105.211.59.159

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: MTN

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.211.59.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7744
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;105.211.59.159.			IN	A

;; AUTHORITY SECTION:
.			197	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050403 1800 900 604800 86400

;; Query time: 324 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 05 11:22:48 CST 2020
;; MSG SIZE  rcvd: 118

Host info

159.59.211.105.in-addr.arpa domain name pointer 105-211-59-159.access.mtnbusiness.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
159.59.211.105.in-addr.arpa	name = 105-211-59-159.access.mtnbusiness.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.166.161.163	attack	WordPress brute force	2019-07-20 09:15:18
153.36.236.151	attack	Jul 20 03:43:36 MainVPS sshd[14494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.151 user=root Jul 20 03:43:38 MainVPS sshd[14494]: Failed password for root from 153.36.236.151 port 20835 ssh2 Jul 20 03:43:50 MainVPS sshd[14511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.151 user=root Jul 20 03:43:52 MainVPS sshd[14511]: Failed password for root from 153.36.236.151 port 58580 ssh2 Jul 20 03:44:02 MainVPS sshd[14528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.151 user=root Jul 20 03:44:04 MainVPS sshd[14528]: Failed password for root from 153.36.236.151 port 34973 ssh2 ...	2019-07-20 09:46:30
84.113.99.164	attackspambots	Jul 20 01:48:37 localhost sshd\[10547\]: Invalid user jo from 84.113.99.164 port 38956 Jul 20 01:48:37 localhost sshd\[10547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.113.99.164 ...	2019-07-20 09:11:13
144.76.99.215	attack	20 attempts against mh-misbehave-ban on milky.magehost.pro	2019-07-20 09:20:27
68.183.81.132	attackbots	xmlrpc attack	2019-07-20 09:16:36
104.131.59.173	attack	10s of requests to none existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined node-superagent/4.1.0	2019-07-20 09:43:15
159.65.155.58	attackbotsspam	xmlrpc attack	2019-07-20 09:11:29
193.236.43.48	attackspam	3389BruteforceFW21	2019-07-20 09:56:44
181.46.8.249	attack	TCP port 25 (SMTP) attempt blocked by hMailServer IP-check. Abuse score 16%	2019-07-20 09:31:58
165.22.26.231	attackspambots	165.22.26.231 - - [20/Jul/2019:03:39:05 +0200] "POST [munged]wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000	2019-07-20 09:50:58
173.254.56.16	attackbotsspam	It is the Hacker that uses several IPs to detonate the site so stay connected and "block" immediately if it notifies your site according to the examples below: 81.28.164.55/19/07/2019 09:58/617/301/GET/HTTP/1.1 160.153.147.160/web/wp-includes/wlwmanifest.xml/19/07/2019 09:58/9/403/GET/HTTP/1.1 199.204.248.138/dev/wp-includes/wlwmanifest.xml/19/07/2019 09:58/9/error403/GET/HTTP/1.1 198.71.237.24/www/wp-includes/wlwmanifest.xml/19/07/2019 09:59/9/error403/GET/HTTP/1.1 5.144.130.14/staging/wp-includes/wlwmanifest.xml/19/07/2019 10:00/101/error404/GET/HTTP/1.1 198.71.238.4/shop/wp-includes/wlwmanifest.xml/19/07/2019 10:01/9/error403/GET/HTTP/1.1 192.254.76.6/news/wp-includes/wlwmanifest.xml/19/07/2019 10:01/101/error404/GET/HTTP/1.1 162.252.87.223/main/wp-includes/wlwmanifest.xml/19/07/2019 10:02/101/error404/GET/HTTP/1.1 176.53.85.89/newsite/wp-includes/wlwmanifest.xml/19/07/2019 10:02/101/error404/GET/HTTP/1.1 173.254.56.16/v2/wp-includes/wlwmanifest.xml/19/07/2019 10:03/101/error404/GET/HTTP/1	2019-07-20 09:35:35
81.22.45.26	attackbots	Port scan: Attack repeated for 24 hours	2019-07-20 09:46:56
142.93.65.163	attack	Automatic report - Banned IP Access	2019-07-20 09:14:05
45.238.204.11	attackbots	Automatic report - Port Scan Attack	2019-07-20 09:39:08
157.230.209.220	attackspambots	Jul 20 01:34:54 MK-Soft-VM5 sshd\[13992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.209.220 user=root Jul 20 01:34:56 MK-Soft-VM5 sshd\[13992\]: Failed password for root from 157.230.209.220 port 38504 ssh2 Jul 20 01:39:16 MK-Soft-VM5 sshd\[14006\]: Invalid user steam from 157.230.209.220 port 36606 ...	2019-07-20 09:45:18

Recently Reported IPs

47.149.41.63	139.99.209.229	72.96.216.219	115.112.176.41
51.252.100.81	190.151.202.180	218.66.173.209	200.94.242.233
125.227.188.247	53.120.9.219	72.121.86.216	106.13.174.171
25.181.41.130	172.79.246.26	91.68.168.148	160.246.182.76
235.182.159.32	212.166.187.94	168.47.241.57	80.42.234.90