102.249.189.49

Basic Info

City: Pretoria

Region: Gauteng

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.249.189.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1831
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;102.249.189.49.			IN	A

;; AUTHORITY SECTION:
.			193	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023102100 1800 900 604800 86400

;; Query time: 146 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 21 20:17:50 CST 2023
;; MSG SIZE  rcvd: 107

Host info

49.189.249.102.in-addr.arpa domain name pointer 8ta-249-189-49.telkomadsl.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.189.249.102.in-addr.arpa	name = 8ta-249-189-49.telkomadsl.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.166.237.191	attackspam	Oct 8 20:48:32 MK-Soft-VM6 sshd[8395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.237.191 Oct 8 20:48:33 MK-Soft-VM6 sshd[8395]: Failed password for invalid user zimbra from 188.166.237.191 port 39098 ssh2 ...	2019-10-09 02:57:39
119.29.53.107	attack	Oct 8 08:32:42 tdfoods sshd\[11615\]: Invalid user Success2017 from 119.29.53.107 Oct 8 08:32:42 tdfoods sshd\[11615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.53.107 Oct 8 08:32:44 tdfoods sshd\[11615\]: Failed password for invalid user Success2017 from 119.29.53.107 port 40283 ssh2 Oct 8 08:36:40 tdfoods sshd\[11933\]: Invalid user R00T@123 from 119.29.53.107 Oct 8 08:36:40 tdfoods sshd\[11933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.53.107	2019-10-09 02:43:15
51.38.51.200	attackspam	2019-10-08T20:36:38.453940 sshd[2384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.51.200 user=root 2019-10-08T20:36:40.797193 sshd[2384]: Failed password for root from 51.38.51.200 port 46670 ssh2 2019-10-08T20:44:17.636852 sshd[2460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.51.200 user=root 2019-10-08T20:44:19.659003 sshd[2460]: Failed password for root from 51.38.51.200 port 52586 ssh2 2019-10-08T20:47:41.942546 sshd[2524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.51.200 user=root 2019-10-08T20:47:43.302339 sshd[2524]: Failed password for root from 51.38.51.200 port 35238 ssh2 ...	2019-10-09 03:00:47
168.128.13.252	attack	Oct 8 11:11:27 Tower sshd[2995]: Connection from 168.128.13.252 port 43080 on 192.168.10.220 port 22 Oct 8 11:11:28 Tower sshd[2995]: Failed password for root from 168.128.13.252 port 43080 ssh2 Oct 8 11:11:28 Tower sshd[2995]: Received disconnect from 168.128.13.252 port 43080:11: Bye Bye [preauth] Oct 8 11:11:28 Tower sshd[2995]: Disconnected from authenticating user root 168.128.13.252 port 43080 [preauth]	2019-10-09 02:55:15
104.236.100.42	attackbots	WordPress XMLRPC scan :: 104.236.100.42 0.048 BYPASS [09/Oct/2019:05:42:18 1100] [censored_4] "POST /xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-09 02:44:06
217.11.183.58	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-10-09 03:00:30
49.88.112.67	attackspam	SSH Brute-Forcing (ownc)	2019-10-09 02:33:17
46.251.239.31	attackspam	Repeated brute force against a port	2019-10-09 03:09:12
103.89.88.64	attack	Oct 8 20:07:53 blackbee postfix/smtpd\[11852\]: warning: unknown\[103.89.88.64\]: SASL LOGIN authentication failed: authentication failure Oct 8 20:07:56 blackbee postfix/smtpd\[11852\]: warning: unknown\[103.89.88.64\]: SASL LOGIN authentication failed: authentication failure Oct 8 20:07:59 blackbee postfix/smtpd\[11852\]: warning: unknown\[103.89.88.64\]: SASL LOGIN authentication failed: authentication failure Oct 8 20:08:01 blackbee postfix/smtpd\[11852\]: warning: unknown\[103.89.88.64\]: SASL LOGIN authentication failed: authentication failure Oct 8 20:08:04 blackbee postfix/smtpd\[11852\]: warning: unknown\[103.89.88.64\]: SASL LOGIN authentication failed: authentication failure ...	2019-10-09 03:09:00
188.214.192.140	attackspambots	[portscan] Port scan	2019-10-09 02:32:45
1.29.148.218	attackspam	Oct814:07:43server4pure-ftpd:\(\?@115.213.247.209\)[WARNING]Authenticationfailedforuser[www]Oct814:40:06server4pure-ftpd:\(\?@1.29.148.218\)[WARNING]Authenticationfailedforuser[www]Oct813:52:03server4pure-ftpd:\(\?@39.67.40.159\)[WARNING]Authenticationfailedforuser[www]Oct813:59:56server4pure-ftpd:\(\?@39.67.40.159\)[WARNING]Authenticationfailedforuser[www]Oct814:07:36server4pure-ftpd:\(\?@115.213.247.209\)[WARNING]Authenticationfailedforuser[www]Oct813:51:55server4pure-ftpd:\(\?@39.67.40.159\)[WARNING]Authenticationfailedforuser[www]Oct814:39:49server4pure-ftpd:\(\?@1.29.148.218\)[WARNING]Authenticationfailedforuser[www]Oct814:40:00server4pure-ftpd:\(\?@1.29.148.218\)[WARNING]Authenticationfailedforuser[www]Oct814:40:29server4pure-ftpd:\(\?@1.29.148.218\)[WARNING]Authenticationfailedforuser[www]Oct814:40:23server4pure-ftpd:\(\?@1.29.148.218\)[WARNING]Authenticationfailedforuser[www]IPAddressesBlocked:115.213.247.209\(CN/China/-\)	2019-10-09 02:54:12
187.57.180.76	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/187.57.180.76/ BR - 1H : (359) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN27699 IP : 187.57.180.76 CIDR : 187.57.0.0/16 PREFIX COUNT : 267 UNIQUE IP COUNT : 6569728 WYKRYTE ATAKI Z ASN27699 : 1H - 7 3H - 15 6H - 31 12H - 79 24H - 148 DateTime : 2019-10-08 13:48:05 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-09 02:46:16
39.84.96.130	attackspam	Multiple failed FTP logins	2019-10-09 02:59:16
110.72.33.61	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/110.72.33.61/ CN - 1H : (577) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4837 IP : 110.72.33.61 CIDR : 110.72.0.0/15 PREFIX COUNT : 1262 UNIQUE IP COUNT : 56665856 WYKRYTE ATAKI Z ASN4837 : 1H - 8 3H - 31 6H - 62 12H - 127 24H - 235 DateTime : 2019-10-08 13:48:05 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-09 02:48:02
200.52.60.193	attack	Automatic report - Port Scan Attack	2019-10-09 02:53:37

Recently Reported IPs

102.248.75.255	102.249.144.118	102.248.23.226	102.249.0.100
102.248.65.157	102.248.209.185	102.248.40.67	102.249.0.111
102.249.0.2	102.248.206.61	102.249.199.29	102.248.207.82
102.248.241.132	102.249.0.101	102.248.238.61	102.248.214.33
102.249.149.188	102.249.10.120	102.25.4.227	102.248.212.129