102.130.118.201

Basic Info

City: Johannesburg

Region: Gauteng

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
102.130.118.83	attackbotsspam	Repeated RDP login failures. Last user: T1	2020-07-24 06:02:16
102.130.118.84	attack	Apr 17 19:07:56 php1 sshd\[11238\]: Invalid user od from 102.130.118.84 Apr 17 19:07:56 php1 sshd\[11238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.130.118.84 Apr 17 19:07:58 php1 sshd\[11238\]: Failed password for invalid user od from 102.130.118.84 port 49872 ssh2 Apr 17 19:12:54 php1 sshd\[11779\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.130.118.84 user=root Apr 17 19:12:56 php1 sshd\[11779\]: Failed password for root from 102.130.118.84 port 60402 ssh2	2020-04-18 13:32:17
102.130.118.156	attackbots	Mar 6 10:39:56 MK-Soft-Root1 sshd[2768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.130.118.156 Mar 6 10:39:57 MK-Soft-Root1 sshd[2768]: Failed password for invalid user 12345 from 102.130.118.156 port 57844 ssh2 ...	2020-03-06 21:07:54
102.130.118.156	attack	Feb 28 19:49:43 server6 sshd[8716]: Failed password for invalid user master from 102.130.118.156 port 41488 ssh2 Feb 28 19:49:43 server6 sshd[8716]: Received disconnect from 102.130.118.156: 11: Bye Bye [preauth] Feb 28 20:03:20 server6 sshd[22685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.130.118.156 user=r.r Feb 28 20:03:22 server6 sshd[22685]: Failed password for r.r from 102.130.118.156 port 46528 ssh2 Feb 28 20:03:22 server6 sshd[22685]: Received disconnect from 102.130.118.156: 11: Bye Bye [preauth] Feb 28 20:10:28 server6 sshd[29546]: Failed password for invalid user qtss from 102.130.118.156 port 49560 ssh2 Feb 28 20:10:28 server6 sshd[29546]: Received disconnect from 102.130.118.156: 11: Bye Bye [preauth] Feb 28 20:15:17 server6 sshd[1530]: Failed password for invalid user thomas from 102.130.118.156 port 38316 ssh2 Feb 28 20:15:17 server6 sshd[1530]: Received disconnect from 102.130.118.156: 11: Bye Bye [prea........ -------------------------------	2020-03-01 22:34:45
102.130.118.156	attackbots	Feb 29 01:31:41 plusreed sshd[17300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.130.118.156 user=sshd Feb 29 01:31:43 plusreed sshd[17300]: Failed password for sshd from 102.130.118.156 port 52888 ssh2 ...	2020-02-29 15:08:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.130.118.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7138
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;102.130.118.201.		IN	A

;; AUTHORITY SECTION:
.			560	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030501 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 06 06:10:42 CST 2022
;; MSG SIZE  rcvd: 108

