105.225.31.63 - IPInfo

Basic Info

City: Pretoria

Region: Gauteng

Country: South Africa

Internet Service Provider: Telkom SA Ltd.

Hostname: unknown

Organization: Telkom-Internet

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Trying to deliver email spam, but blocked by RBL	2019-07-03 01:38:20

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.225.31.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45317
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.225.31.63.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 03 01:38:10 CST 2019
;; MSG SIZE  rcvd: 117

Host info

63.31.225.105.in-addr.arpa domain name pointer 31-225-105-63.north.dsl.telkomsa.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
63.31.225.105.in-addr.arpa	name = 31-225-105-63.north.dsl.telkomsa.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.3.84	attackspam	Aug 10 22:44:35 aat-srv002 sshd[26459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.3.84 Aug 10 22:44:37 aat-srv002 sshd[26459]: Failed password for invalid user tan from 106.12.3.84 port 42248 ssh2 Aug 10 22:48:55 aat-srv002 sshd[26522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.3.84 Aug 10 22:48:57 aat-srv002 sshd[26522]: Failed password for invalid user huso from 106.12.3.84 port 55998 ssh2 ...	2019-08-11 12:05:20
94.102.50.96	attack	Portscan or hack attempt detected by psad/fwsnort	2019-08-11 11:52:20
38.145.99.40	attackbotsspam	As always cogentco	2019-08-11 12:24:36
80.227.12.38	attack	ssh failed login	2019-08-11 12:19:45
82.202.163.223	attackbots	Unauthorised access (Aug 11) SRC=82.202.163.223 LEN=40 TTL=247 ID=54321 TCP DPT=23 WINDOW=65535 SYN	2019-08-11 11:56:58
92.97.75.77	attackbotsspam	Automatic report - Port Scan Attack	2019-08-11 12:13:07
92.119.160.101	attack	Bruteforcing port 3389 (Remote Desktop) - Exceed maximum 10 attempts/hour	2019-08-11 12:19:21
213.146.203.200	attackbots	Aug 11 03:55:34 areeb-Workstation sshd\[11939\]: Invalid user info from 213.146.203.200 Aug 11 03:55:34 areeb-Workstation sshd\[11939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.146.203.200 Aug 11 03:55:36 areeb-Workstation sshd\[11939\]: Failed password for invalid user info from 213.146.203.200 port 44252 ssh2 ...	2019-08-11 12:02:55
221.122.102.168	attack	Dec 20 18:32:41 motanud sshd\[16492\]: Invalid user ftpuser from 221.122.102.168 port 34764 Dec 20 18:32:41 motanud sshd\[16492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.122.102.168 Dec 20 18:32:42 motanud sshd\[16492\]: Failed password for invalid user ftpuser from 221.122.102.168 port 34764 ssh2	2019-08-11 11:48:12
51.254.99.208	attackspam	Aug 11 04:35:00 xeon sshd[37160]: Failed password for invalid user lenox from 51.254.99.208 port 46534 ssh2	2019-08-11 12:20:56
147.135.186.76	attackbots	Port scan on 2 port(s): 139 445	2019-08-11 12:02:25
86.27.51.128	attack	Aug 11 00:25:48 rpi sshd[23418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.27.51.128 Aug 11 00:25:50 rpi sshd[23418]: Failed password for invalid user admin from 86.27.51.128 port 32912 ssh2	2019-08-11 11:58:08
143.0.52.117	attackbotsspam	Aug 10 22:26:09 MK-Soft-VM3 sshd\[28202\]: Invalid user jc from 143.0.52.117 port 49497 Aug 10 22:26:09 MK-Soft-VM3 sshd\[28202\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.0.52.117 Aug 10 22:26:12 MK-Soft-VM3 sshd\[28202\]: Failed password for invalid user jc from 143.0.52.117 port 49497 ssh2 ...	2019-08-11 11:41:57
220.95.232.46	attack	Dec 21 06:03:05 motanud sshd\[19942\]: Invalid user vc from 220.95.232.46 port 37564 Dec 21 06:03:05 motanud sshd\[19942\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.95.232.46 Dec 21 06:03:07 motanud sshd\[19942\]: Failed password for invalid user vc from 220.95.232.46 port 37564 ssh2	2019-08-11 12:21:20
217.112.128.102	attackbotsspam	Spam mails sent to address hacked/leaked from Nexus Mods in July 2013	2019-08-11 11:56:15

Recently Reported IPs

104.148.230.117	78.165.238.241	49.145.203.20	178.124.207.30
203.224.251.198	152.254.182.220	115.128.235.219	172.4.36.220
194.156.124.13	54.149.139.210	79.111.214.65	89.205.8.237
185.142.99.126	214.243.39.69	179.97.44.158	141.228.153.234
129.89.25.74	80.22.115.130	208.187.237.192	5.153.178.89