105.228.98.107

Basic Info

City: Pretoria

Region: Gauteng

Country: South Africa

Internet Service Provider: Telkom SA Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 105.228.98.107 on Port 445(SMB)	2020-01-30 04:48:10

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.228.98.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22646
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.228.98.107.			IN	A

;; AUTHORITY SECTION:
.			443	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012901 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 04:48:04 CST 2020
;; MSG SIZE  rcvd: 118

Host info

107.98.228.105.in-addr.arpa domain name pointer 98-228-105-107.north.dsl.telkomsa.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
107.98.228.105.in-addr.arpa	name = 98-228-105-107.north.dsl.telkomsa.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
202.179.137.54	attack	SMB Server BruteForce Attack	2019-06-25 17:32:48
194.183.173.216	attackspambots	Jun 25 09:00:04 mail sshd\[4670\]: Invalid user uftp from 194.183.173.216 port 59732 Jun 25 09:00:04 mail sshd\[4670\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.183.173.216 Jun 25 09:00:07 mail sshd\[4670\]: Failed password for invalid user uftp from 194.183.173.216 port 59732 ssh2 Jun 25 09:02:55 mail sshd\[31928\]: Invalid user monitor from 194.183.173.216 port 51502 Jun 25 09:02:55 mail sshd\[31928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.183.173.216 ...	2019-06-25 16:55:54
167.114.227.94	attackbotsspam	167.114.227.94 - - - [25/Jun/2019:07:02:37 +0000] "GET /w00tw00t.at.ISC.SANS.DFind:) HTTP/1.1" 400 166 "-" "-" "-" "-"	2019-06-25 17:05:05
103.133.107.48	attackspambots	>10 unauthorized SSH connections	2019-06-25 17:07:02
112.85.42.238	attack	Jun 25 11:30:45 MK-Soft-Root1 sshd\[26929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.238 user=root Jun 25 11:30:47 MK-Soft-Root1 sshd\[26929\]: Failed password for root from 112.85.42.238 port 36889 ssh2 Jun 25 11:30:49 MK-Soft-Root1 sshd\[26929\]: Failed password for root from 112.85.42.238 port 36889 ssh2 ...	2019-06-25 17:47:21
92.118.37.81	attackbotsspam	25.06.2019 09:47:03 Connection to port 17117 blocked by firewall	2019-06-25 17:55:59
188.165.211.99	attackbots	Automated report - ssh fail2ban: Jun 25 08:32:31 authentication failure Jun 25 08:32:33 wrong password, user=hekz, port=37978, ssh2 Jun 25 09:03:02 authentication failure	2019-06-25 16:52:04
103.114.107.128	attackbotsspam	>30 unauthorized SSH connections	2019-06-25 17:21:30
102.129.249.95	attackbotsspam	spam	2019-06-25 18:01:53
104.227.8.95	attackbotsspam	bad bot	2019-06-25 17:09:46
81.152.79.136	attack	port scan and connect, tcp 23 (telnet)	2019-06-25 17:36:57
192.99.57.193	attack	Jun 25 10:55:08 XXX sshd[12292]: Invalid user jobs from 192.99.57.193 port 49636	2019-06-25 17:10:16
103.125.190.110	attackspambots	>40 unauthorized SSH connections	2019-06-25 17:22:24
52.224.143.24	attackspambots	Jun 25 03:02:04 localhost kernel: [12690317.898706] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=52.224.143.24 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=56540 PROTO=UDP SPT=30016 DPT=111 LEN=48 Jun 25 03:02:04 localhost kernel: [12690317.898739] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=52.224.143.24 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=56540 PROTO=UDP SPT=30016 DPT=111 LEN=48 Jun 25 03:02:05 localhost kernel: [12690318.297293] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=52.224.143.24 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=6616 PROTO=UDP SPT=30016 DPT=111 LEN=48 Jun 25 03:02:05 localhost kernel: [12690318.297326] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=52.224.143.24 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=6616 PROTO=UDP SPT=30016 DPT=111 LEN=48	2019-06-25 17:28:57
183.82.133.66	attackbotsspam	SMB Server BruteForce Attack	2019-06-25 17:44:21

Recently Reported IPs

115.79.36.12	110.3.232.223	187.97.22.69	96.230.15.176
103.92.24.240	126.39.212.56	184.75.102.70	197.219.155.108
197.218.90.127	115.186.177.142	206.121.203.71	197.218.84.36
200.55.12.34	18.182.51.1	104.45.241.172	182.84.85.159
176.84.64.115	71.93.116.75	203.51.44.80	108.236.180.18