Host info

201.118.130.102.in-addr.arpa domain name pointer hobhost-za1.localhob.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
201.118.130.102.in-addr.arpa	name = hobhost-za1.localhob.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.47.229.4	attackspambots	212.47.229.4 (FR/France/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 20 03:55:33 server5 sshd[14955]: Failed password for root from 51.178.40.97 port 33634 ssh2 Sep 20 03:55:35 server5 sshd[14954]: Failed password for root from 212.47.229.4 port 56936 ssh2 Sep 20 03:55:36 server5 sshd[15225]: Failed password for root from 185.111.88.95 port 33140 ssh2 Sep 20 03:55:37 server5 sshd[14954]: Failed password for root from 212.47.229.4 port 56936 ssh2 Sep 20 03:55:18 server5 sshd[14806]: Failed password for root from 79.190.238.134 port 33106 ssh2 IP Addresses Blocked: 51.178.40.97 (FR/France/-)	2020-09-20 17:36:48
217.182.252.30	attackbots	Sep 19 22:38:47 php1 sshd\[9774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.252.30 user=root Sep 19 22:38:49 php1 sshd\[9774\]: Failed password for root from 217.182.252.30 port 52228 ssh2 Sep 19 22:45:38 php1 sshd\[10441\]: Invalid user admin9 from 217.182.252.30 Sep 19 22:45:38 php1 sshd\[10441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.252.30 Sep 19 22:45:40 php1 sshd\[10441\]: Failed password for invalid user admin9 from 217.182.252.30 port 34640 ssh2	2020-09-20 17:48:26
111.229.211.66	attackspambots	Sep 20 10:22:33 haigwepa sshd[21895]: Failed password for root from 111.229.211.66 port 56208 ssh2 ...	2020-09-20 17:41:13
61.177.172.128	attackbotsspam	Sep 20 11:31:57 sshgateway sshd\[18635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root Sep 20 11:31:59 sshgateway sshd\[18635\]: Failed password for root from 61.177.172.128 port 34033 ssh2 Sep 20 11:32:02 sshgateway sshd\[18635\]: Failed password for root from 61.177.172.128 port 34033 ssh2	2020-09-20 17:35:42
190.210.62.45	attackbots	190.210.62.45 (AR/Argentina/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 20 04:32:11 server2 sshd[9174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.210.62.45 user=root Sep 20 04:32:13 server2 sshd[9174]: Failed password for root from 190.210.62.45 port 51730 ssh2 Sep 20 04:35:00 server2 sshd[10909]: Failed password for root from 198.100.146.67 port 38201 ssh2 Sep 20 04:33:30 server2 sshd[9285]: Failed password for root from 65.49.204.184 port 34610 ssh2 Sep 20 04:33:06 server2 sshd[10173]: Failed password for root from 125.227.141.116 port 54782 ssh2 IP Addresses Blocked:	2020-09-20 17:27:24
134.175.245.162	attackspam	Found on Alienvault / proto=6 . srcport=34624 . dstport=6380 . (2288)	2020-09-20 17:43:09
218.92.0.248	attackbotsspam	Sep 20 11:58:08 ip106 sshd[3683]: Failed password for root from 218.92.0.248 port 62358 ssh2 Sep 20 11:58:12 ip106 sshd[3683]: Failed password for root from 218.92.0.248 port 62358 ssh2 ...	2020-09-20 17:59:10
222.186.15.62	attackspam	Sep 20 10:43:33 rocket sshd[13973]: Failed password for root from 222.186.15.62 port 58268 ssh2 Sep 20 10:43:35 rocket sshd[13973]: Failed password for root from 222.186.15.62 port 58268 ssh2 Sep 20 10:43:37 rocket sshd[13973]: Failed password for root from 222.186.15.62 port 58268 ssh2 ...	2020-09-20 17:53:20
103.131.71.102	attack	(mod_security) mod_security (id:210730) triggered by 103.131.71.102 (VN/Vietnam/bot-103-131-71-102.coccoc.com): 5 in the last 3600 secs	2020-09-20 17:25:46
23.129.64.207	attack	(sshd) Failed SSH login from 23.129.64.207 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 20 05:20:23 server sshd[20305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.207 user=root Sep 20 05:20:25 server sshd[20305]: Failed password for root from 23.129.64.207 port 61165 ssh2 Sep 20 05:20:27 server sshd[20305]: Failed password for root from 23.129.64.207 port 61165 ssh2 Sep 20 05:20:29 server sshd[20305]: Failed password for root from 23.129.64.207 port 61165 ssh2 Sep 20 05:20:32 server sshd[20305]: Failed password for root from 23.129.64.207 port 61165 ssh2	2020-09-20 17:23:17
222.186.30.57	attack	Time: Sun Sep 20 05:22:55 2020 00 IP: 222.186.30.57 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 20 05:14:29 -11 sshd[14853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root Sep 20 05:14:31 -11 sshd[14853]: Failed password for root from 222.186.30.57 port 51771 ssh2 Sep 20 05:14:34 -11 sshd[14853]: Failed password for root from 222.186.30.57 port 51771 ssh2 Sep 20 05:14:36 -11 sshd[14853]: Failed password for root from 222.186.30.57 port 51771 ssh2 Sep 20 05:22:52 -11 sshd[15134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root	2020-09-20 17:29:40
181.22.5.230	attackbotsspam	Postfix SMTP rejection	2020-09-20 17:49:50
216.218.206.114	attackspam	Hit honeypot r.	2020-09-20 17:42:16
177.1.213.19	attackspambots	Sep 20 03:14:45 mail sshd\[44524\]: Invalid user newuser from 177.1.213.19 Sep 20 03:14:45 mail sshd\[44524\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 ...	2020-09-20 17:51:39
223.130.28.160	attackbotsspam	Tried our host z.	2020-09-20 17:58:21

Recently Reported IPs

102.129.133.29	102.130.123.179	102.133.162.245	102.165.14.26
102.219.177.5	102.219.209.14	102.37.118.13	102.67.140.72
103.1.148.33	103.1.184.72	0.165.84.237	103.1.185.229
103.1.185.250	103.1.186.174	103.1.187.101	103.1.195.206
103.1.206.83	103.1.210.102	103.1.210.16	103.1.236.140