105.213.85.160

Basic Info

City: Johannesburg

Region: Gauteng

Country: South Africa

Internet Service Provider: MTN

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.213.85.160
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26881
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.213.85.160.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030100 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 01 15:49:04 CST 2022
;; MSG SIZE  rcvd: 107

Host info

160.85.213.105.in-addr.arpa domain name pointer 105-213-85-160.access.mtnbusiness.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
160.85.213.105.in-addr.arpa	name = 105-213-85-160.access.mtnbusiness.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
34.76.172.157	attackbotsspam	34.76.172.157 - - \[30/Oct/2019:07:18:56 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 34.76.172.157 - - \[30/Oct/2019:07:18:56 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-10-30 19:14:59
81.198.116.14	attackspam	port scan and connect, tcp 23 (telnet)	2019-10-30 18:49:14
107.150.65.248	attackspam	WordPress XMLRPC scan :: 107.150.65.248 0.636 BYPASS [30/Oct/2019:03:47:15 0000] www.[censored_1] "POST /xmlrpc.php HTTP/1.1" 200 194 "https://www.[censored_1]" "PHP/6.3.49"	2019-10-30 19:12:06
59.96.91.192	attackbotsspam	Unauthorized connection attempt from IP address 59.96.91.192 on Port 445(SMB)	2019-10-30 19:07:19
42.233.125.56	attackspambots	port scan and connect, tcp 23 (telnet)	2019-10-30 19:08:06
138.197.145.26	attackspambots	Automatic report - Banned IP Access	2019-10-30 19:18:41
103.115.100.10	attack	postfix (unknown user, SPF fail or relay access denied)	2019-10-30 18:55:05
194.84.17.10	attack	2019-10-28 21:03:06,237 fail2ban.actions \[1516\]: NOTICE \[sshd\] Ban 194.84.17.10 2019-10-29 09:13:01,090 fail2ban.actions \[1516\]: NOTICE \[sshd\] Ban 194.84.17.10 2019-10-29 09:43:33,687 fail2ban.actions \[1516\]: NOTICE \[sshd\] Ban 194.84.17.10 2019-10-29 10:14:27,573 fail2ban.actions \[1516\]: NOTICE \[sshd\] Ban 194.84.17.10 2019-10-29 10:45:27,923 fail2ban.actions \[1516\]: NOTICE \[sshd\] Ban 194.84.17.10 ...	2019-10-30 18:39:52
182.61.40.17	attackbotsspam	Oct 30 04:41:13 vps sshd[25061]: Failed password for root from 182.61.40.17 port 57820 ssh2 Oct 30 04:47:40 vps sshd[25323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.40.17 Oct 30 04:47:41 vps sshd[25323]: Failed password for invalid user india from 182.61.40.17 port 47196 ssh2 ...	2019-10-30 18:50:37
101.95.189.62	attackspambots	Unauthorized connection attempt from IP address 101.95.189.62 on Port 445(SMB)	2019-10-30 19:04:08
54.194.129.28	attack	Oct 30 08:50:24 work-partkepr sshd\[14010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.194.129.28 user=root Oct 30 08:50:27 work-partkepr sshd\[14010\]: Failed password for root from 54.194.129.28 port 41214 ssh2 ...	2019-10-30 18:55:17
159.65.62.216	attackbots	Oct 30 04:47:40 cp sshd[2672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.62.216	2019-10-30 18:56:43
49.235.97.29	attack	Oct 28 03:24:33 svapp01 sshd[20504]: User r.r from 49.235.97.29 not allowed because not listed in AllowUsers Oct 28 03:24:33 svapp01 sshd[20504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.97.29 user=r.r Oct 28 03:24:35 svapp01 sshd[20504]: Failed password for invalid user r.r from 49.235.97.29 port 33104 ssh2 Oct 28 03:24:35 svapp01 sshd[20504]: Received disconnect from 49.235.97.29: 11: Bye Bye [preauth] Oct 28 03:43:36 svapp01 sshd[28593]: User r.r from 49.235.97.29 not allowed because not listed in AllowUsers Oct 28 03:43:36 svapp01 sshd[28593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.97.29 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=49.235.97.29	2019-10-30 19:09:03
113.161.16.10	attackspambots	Unauthorized connection attempt from IP address 113.161.16.10 on Port 445(SMB)	2019-10-30 19:05:22
200.98.141.54	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-30 18:43:56

Recently Reported IPs

105.213.85.121	105.213.85.154	105.213.85.182	105.213.85.188
105.213.93.187	105.213.93.19	105.213.93.238	105.213.93.222
105.213.93.215	105.213.93.240	105.213.93.228	105.213.93.244
105.213.93.233	105.213.93.63	105.213.93.39	105.213.93.70
105.213.93.78	12.235.95.132	105.226.179.29	105.226.175.66