102.166.1.52 - IPInfo

Basic Info

City: Mombasa

Region: Mombasa District

Country: Kenya

Internet Service Provider: Telkom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
102.166.129.19	attackspambots	Unauthorized connection attempt from IP address 102.166.129.19 on Port 445(SMB)	2020-08-27 22:42:11
102.166.1.152	attackbots	445/tcp 445/tcp [2020-06-22]2pkt	2020-06-23 07:04:21
102.166.106.39	attack	TCP Port Scanning	2019-11-10 03:16:33

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.166.1.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60962
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;102.166.1.52.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020120701 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.82.98#53(183.60.82.98)
;; WHEN: Tue Dec 08 01:18:13 CST 2020
;; MSG SIZE  rcvd: 116

Host info

52.1.166.102.in-addr.arpa domain name pointer twiga.telkom.co.ke.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.1.166.102.in-addr.arpa	name = twiga.telkom.co.ke.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.94.160.57	attackbots	Nov 30 14:05:45 sachi sshd\[3336\]: Invalid user minecraft from 138.94.160.57 Nov 30 14:05:45 sachi sshd\[3336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=57-160-94-138.turbonetburitis.com.br Nov 30 14:05:47 sachi sshd\[3336\]: Failed password for invalid user minecraft from 138.94.160.57 port 43402 ssh2 Nov 30 14:09:53 sachi sshd\[3668\]: Invalid user hoelzel from 138.94.160.57 Nov 30 14:09:53 sachi sshd\[3668\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=57-160-94-138.turbonetburitis.com.br	2019-12-01 08:11:45
89.36.220.145	attack	Apr 14 18:53:38 meumeu sshd[1275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.220.145 Apr 14 18:53:39 meumeu sshd[1275]: Failed password for invalid user ahlberg from 89.36.220.145 port 39605 ssh2 Apr 14 18:56:57 meumeu sshd[1827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.220.145 ...	2019-12-01 08:13:35
120.132.7.52	attack	Dec 1 00:40:26 tux-35-217 sshd\[14041\]: Invalid user persico from 120.132.7.52 port 57944 Dec 1 00:40:26 tux-35-217 sshd\[14041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.7.52 Dec 1 00:40:28 tux-35-217 sshd\[14041\]: Failed password for invalid user persico from 120.132.7.52 port 57944 ssh2 Dec 1 00:44:03 tux-35-217 sshd\[14072\]: Invalid user annet from 120.132.7.52 port 36134 Dec 1 00:44:03 tux-35-217 sshd\[14072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.7.52 ...	2019-12-01 08:17:33
78.157.49.177	attackspambots	Automatic report - Port Scan Attack	2019-12-01 08:16:13
77.247.108.119	attackspambots	firewall-block, port(s): 1388/tcp	2019-12-01 08:14:02
62.173.154.81	attackspam	\[2019-11-30 18:46:24\] NOTICE\[2754\] chan_sip.c: Registration from '"51"\' failed for '62.173.154.81:44487' - Wrong password \[2019-11-30 18:46:24\] SECURITY\[2765\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-30T18:46:24.220-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="51",SessionID="0x7f26c4ab1d88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.173.154.81/44487",Challenge="264bb77d",ReceivedChallenge="264bb77d",ReceivedHash="b023c244535b8b963f90c6a7b4750cd6" \[2019-11-30 18:46:36\] NOTICE\[2754\] chan_sip.c: Registration from '"52"\' failed for '62.173.154.81:44491' - Wrong password \[2019-11-30 18:46:36\] SECURITY\[2765\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-30T18:46:36.385-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="52",SessionID="0x7f26c4740728",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.173.15	2019-12-01 08:05:45
49.5.3.5	attackbots	May 22 03:50:04 meumeu sshd[25734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.5.3.5 May 22 03:50:07 meumeu sshd[25734]: Failed password for invalid user lun from 49.5.3.5 port 38358 ssh2 May 22 03:58:25 meumeu sshd[30210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.5.3.5 ...	2019-12-01 08:01:15
95.179.239.18	attackbots	firewall-block, port(s): 3389/tcp	2019-12-01 08:03:11
129.213.112.98	attackspambots	Dec 1 01:57:24 taivassalofi sshd[107898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.112.98 Dec 1 01:57:27 taivassalofi sshd[107898]: Failed password for invalid user palengat from 129.213.112.98 port 47692 ssh2 ...	2019-12-01 08:07:55
120.92.153.47	attackspam	SMTP brute force auth login attempt.	2019-12-01 07:50:37
5.26.255.3	attackspam	" "	2019-12-01 07:56:11
212.232.37.224	attackspambots	Automatic report - Port Scan Attack	2019-12-01 07:51:46
49.69.126.18	attack	Jul 24 08:42:10 meumeu sshd[16105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.69.126.18 Jul 24 08:42:12 meumeu sshd[16105]: Failed password for invalid user openhabian from 49.69.126.18 port 54322 ssh2 Jul 24 08:42:16 meumeu sshd[20857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.69.126.18 ...	2019-12-01 07:46:41
118.25.14.19	attackbotsspam	invalid user	2019-12-01 08:08:21
218.92.0.175	attack	Nov 27 08:10:07 microserver sshd[42449]: Failed none for root from 218.92.0.175 port 9507 ssh2 Nov 27 08:10:07 microserver sshd[42449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.175 user=root Nov 27 08:10:09 microserver sshd[42449]: Failed password for root from 218.92.0.175 port 9507 ssh2 Nov 27 08:10:12 microserver sshd[42449]: Failed password for root from 218.92.0.175 port 9507 ssh2 Nov 27 08:10:16 microserver sshd[42449]: Failed password for root from 218.92.0.175 port 9507 ssh2 Nov 27 14:06:53 microserver sshd[25344]: Failed none for root from 218.92.0.175 port 39494 ssh2 Nov 27 14:06:54 microserver sshd[25344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.175 user=root Nov 27 14:06:56 microserver sshd[25344]: Failed password for root from 218.92.0.175 port 39494 ssh2 Nov 27 14:06:59 microserver sshd[25344]: Failed password for root from 218.92.0.175 port 39494 ssh2 Nov 27 14:07:02 microserver ss	2019-12-01 08:11:14

Recently Reported IPs

104.211.59.198	189.204.252.141	204.137.163.244	1.52.192.41
80.211.78.235	114.35.218.4	143.0.69.219	149.129.131.134
1.210.132.90	149.200.73.252	162.83.234.200	168.195.135.46
169.255.125.8	98.208.79.150	111.207.147.9	178.215.163.152
164.68.118.147	37.43.205.223	116.206.31.241	182.254.240.2