102.249.59.115

Basic Info

City: Johannesburg

Region: Gauteng

Country: South Africa

Internet Service Provider: Telkom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.249.59.115
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3127
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;102.249.59.115.			IN	A

;; AUTHORITY SECTION:
.			222	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042201 1800 900 604800 86400

;; Query time: 216 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 23 06:35:00 CST 2020
;; MSG SIZE  rcvd: 118

Host info

115.59.249.102.in-addr.arpa domain name pointer 8ta-249-59-115.telkomadsl.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
115.59.249.102.in-addr.arpa	name = 8ta-249-59-115.telkomadsl.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
31.207.33.214	attackspam	(mod_security) mod_security (id:210730) triggered by 31.207.33.214 (FR/France/vps60175.lws-hosting.com): 5 in the last 3600 secs	2020-05-03 14:06:10
106.12.48.216	attackspam	2020-05-03T03:54:15.856803homeassistant sshd[19290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.216 user=root 2020-05-03T03:54:17.475952homeassistant sshd[19290]: Failed password for root from 106.12.48.216 port 43116 ssh2 ...	2020-05-03 14:27:53
82.65.10.9	attackspambots	SSH Brute-Forcing (server1)	2020-05-03 14:27:05
75.157.110.192	attackspam	Automated report (2020-05-03T05:45:24+00:00). Faked user agent detected.	2020-05-03 14:02:47
188.243.56.207	attackbots	188.243.56.207 - - \[03/May/2020:07:49:31 +0200\] "POST /wp-login.php HTTP/1.0" 200 6827 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 188.243.56.207 - - \[03/May/2020:07:49:32 +0200\] "POST /wp-login.php HTTP/1.0" 200 6642 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 188.243.56.207 - - \[03/May/2020:07:49:33 +0200\] "POST /wp-login.php HTTP/1.0" 200 6639 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-05-03 13:55:51
185.245.86.226	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-05-03 14:26:38
51.178.182.197	attackbots	Lines containing failures of 51.178.182.197 (max 1000) May 3 03:52:57 UTC__SANYALnet-Labs__cac12 sshd[10319]: Connection from 51.178.182.197 port 36322 on 64.137.176.104 port 22 May 3 03:52:59 UTC__SANYALnet-Labs__cac12 sshd[10319]: reveeclipse mapping checking getaddrinfo for 197.ip-51-178-182.eu [51.178.182.197] failed - POSSIBLE BREAK-IN ATTEMPT! May 3 03:52:59 UTC__SANYALnet-Labs__cac12 sshd[10319]: Invalid user sonarUser from 51.178.182.197 port 36322 May 3 03:52:59 UTC__SANYALnet-Labs__cac12 sshd[10319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.182.197 May 3 03:53:00 UTC__SANYALnet-Labs__cac12 sshd[10319]: Failed password for invalid user sonarUser from 51.178.182.197 port 36322 ssh2 May 3 03:53:00 UTC__SANYALnet-Labs__cac12 sshd[10319]: Received disconnect from 51.178.182.197 port 36322:11: Bye Bye [preauth] May 3 03:53:00 UTC__SANYALnet-Labs__cac12 sshd[10319]: Disconnected from 51.178.182.197 port 3632........ ------------------------------	2020-05-03 14:22:24
222.186.31.166	attackspam	May 3 01:56:45 NPSTNNYC01T sshd[23053]: Failed password for root from 222.186.31.166 port 37500 ssh2 May 3 01:56:57 NPSTNNYC01T sshd[23057]: Failed password for root from 222.186.31.166 port 61167 ssh2 ...	2020-05-03 13:57:34
49.235.16.103	attackbotsspam	DATE:2020-05-03 07:57:49, IP:49.235.16.103, PORT:ssh SSH brute force auth (docker-dc)	2020-05-03 14:01:50
1.9.46.177	attackbotsspam	$f2bV_matches	2020-05-03 14:09:36
95.185.31.79	attack	Brute forcing RDP port 3389	2020-05-03 14:02:22
18.216.34.170	attack	2020-05-02T21:53:52.011840linuxbox-skyline sshd[130809]: Invalid user telecomadmin from 18.216.34.170 port 57524 ...	2020-05-03 14:23:55
117.50.41.136	attackspam	DATE:2020-05-03 05:54:42, IP:117.50.41.136, PORT:ssh SSH brute force auth (docker-dc)	2020-05-03 14:10:59
210.12.129.112	attack	SSH Login Bruteforce	2020-05-03 14:07:12
192.144.202.206	attackspam	SSH invalid-user multiple login attempts	2020-05-03 14:14:48

Recently Reported IPs

123.148.28.174	122.112.22.140	178.213.18.235	223.138.90.11
58.92.145.247	18.231.106.205	113.88.167.151	113.238.38.183
89.34.98.83	74.64.213.227	101.6.51.180	114.26.144.228
102.67.28.203	59.26.31.4	14.192.193.184	189.66.68.198
95.178.184.22	39.49.48.178	223.137.66.31	173.249.30.84