105.213.135.252

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.213.135.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65355
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.213.135.252.		IN	A

;; AUTHORITY SECTION:
.			32	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 20:49:06 CST 2022
;; MSG SIZE  rcvd: 108

Host info

252.135.213.105.in-addr.arpa domain name pointer 105-213-135-252.access.mtnbusiness.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
252.135.213.105.in-addr.arpa	name = 105-213-135-252.access.mtnbusiness.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.209.165.3	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-10-19 06:11:54
176.194.131.28	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/176.194.131.28/ RU - 1H : (157) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN12714 IP : 176.194.131.28 CIDR : 176.194.128.0/17 PREFIX COUNT : 274 UNIQUE IP COUNT : 1204224 ATTACKS DETECTED ASN12714 : 1H - 1 3H - 1 6H - 1 12H - 4 24H - 9 DateTime : 2019-10-18 21:50:01 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-19 06:35:44
58.210.119.226	attackspam	[munged]::443 58.210.119.226 - - [18/Oct/2019:21:50:28 +0200] "POST /[munged]: HTTP/1.1" 200 8165 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 58.210.119.226 - - [18/Oct/2019:21:50:29 +0200] "POST /[munged]: HTTP/1.1" 200 4388 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 58.210.119.226 - - [18/Oct/2019:21:50:30 +0200] "POST /[munged]: HTTP/1.1" 200 4388 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 58.210.119.226 - - [18/Oct/2019:21:50:31 +0200] "POST /[munged]: HTTP/1.1" 200 4388 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 58.210.119.226 - - [18/Oct/2019:21:50:33 +0200] "POST /[munged]: HTTP/1.1" 200 4388 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 58.210.119.226 - - [18/Oct/2019:21:	2019-10-19 06:10:10
173.208.152.250	attack	firewall-block, port(s): 445/tcp	2019-10-19 06:06:39
122.155.223.112	attackspam	Oct 18 21:50:36 mail sshd\[6446\]: Invalid user deploy from 122.155.223.112 Oct 18 21:50:36 mail sshd\[6446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.223.112 Oct 18 21:50:37 mail sshd\[6446\]: Failed password for invalid user deploy from 122.155.223.112 port 42632 ssh2 ...	2019-10-19 06:09:25
109.202.101.37	attack	109.202.101.37 - - [18/Oct/2019:15:50:46 -0400] "GET /?page=products&action=view&manufacturerID=61&productID=%2fetc%2fpasswd&linkID=16812 HTTP/1.1" 302 - "https://exitdevice.com/?page=products&action=view&manufacturerID=61&productID=%2fetc%2fpasswd&linkID=16812" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-10-19 06:02:44
58.181.21.28	attack	Brute force SMTP login attempted. ...	2019-10-19 06:15:36
188.166.208.131	attack	Oct 19 00:16:56 lnxded64 sshd[17578]: Failed password for root from 188.166.208.131 port 45748 ssh2 Oct 19 00:16:56 lnxded64 sshd[17578]: Failed password for root from 188.166.208.131 port 45748 ssh2	2019-10-19 06:34:00
110.80.17.26	attackspam	Invalid user abcd from 110.80.17.26 port 43430	2019-10-19 06:27:01
13.232.92.79	attackbots	Attack against Wordpress login	2019-10-19 06:16:28
103.97.124.200	attack	Invalid user default from 103.97.124.200 port 38092	2019-10-19 06:37:13
31.14.250.64	attackbotsspam	31.14.250.64 - - [18/Oct/2019:15:49:27 -0400] "GET /?page=products&action=../../../../../../../../../etc/passwd&manufacturerID=61&productID=4701-RIM&linkID=16812 HTTP/1.1" 200 17571 "https://exitdevice.com/?page=products&action=../../../../../../../../../etc/passwd&manufacturerID=61&productID=4701-RIM&linkID=16812" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-10-19 06:24:11
89.211.165.97	attackbotsspam	Automatic report - Port Scan Attack	2019-10-19 06:11:07
113.179.214.46	attack	113.179.214.46 - - [18/Oct/2019:15:50:10 -0400] "GET /?page=products&action=view&manufacturerID=36&productID=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&linkID=13130 HTTP/1.1" 302 - "https://simplexlock.com/?page=products&action=view&manufacturerID=36&productID=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&linkID=13130" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-10-19 06:16:06
220.76.205.178	attackspam	SSH Bruteforce attack	2019-10-19 06:33:48

Recently Reported IPs

101.132.151.116	105.213.136.208	105.213.135.107	105.213.137.152
105.213.137.176	105.213.135.87	105.213.136.224	105.213.137.73
101.132.151.138	37.3.245.40	105.213.137.244	105.213.137.81
105.213.137.77	105.213.138.233	105.213.138.246	101.132.151.148
105.213.138.78	105.213.139.238	105.213.138.157	105.213.139.190