rcvd: 115

Host info

3.3.225.105.in-addr.arpa domain name pointer 3-225-105-3.south.dsl.telkomsa.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
3.3.225.105.in-addr.arpa	name = 3-225-105-3.south.dsl.telkomsa.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.234.219.105	attack	May 11 23:27:50 web01.agentur-b-2.de postfix/smtpd[339400]: warning: unknown[185.234.219.105]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 11 23:27:50 web01.agentur-b-2.de postfix/smtpd[339400]: lost connection after AUTH from unknown[185.234.219.105] May 11 23:27:58 web01.agentur-b-2.de postfix/smtpd[337975]: warning: unknown[185.234.219.105]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 11 23:27:58 web01.agentur-b-2.de postfix/smtpd[337975]: lost connection after AUTH from unknown[185.234.219.105] May 11 23:28:08 web01.agentur-b-2.de postfix/smtpd[339400]: warning: unknown[185.234.219.105]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 11 23:28:08 web01.agentur-b-2.de postfix/smtpd[339400]: lost connection after AUTH from unknown[185.234.219.105]	2020-05-12 05:44:37
51.75.30.199	attackspambots	Invalid user duanxd from 51.75.30.199 port 51800	2020-05-12 06:03:59
182.43.136.178	attack	May 11 23:24:17 home sshd[23147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.43.136.178 May 11 23:24:20 home sshd[23147]: Failed password for invalid user bestyrer from 182.43.136.178 port 48860 ssh2 May 11 23:30:16 home sshd[24000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.43.136.178 ...	2020-05-12 05:46:41
201.131.125.38	attack	SIP hacking overnight	2020-05-12 06:19:40
122.51.147.235	attack	k+ssh-bruteforce	2020-05-12 06:12:05
83.171.104.57	attack	...	2020-05-12 05:43:32
45.95.168.145	attackspambots	May 11 22:36:10 debian-2gb-nbg1-2 kernel: \[11488236.445548\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.95.168.145 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=TCP SPT=37449 DPT=22 WINDOW=65535 RES=0x00 SYN URGP=0	2020-05-12 05:48:31
113.189.226.11	attack	trying to access non-authorized port	2020-05-12 05:49:27
112.35.27.97	attack	May 11 22:28:13 rotator sshd\[27044\]: Invalid user teamspeak from 112.35.27.97May 11 22:28:15 rotator sshd\[27044\]: Failed password for invalid user teamspeak from 112.35.27.97 port 33412 ssh2May 11 22:32:06 rotator sshd\[27837\]: Invalid user test03 from 112.35.27.97May 11 22:32:07 rotator sshd\[27837\]: Failed password for invalid user test03 from 112.35.27.97 port 46806 ssh2May 11 22:35:58 rotator sshd\[28609\]: Invalid user jesse from 112.35.27.97May 11 22:36:00 rotator sshd\[28609\]: Failed password for invalid user jesse from 112.35.27.97 port 33368 ssh2 ...	2020-05-12 05:58:42
213.217.0.133	attackspambots	May 11 23:30:08 debian-2gb-nbg1-2 kernel: \[11491474.198986\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=213.217.0.133 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=55723 PROTO=TCP SPT=49220 DPT=60808 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-12 06:08:42
54.37.159.12	attack	SSH Invalid Login	2020-05-12 05:59:11
168.62.173.169	attack	SSH brute force attempt	2020-05-12 06:23:09
142.93.247.221	attack	2020-05-11T21:22:46.296712shield sshd\[27296\]: Invalid user jeff from 142.93.247.221 port 34908 2020-05-11T21:22:46.300567shield sshd\[27296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221 2020-05-11T21:22:48.226706shield sshd\[27296\]: Failed password for invalid user jeff from 142.93.247.221 port 34908 ssh2 2020-05-11T21:26:59.025957shield sshd\[28550\]: Invalid user vic from 142.93.247.221 port 43146 2020-05-11T21:26:59.028762shield sshd\[28550\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.247.221	2020-05-12 05:47:12
104.211.216.173	attackspambots	SSH Invalid Login	2020-05-12 05:54:26
67.205.167.193	attackspambots	2020-05-12T00:08:19.417823vps751288.ovh.net sshd\[8236\]: Invalid user applmgr from 67.205.167.193 port 44160 2020-05-12T00:08:19.427166vps751288.ovh.net sshd\[8236\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.167.193 2020-05-12T00:08:21.880141vps751288.ovh.net sshd\[8236\]: Failed password for invalid user applmgr from 67.205.167.193 port 44160 ssh2 2020-05-12T00:11:38.553343vps751288.ovh.net sshd\[8272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.167.193 user=root 2020-05-12T00:11:40.659903vps751288.ovh.net sshd\[8272\]: Failed password for root from 67.205.167.193 port 52210 ssh2	2020-05-12 06:21:09

Recently Reported IPs

208.18.246.37	187.216.251.182	251.40.201.215	175.115.53.73
222.127.112.252	115.39.39.89	211.177.132.141	79.23.8.203
85.95.245.135	5.157.204.219	179.189.27.248	192.255.123.214
213.169.119.210	182.232.38.251	196.187.205.165	213.84.43.225
118.4.158.152	210.152.122.189	131.50.184.216	131.9.22.83