102.252.64.45 - IPInfo

Basic Info

City: Pretoria

Region: Gauteng

Country: South Africa

Internet Service Provider: Telkom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
102.252.64.63	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-26 06:51:47
102.252.64.77	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-13 18:08:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.252.64.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36668
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;102.252.64.45.			IN	A

;; AUTHORITY SECTION:
.			439	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 09:30:28 CST 2022
;; MSG SIZE  rcvd: 106

Host info

45.64.252.102.in-addr.arpa domain name pointer 8ta-252-64-45.telkomadsl.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.64.252.102.in-addr.arpa	name = 8ta-252-64-45.telkomadsl.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.216.56.39	attack	Mar 3 14:22:35 grey postfix/smtpd\[11211\]: NOQUEUE: reject: RCPT from unknown\[115.216.56.39\]: 554 5.7.1 Service unavailable\; Client host \[115.216.56.39\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[115.216.56.39\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-03-04 03:06:03
101.50.1.32	attackbotsspam	Nov 12 18:56:25 mercury wordpress(lukegirvin.com)[23017]: XML-RPC authentication failure for luke from 101.50.1.32 ...	2020-03-04 03:16:44
101.55.66.14	attackbotsspam	Nov 19 13:47:53 mercury auth[20442]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=josh@learnargentinianspanish.com rhost=101.55.66.14 ...	2020-03-04 03:29:28
1.252.242.190	attack	Jan 25 11:45:03 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:5a:1a:41:08:00 SRC=1.252.242.190 DST=109.74.200.221 LEN=32 TOS=0x00 PREC=0x00 TTL=53 ID=0 DF PROTO=UDP SPT=123 DPT=123 LEN=12 ...	2020-03-04 03:19:45
103.139.45.88	attack	Nov 16 02:30:34 mercury smtpd[1191]: 752819b59b1edefe smtp event=failed-command address=103.139.45.88 host=103.139.45.88 command="RCPT to:" result="550 Invalid recipient" ...	2020-03-04 03:09:50
49.247.207.56	attack	Invalid user zhoubao from 49.247.207.56 port 56768	2020-03-04 03:19:09
1.53.196.177	attackbotsspam	2020-02-18T11:03:20.628Z CLOSE host=1.53.196.177 port=46948 fd=5 time=20.008 bytes=8 ...	2020-03-04 03:21:53
115.207.107.147	attack	115.207.107.147 - - [20/Dec/2019:08:21:11 +0000] "POST /xmlrpc.php HTTP/1.1" 301 596 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" 115.207.107.147 - - [20/Dec/2019:08:21:12 +0000] "POST /xmlrpc.php HTTP/1.1" 301 596 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36" ...	2020-03-04 03:07:09
198.167.140.152	attackbots	Mar 3 18:48:30 silence02 sshd[18388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.167.140.152 Mar 3 18:48:32 silence02 sshd[18388]: Failed password for invalid user 1 from 198.167.140.152 port 43941 ssh2 Mar 3 18:57:02 silence02 sshd[18714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.167.140.152	2020-03-04 03:00:48
1.186.151.206	attack	Jan 2 11:29:42 mercury wordpress(www.learnargentinianspanish.com)[28963]: XML-RPC authentication failure for josh from 1.186.151.206 ...	2020-03-04 03:31:19
14.186.156.102	attackspambots	Brute force attempt	2020-03-04 03:30:02
1.20.203.92	attackspambots	2019-12-23T05:43:02.024Z CLOSE host=1.20.203.92 port=52547 fd=4 time=20.023 bytes=13 ...	2020-03-04 03:27:34
104.152.52.22	attack	Dec 14 04:25:44 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:5a:1a:41:08:00 SRC=104.152.52.22 DST=109.74.200.221 LEN=76 TOS=0x00 PREC=0x00 TTL=243 ID=28234 PROTO=UDP SPT=57479 DPT=123 LEN=56 ...	2020-03-04 03:05:08
105.108.229.177	attackbotsspam	Jan 17 20:02:57 mercury auth[18765]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=josh@learnargentinianspanish.com rhost=105.108.229.177 ...	2020-03-04 03:11:53
210.187.87.185	attackspam	Mar 3 05:21:31 wbs sshd\[31925\]: Invalid user tharani from 210.187.87.185 Mar 3 05:21:31 wbs sshd\[31925\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.187.87.185 Mar 3 05:21:33 wbs sshd\[31925\]: Failed password for invalid user tharani from 210.187.87.185 port 46842 ssh2 Mar 3 05:31:16 wbs sshd\[369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.187.87.185 user=root Mar 3 05:31:18 wbs sshd\[369\]: Failed password for root from 210.187.87.185 port 59376 ssh2	2020-03-04 03:38:07

Recently Reported IPs

102.252.64.106	102.220.78.192	102.222.235.62	102.33.11.26
102.37.117.3	102.39.137.57	102.39.148.211	102.23.252.94
102.39.185.89	102.35.37.185	102.36.16.53	102.39.90.232
102.40.168.213	102.41.156.153	150.229.70.108	102.40.86.28
102.42.156.147	102.39.253.93	102.42.227.87	102.42.245.217