105.27.245.252

Basic Info

City: unknown

Region: unknown

Country: Uganda

Internet Service Provider: SEACOM Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2019-10-15 01:01:58

Comments on same subnet:

IP	Type	Details	Datetime
105.27.245.244	attackspambots	Icarus honeypot on github	2020-09-01 09:15:34
105.27.245.244	attack	Unauthorised access (Aug 27) SRC=105.27.245.244 LEN=44 TTL=51 ID=33890 TCP DPT=23 WINDOW=43567 SYN	2020-08-27 14:57:01
105.27.245.156	attackbots	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-04-07 03:37:33
105.27.245.243	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-14 23:40:54
105.27.245.243	attackbots	Unauthorized connection attempt detected from IP address 105.27.245.243 to port 81 [J]	2020-01-14 19:37:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.27.245.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18659
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.27.245.252.			IN	A

;; AUTHORITY SECTION:
.			555	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101401 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 15 01:01:53 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 252.245.27.105.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 252.245.27.105.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
70.24.111.20	attack	5555/tcp 5555/tcp [2019-11-13/16]2pkt	2019-11-16 23:45:36
160.238.236.33	attack	26/tcp [2019-11-16]1pkt	2019-11-17 00:17:01
185.156.73.52	attackspam	11/16/2019-11:12:24.516297 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-17 00:13:37
154.16.171.13	attackbots	$f2bV_matches	2019-11-17 00:10:02
1.169.24.34	attack	23/tcp 2323/tcp 23/tcp [2019-11-14/16]3pkt	2019-11-16 23:43:52
113.186.248.204	attackbotsspam	445/tcp 445/tcp [2019-11-14]2pkt	2019-11-16 23:40:41
222.186.173.142	attack	Nov 16 16:40:14 ns381471 sshd[18183]: Failed password for root from 222.186.173.142 port 52348 ssh2 Nov 16 16:40:17 ns381471 sshd[18183]: Failed password for root from 222.186.173.142 port 52348 ssh2	2019-11-16 23:41:10
134.209.241.87	attack	Wordpress login attempts	2019-11-17 00:21:03
200.209.174.76	attackspambots	$f2bV_matches	2019-11-17 00:02:26
103.108.73.57	attackspambots	Fail2Ban Ban Triggered	2019-11-16 23:53:07
217.61.15.38	attackbotsspam	Nov 16 06:17:00 php1 sshd\[2632\]: Invalid user juan from 217.61.15.38 Nov 16 06:17:00 php1 sshd\[2632\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.15.38 Nov 16 06:17:02 php1 sshd\[2632\]: Failed password for invalid user juan from 217.61.15.38 port 53848 ssh2 Nov 16 06:20:47 php1 sshd\[2939\]: Invalid user dominic from 217.61.15.38 Nov 16 06:20:47 php1 sshd\[2939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.15.38	2019-11-17 00:23:05
201.48.233.195	attack	Nov 16 05:22:05 wbs sshd\[32630\]: Invalid user info from 201.48.233.195 Nov 16 05:22:05 wbs sshd\[32630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.48.233.195 Nov 16 05:22:07 wbs sshd\[32630\]: Failed password for invalid user info from 201.48.233.195 port 62045 ssh2 Nov 16 05:27:29 wbs sshd\[679\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.48.233.195 user=news Nov 16 05:27:31 wbs sshd\[679\]: Failed password for news from 201.48.233.195 port 62738 ssh2	2019-11-16 23:41:30
187.131.18.238	attack	23/tcp [2019-11-16]1pkt	2019-11-17 00:05:45
5.196.217.177	attack	Nov 16 16:58:51 mail postfix/smtpd[28779]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 16 16:59:46 mail postfix/smtpd[27069]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 16 16:59:51 mail postfix/smtpd[27556]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-17 00:07:57
71.6.233.185	attackspam	5443/tcp 22/tcp 2004/tcp... [2019-09-24/11-16]5pkt,5pt.(tcp)	2019-11-16 23:53:30

Recently Reported IPs

35.230.158.25	40.113.108.6	121.234.236.134	177.67.27.45
171.229.228.91	64.145.79.187	35.175.127.248	212.237.58.253
129.146.181.251	144.91.76.173	86.107.163.134	118.170.192.46
221.12.59.212	2.44.157.229	185.70.107.209	103.113.96.74
103.7.43.46	34.77.137.103	116.75.228.133	190.217.185.74