105.213.131.65

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.213.131.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3442
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.213.131.65.			IN	A

;; AUTHORITY SECTION:
.			338	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 20:48:55 CST 2022
;; MSG SIZE  rcvd: 107

Host info

65.131.213.105.in-addr.arpa domain name pointer 105-213-131-65.access.mtnbusiness.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
65.131.213.105.in-addr.arpa	name = 105-213-131-65.access.mtnbusiness.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.89.126.252	attackspambots	LGS,WP GET /wp-login.php	2019-12-08 08:33:36
159.89.13.0	attack	Dec 8 00:25:26 minden010 sshd[25142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.13.0 Dec 8 00:25:28 minden010 sshd[25142]: Failed password for invalid user www from 159.89.13.0 port 36982 ssh2 Dec 8 00:30:27 minden010 sshd[30018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.13.0 ...	2019-12-08 08:22:04
69.194.8.237	attackbots	Dec 8 00:22:18 vpn01 sshd[10317]: Failed password for root from 69.194.8.237 port 45106 ssh2 Dec 8 00:30:17 vpn01 sshd[10672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.194.8.237 ...	2019-12-08 08:40:43
104.219.168.124	attack	CloudCIX Reconnaissance Scan Detected, PTR: smtp1.atlasadventureshere.biz.	2019-12-08 08:16:13
106.13.1.214	attackbotsspam	SSH-BruteForce	2019-12-08 08:34:06
124.158.179.6	attackbotsspam	Unauthorized connection attempt from IP address 124.158.179.6 on Port 445(SMB)	2019-12-08 08:12:48
45.143.220.103	attack	45.143.220.103 was recorded 5 times by 5 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 8, 66	2019-12-08 08:22:57
167.71.215.72	attack	Dec 8 01:13:11 srv206 sshd[5311]: Invalid user j2m from 167.71.215.72 Dec 8 01:13:11 srv206 sshd[5311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.215.72 Dec 8 01:13:11 srv206 sshd[5311]: Invalid user j2m from 167.71.215.72 Dec 8 01:13:14 srv206 sshd[5311]: Failed password for invalid user j2m from 167.71.215.72 port 46820 ssh2 ...	2019-12-08 08:34:51
36.71.160.214	attackspambots	[Sun Dec 08 06:30:28.445777 2019] [:error] [pid 28327:tid 139906326849280] [client 36.71.160.214:11349] [client 36.71.160.214] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/informasi-iklim/infografis-iklim/infografis-bulanan"] [unique_id "Xew2E3Sr2qxoiTIoM8I6YAAAANE"], referer: https://karangploso.jatim.bmkg.go.id/ ...	2019-12-08 08:21:18
104.192.0.62	attack	CloudCIX Reconnaissance Scan Detected, PTR: host-104-192-0-62.datawagon.net.	2019-12-08 08:24:55
51.68.226.66	attackspambots	Dec 8 02:21:18 sauna sshd[225518]: Failed password for root from 51.68.226.66 port 54914 ssh2 Dec 8 02:26:30 sauna sshd[225801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.226.66 ...	2019-12-08 08:35:18
186.46.43.125	attack	Dec 7 13:43:20 kapalua sshd\[13146\]: Invalid user tomotaka from 186.46.43.125 Dec 7 13:43:20 kapalua sshd\[13146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.saraguro.gob.ec Dec 7 13:43:22 kapalua sshd\[13146\]: Failed password for invalid user tomotaka from 186.46.43.125 port 56334 ssh2 Dec 7 13:49:34 kapalua sshd\[13737\]: Invalid user lindsey from 186.46.43.125 Dec 7 13:49:34 kapalua sshd\[13737\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.saraguro.gob.ec	2019-12-08 08:03:33
185.50.198.121	attack	xmlrpc attack	2019-12-08 08:33:24
83.14.199.49	attackbotsspam	Dec 8 05:16:59 gw1 sshd[24662]: Failed password for news from 83.14.199.49 port 48860 ssh2 ...	2019-12-08 08:31:43
106.12.16.107	attack	Dec 7 19:17:10 TORMINT sshd\[13397\]: Invalid user duider from 106.12.16.107 Dec 7 19:17:10 TORMINT sshd\[13397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.16.107 Dec 7 19:17:12 TORMINT sshd\[13397\]: Failed password for invalid user duider from 106.12.16.107 port 50226 ssh2 ...	2019-12-08 08:40:13

Recently Reported IPs

105.213.132.134	105.213.132.207	105.213.132.249	105.213.132.141
105.213.133.185	105.213.133.191	101.132.150.119	105.213.132.92
105.213.133.10	105.213.130.102	105.213.134.115	105.213.132.155
101.132.150.96	105.213.133.58	105.213.133.79	105.213.134.231
105.213.135.181	105.213.134.253	105.213.134.34	105.213.135.24