105.242.239.85

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: Vodacom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 105.242.239.85 to port 23 [J]	2020-03-02 18:11:43

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.242.239.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63306
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.242.239.85.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030200 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 02 18:11:40 CST 2020
;; MSG SIZE  rcvd: 118

Host info

85.239.242.105.in-addr.arpa domain name pointer vc-gp-n-105-242-239-85.umts.vodacom.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.239.242.105.in-addr.arpa	name = vc-gp-n-105-242-239-85.umts.vodacom.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
67.22.99.184	attack	MONEY SCAM FROM mrschristyw00@gmail.com,	2020-05-28 02:56:31
94.232.136.126	attackspam	May 27 15:32:05 vps46666688 sshd[12245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.232.136.126 May 27 15:32:07 vps46666688 sshd[12245]: Failed password for invalid user admin from 94.232.136.126 port 26258 ssh2 ...	2020-05-28 03:09:57
186.226.167.117	attackbots	May 27 21:07:31 master sshd[28223]: Failed password for invalid user admin from 186.226.167.117 port 58951 ssh2	2020-05-28 03:20:54
14.29.219.2	attackspam	May 27 14:21:29 Tower sshd[34408]: Connection from 14.29.219.2 port 32861 on 192.168.10.220 port 22 rdomain "" May 27 14:21:33 Tower sshd[34408]: Failed password for root from 14.29.219.2 port 32861 ssh2 May 27 14:21:34 Tower sshd[34408]: Received disconnect from 14.29.219.2 port 32861:11: Bye Bye [preauth] May 27 14:21:34 Tower sshd[34408]: Disconnected from authenticating user root 14.29.219.2 port 32861 [preauth]	2020-05-28 02:55:21
104.248.153.158	attackspam	May 27 20:48:31 vps647732 sshd[2726]: Failed password for root from 104.248.153.158 port 49610 ssh2 ...	2020-05-28 03:03:09
193.112.100.92	attack	May 27 20:45:26 localhost sshd\[2756\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.100.92 user=root May 27 20:45:28 localhost sshd\[2756\]: Failed password for root from 193.112.100.92 port 35226 ssh2 May 27 20:46:36 localhost sshd\[2779\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.100.92 user=root May 27 20:46:37 localhost sshd\[2779\]: Failed password for root from 193.112.100.92 port 51808 ssh2 May 27 20:47:47 localhost sshd\[2804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.100.92 user=root ...	2020-05-28 02:52:26
58.97.14.227	attackspam	Web Attack: Draytek Routers CVE-2020-8515	2020-05-28 03:18:16
45.153.229.3	attackbotsspam	May 27 20:06:12 lvps5-35-247-183 sshd[5332]: reveeclipse mapping checking getaddrinfo for ftp*2.example.com [45.153.229.3] failed - POSSIBLE BREAK-IN ATTEMPT! May 27 20:06:12 lvps5-35-247-183 sshd[5332]: Invalid user admin from 45.153.229.3 May 27 20:06:12 lvps5-35-247-183 sshd[5332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.153.229.3 May 27 20:06:14 lvps5-35-247-183 sshd[5332]: Failed password for invalid user admin from 45.153.229.3 port 51496 ssh2 May 27 20:06:14 lvps5-35-247-183 sshd[5332]: Received disconnect from 45.153.229.3: 11: Bye Bye [preauth] May 27 20:06:14 lvps5-35-247-183 sshd[5335]: reveeclipse mapping checking getaddrinfo for ftp*2.example.com [45.153.229.3] failed - POSSIBLE BREAK-IN ATTEMPT! May 27 20:06:14 lvps5-35-247-183 sshd[5335]: Invalid user admin from 45.153.229.3 May 27 20:06:14 lvps5-35-247-183 sshd[5335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= ........ -------------------------------	2020-05-28 03:23:21
88.26.226.48	attackbotsspam	Invalid user service from 88.26.226.48 port 33128	2020-05-28 03:15:52
174.138.48.152	attackspambots	May 27 11:21:54 propaganda sshd[12560]: Connection from 174.138.48.152 port 33632 on 10.0.0.161 port 22 rdomain "" May 27 11:21:54 propaganda sshd[12560]: Connection closed by 174.138.48.152 port 33632 [preauth]	2020-05-28 03:03:25
52.211.229.144	attackspambots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-05-28 03:19:25
101.231.146.36	attackbots	May 27 15:21:58 ws12vmsma01 sshd[22758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.146.36 May 27 15:21:58 ws12vmsma01 sshd[22758]: Invalid user deborah from 101.231.146.36 May 27 15:22:00 ws12vmsma01 sshd[22758]: Failed password for invalid user deborah from 101.231.146.36 port 59600 ssh2 ...	2020-05-28 02:56:04
221.226.171.145	attackspam	" "	2020-05-28 03:14:57
54.37.229.128	attack	May 27 20:34:27 piServer sshd[18045]: Failed password for root from 54.37.229.128 port 39626 ssh2 May 27 20:37:37 piServer sshd[18434]: Failed password for root from 54.37.229.128 port 43874 ssh2 ...	2020-05-28 02:58:06
222.186.30.76	attack	$f2bV_matches	2020-05-28 03:00:22

Recently Reported IPs

146.219.221.206	95.91.71.109	109.234.201.208	173.117.115.164
64.227.54.28	36.3.63.142	40.187.225.36	114.228.211.135
154.207.221.216	111.129.244.205	58.153.202.56	189.107.53.240
177.175.57.40	24.101.252.46	148.83.216.140	2.246.173.65
40.206.68.178	65.122.99.29	49.51.9.87	142.160.137.111