102.252.64.96 - IPInfo

Basic Info

City: Pretoria

Region: Gauteng

Country: South Africa

Internet Service Provider: Telkom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
102.252.64.63	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-26 06:51:47
102.252.64.77	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-13 18:08:08

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 102.252.64.96
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45666
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;102.252.64.96.			IN	A

;; Query time: 2 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Wed Jul 07 07:05:06 CST 2021
;; MSG SIZE  rcvd: 42

'

Host info

96.64.252.102.in-addr.arpa domain name pointer 8ta-252-64-96.telkomadsl.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
96.64.252.102.in-addr.arpa	name = 8ta-252-64-96.telkomadsl.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.252.243.190	attack	SSH login attempts.	2020-04-12 16:10:41
87.27.212.14	attack	Apr 11 23:33:38 cloud sshd[26075]: Failed password for root from 87.27.212.14 port 59458 ssh2	2020-04-12 16:09:29
152.136.34.52	attackbots	SSH Brute Force	2020-04-12 15:58:00
49.234.232.46	attack	5x Failed Password	2020-04-12 16:03:49
133.242.231.162	attackbots	Invalid user admin from 133.242.231.162 port 43124	2020-04-12 16:02:08
218.90.138.98	attack	Apr 12 06:42:18 mout sshd[30577]: Invalid user rosco from 218.90.138.98 port 52348	2020-04-12 15:56:58
185.53.88.61	attackspambots	[2020-04-12 03:35:45] NOTICE[12114][C-00004c1e] chan_sip.c: Call from '' (185.53.88.61:5071) to extension '972595778361' rejected because extension not found in context 'public'. [2020-04-12 03:35:45] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-12T03:35:45.081-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="972595778361",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.61/5071",ACLName="no_extension_match" [2020-04-12 03:42:37] NOTICE[12114][C-00004c26] chan_sip.c: Call from '' (185.53.88.61:5071) to extension '00972595778361' rejected because extension not found in context 'public'. [2020-04-12 03:42:37] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-12T03:42:37.876-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00972595778361",SessionID="0x7f020c0db748",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88. ...	2020-04-12 15:45:45
222.244.232.145	attack	Automatic report - Port Scan Attack	2020-04-12 16:11:33
192.241.211.94	attackbots	2020-04-12T08:00:49.066601shield sshd\[24083\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.211.94 user=root 2020-04-12T08:00:51.124839shield sshd\[24083\]: Failed password for root from 192.241.211.94 port 55636 ssh2 2020-04-12T08:04:27.837348shield sshd\[25015\]: Invalid user pentaho from 192.241.211.94 port 35536 2020-04-12T08:04:27.840850shield sshd\[25015\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.211.94 2020-04-12T08:04:30.160335shield sshd\[25015\]: Failed password for invalid user pentaho from 192.241.211.94 port 35536 ssh2	2020-04-12 16:12:12
222.186.175.150	attack	2020-04-12T10:03:03.616978vps751288.ovh.net sshd\[13388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root 2020-04-12T10:03:06.072077vps751288.ovh.net sshd\[13388\]: Failed password for root from 222.186.175.150 port 5102 ssh2 2020-04-12T10:03:09.316736vps751288.ovh.net sshd\[13388\]: Failed password for root from 222.186.175.150 port 5102 ssh2 2020-04-12T10:03:12.970856vps751288.ovh.net sshd\[13388\]: Failed password for root from 222.186.175.150 port 5102 ssh2 2020-04-12T10:03:16.191591vps751288.ovh.net sshd\[13388\]: Failed password for root from 222.186.175.150 port 5102 ssh2	2020-04-12 16:05:34
184.106.81.166	attack	184.106.81.166 was recorded 6 times by 6 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 6, 14, 1011	2020-04-12 16:01:54
180.164.51.146	attackspam	$f2bV_matches	2020-04-12 15:53:38
167.71.223.51	attackbotsspam	Apr 12 04:47:58 vps46666688 sshd[23449]: Failed password for root from 167.71.223.51 port 37410 ssh2 ...	2020-04-12 15:59:25
192.144.129.98	attackbotsspam	Apr 11 22:14:45 server1 sshd\[15072\]: Invalid user webtest from 192.144.129.98 Apr 11 22:14:45 server1 sshd\[15072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.129.98 Apr 11 22:14:47 server1 sshd\[15072\]: Failed password for invalid user webtest from 192.144.129.98 port 36250 ssh2 Apr 11 22:20:05 server1 sshd\[16530\]: Invalid user butter from 192.144.129.98 Apr 11 22:20:05 server1 sshd\[16530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.129.98 ...	2020-04-12 15:48:49
49.233.46.219	attack	Apr 12 08:47:37 cdc sshd[6787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.46.219 Apr 12 08:47:39 cdc sshd[6787]: Failed password for invalid user grandma from 49.233.46.219 port 35106 ssh2	2020-04-12 16:08:24

Recently Reported IPs

116.179.32.167	13.212.6.80	111.217.132.124	116.179.32.233
81.222.184.223	116.179.32.73	128.199.223.97	185.222.57.0
52.87.223.92	127.174.195.77	127.174.195.27	209.127.109.170
71.239.117.21	205.185.123.97	116.179.32.101	116.179.32.31
164.68.111.186	76.106.247.22	176.106.247.22	133.106.156.247