105.244.117.201

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: Vodacom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Automatic report - Port Scan Attack	2020-08-22 18:57:02

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.244.117.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2195
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.244.117.201.		IN	A

;; AUTHORITY SECTION:
.			397	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082200 1800 900 604800 86400

;; Query time: 29 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 22 18:56:57 CST 2020
;; MSG SIZE  rcvd: 119

Host info

201.117.244.105.in-addr.arpa domain name pointer vc-gp-n-105-244-117-201.umts.vodacom.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
201.117.244.105.in-addr.arpa	name = vc-gp-n-105-244-117-201.umts.vodacom.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.235.73.150	attackspam	Jun 1 18:16:03 hpm sshd\[17432\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.73.150 user=root Jun 1 18:16:05 hpm sshd\[17432\]: Failed password for root from 49.235.73.150 port 58118 ssh2 Jun 1 18:20:45 hpm sshd\[17781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.73.150 user=root Jun 1 18:20:47 hpm sshd\[17781\]: Failed password for root from 49.235.73.150 port 54862 ssh2 Jun 1 18:25:26 hpm sshd\[18124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.73.150 user=root	2020-06-02 15:40:03
37.105.222.205	attackbots	firewall-block, port(s): 80/tcp	2020-06-02 16:07:33
49.233.90.8	attackbotsspam	Jun 2 00:44:13 ws12vmsma01 sshd[45627]: Failed password for root from 49.233.90.8 port 50514 ssh2 Jun 2 00:50:08 ws12vmsma01 sshd[46423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.90.8 user=root Jun 2 00:50:10 ws12vmsma01 sshd[46423]: Failed password for root from 49.233.90.8 port 57982 ssh2 ...	2020-06-02 16:02:22
191.32.218.21	attackspam	Jun 2 06:45:24 vps687878 sshd\[26794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.32.218.21 user=root Jun 2 06:45:26 vps687878 sshd\[26794\]: Failed password for root from 191.32.218.21 port 49408 ssh2 Jun 2 06:49:48 vps687878 sshd\[27083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.32.218.21 user=root Jun 2 06:49:50 vps687878 sshd\[27083\]: Failed password for root from 191.32.218.21 port 53564 ssh2 Jun 2 06:54:11 vps687878 sshd\[27540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.32.218.21 user=root ...	2020-06-02 15:47:40
45.55.214.64	attackbotsspam	Port Scan detected from 45.55.214.64 (US/United States/New Jersey/Clifton/-). 4 hits in the last 25 seconds	2020-06-02 15:56:51
185.220.101.135	attack	Unauthorized IMAP connection attempt	2020-06-02 15:51:56
185.176.27.42	attackspambots	06/02/2020-02:59:41.690791 185.176.27.42 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-06-02 16:03:50
128.199.240.120	attackspambots	Jun 2 03:59:23 lanister sshd[9252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.240.120 user=root Jun 2 03:59:25 lanister sshd[9252]: Failed password for root from 128.199.240.120 port 45070 ssh2 Jun 2 04:04:37 lanister sshd[9314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.240.120 user=root Jun 2 04:04:39 lanister sshd[9314]: Failed password for root from 128.199.240.120 port 59488 ssh2	2020-06-02 16:06:06
167.71.89.108	attack	2020-06-02T05:24:08.985104abusebot-8.cloudsearch.cf sshd[10779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=gps.datahinge.com user=root 2020-06-02T05:24:11.095984abusebot-8.cloudsearch.cf sshd[10779]: Failed password for root from 167.71.89.108 port 41370 ssh2 2020-06-02T05:27:33.184041abusebot-8.cloudsearch.cf sshd[10974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=gps.datahinge.com user=root 2020-06-02T05:27:35.103321abusebot-8.cloudsearch.cf sshd[10974]: Failed password for root from 167.71.89.108 port 35740 ssh2 2020-06-02T05:30:38.917375abusebot-8.cloudsearch.cf sshd[11191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=gps.datahinge.com user=root 2020-06-02T05:30:40.904487abusebot-8.cloudsearch.cf sshd[11191]: Failed password for root from 167.71.89.108 port 58340 ssh2 2020-06-02T05:33:40.193396abusebot-8.cloudsearch.cf sshd[11359]: pam_unix(sshd: ...	2020-06-02 15:23:28
203.93.97.101	attack	Jun 1 22:36:26 server1 sshd\[28235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.93.97.101 user=root Jun 1 22:36:29 server1 sshd\[28235\]: Failed password for root from 203.93.97.101 port 52096 ssh2 Jun 1 22:39:57 server1 sshd\[29371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.93.97.101 user=root Jun 1 22:39:59 server1 sshd\[29371\]: Failed password for root from 203.93.97.101 port 48620 ssh2 Jun 1 22:43:25 server1 sshd\[30826\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.93.97.101 user=root ...	2020-06-02 15:22:58
222.186.175.148	attackbots	Jun 2 09:59:08 melroy-server sshd[27533]: Failed password for root from 222.186.175.148 port 31726 ssh2 Jun 2 09:59:13 melroy-server sshd[27533]: Failed password for root from 222.186.175.148 port 31726 ssh2 ...	2020-06-02 16:04:39
106.12.69.250	attack	Jun 2 14:04:24 webhost01 sshd[12035]: Failed password for root from 106.12.69.250 port 50016 ssh2 ...	2020-06-02 15:30:53
185.153.196.226	attack	200602 2:54:04 [Warning] Access denied for user 'root'@'185.153.196.226' (using password: YES) 200602 2:56:00 [Warning] Access denied for user 'root'@'185.153.196.226' (using password: YES) 200602 3:01:33 [Warning] Access denied for user 'root'@'185.153.196.226' (using password: YES) ...	2020-06-02 15:45:53
157.245.207.198	attack	(sshd) Failed SSH login from 157.245.207.198 (SG/Singapore/mail.courier-integrator.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 2 05:50:49 ubnt-55d23 sshd[3170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.207.198 user=root Jun 2 05:50:51 ubnt-55d23 sshd[3170]: Failed password for root from 157.245.207.198 port 46476 ssh2	2020-06-02 15:39:47
164.132.46.197	attackbots	Jun 2 05:01:29 *** sshd[16739]: User root from 164.132.46.197 not allowed because not listed in AllowUsers	2020-06-02 15:22:34

Recently Reported IPs

18.223.106.138	113.179.21.78	37.237.194.31	20.190.44.118
148.216.50.127	170.81.19.98	100.57.158.180	251.245.63.10
113.181.62.105	93.178.48.52	189.244.19.87	186.227.169.251
143.255.243.127	45.155.124.77	14.162.127.159	231.229.43.86
133.111.137.16	103.170.76.104	120.237.9.194	81.143.207.170