105.213.185.140

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.213.185.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40562
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.213.185.140.		IN	A

;; AUTHORITY SECTION:
.			330	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 20:51:31 CST 2022
;; MSG SIZE  rcvd: 108

Host info

140.185.213.105.in-addr.arpa domain name pointer 105-213-185-140.access.mtnbusiness.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
140.185.213.105.in-addr.arpa	name = 105-213-185-140.access.mtnbusiness.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
116.240.199.23	attack	CloudCIX Reconnaissance Scan Detected, PTR: 023.199.240.116.static.idc.iprimus.net.au.	2019-08-28 23:57:56
92.222.47.41	attackbotsspam	$f2bV_matches	2019-08-29 00:08:56
122.251.40.116	attack	1 attempts last 24 Hours	2019-08-29 00:19:44
1.170.190.241	attackbots	firewall-block, port(s): 2323/tcp	2019-08-28 23:51:56
81.22.45.165	attackbots	08/28/2019-11:07:33.548378 81.22.45.165 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-28 23:25:52
106.12.54.182	attackspam	Aug 28 06:04:38 eddieflores sshd\[26520\]: Invalid user sheep from 106.12.54.182 Aug 28 06:04:38 eddieflores sshd\[26520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.54.182 Aug 28 06:04:40 eddieflores sshd\[26520\]: Failed password for invalid user sheep from 106.12.54.182 port 52438 ssh2 Aug 28 06:08:23 eddieflores sshd\[26894\]: Invalid user test123 from 106.12.54.182 Aug 28 06:08:23 eddieflores sshd\[26894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.54.182	2019-08-29 00:20:36
106.12.6.74	attackbots	Aug 28 15:24:16 MK-Soft-VM6 sshd\[9096\]: Invalid user guest from 106.12.6.74 port 44798 Aug 28 15:24:16 MK-Soft-VM6 sshd\[9096\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.6.74 Aug 28 15:24:18 MK-Soft-VM6 sshd\[9096\]: Failed password for invalid user guest from 106.12.6.74 port 44798 ssh2 ...	2019-08-28 23:42:42
49.206.9.44	attackspambots	firewall-block, port(s): 60001/tcp	2019-08-28 23:32:33
106.13.46.114	attackbots	Aug 28 14:15:43 ns315508 sshd[26332]: Invalid user testlab from 106.13.46.114 port 54830 Aug 28 14:15:43 ns315508 sshd[26332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.46.114 Aug 28 14:15:43 ns315508 sshd[26332]: Invalid user testlab from 106.13.46.114 port 54830 Aug 28 14:15:45 ns315508 sshd[26332]: Failed password for invalid user testlab from 106.13.46.114 port 54830 ssh2 Aug 28 14:19:53 ns315508 sshd[26355]: Invalid user cgi from 106.13.46.114 port 55404 ...	2019-08-28 23:59:34
5.196.118.54	attackspam	WordPress login Brute force / Web App Attack on client site.	2019-08-28 23:58:34
192.99.169.6	attackbots	Aug 28 17:30:50 SilenceServices sshd[3272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.169.6 Aug 28 17:30:52 SilenceServices sshd[3272]: Failed password for invalid user cku from 192.99.169.6 port 52790 ssh2 Aug 28 17:35:37 SilenceServices sshd[5183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.169.6	2019-08-28 23:36:40
138.197.86.155	attack	1 attempts last 24 Hours	2019-08-29 00:12:15
158.69.28.76	attack	[Wed Aug 28 22:10:05.129352 2019] [:error] [pid 5935:tid 139922209703680] [client 158.69.28.76:57032] [client 158.69.28.76] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "user-agent:" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "56"] [id "913100"] [msg "Found User-Agent associated with security scanner"] [data "Matched Data: user-agent: found within REQUEST_HEADERS:User-Agent: user-agent:mozilla/4.0 (compatible; msie 6.0; windows nt 5.2; .net clr 1.0.3705"] [severity "CRITICAL"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-scanner"] [tag "OWASP_CRS/AUTOMATION/SECURITY_SCANNER"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XWaZTTd1aA0je1hLGnTsAgAAAAA"] ...	2019-08-28 23:59:04
90.219.248.138	attackspambots	firewall-block, port(s): 23/tcp	2019-08-28 23:24:47
119.28.222.88	attack	Aug 28 11:26:17 ny01 sshd[19708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.222.88 Aug 28 11:26:19 ny01 sshd[19708]: Failed password for invalid user ehsan from 119.28.222.88 port 54648 ssh2 Aug 28 11:30:43 ny01 sshd[20582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.222.88	2019-08-28 23:41:35

Recently Reported IPs

105.213.184.138	105.213.185.220	105.213.185.174	105.213.184.4
105.213.185.58	105.213.185.181	105.213.186.176	101.132.194.136
105.213.186.67	105.213.185.81	105.213.186.77	105.213.187.143
105.213.187.147	105.213.187.121	105.213.187.154	105.213.187.16
105.213.187.63	101.132.194.71	105.213.187.31	105.213.187.233