102.182.239.239

Basic Info

City: Johannesburg

Region: Gauteng

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: Afrihost

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
102.182.239.127	attack	Apr 11 05:56:30 debian-2gb-nbg1-2 kernel: \[8836395.192777\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=102.182.239.127 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=42591 PROTO=TCP SPT=11681 DPT=23 WINDOW=59249 RES=0x00 SYN URGP=0	2020-04-11 12:04:31

Type

Details

Datetime

102.182.239.127

attack

Apr 11 05:56:30 debian-2gb-nbg1-2 kernel: \[8836395.192777\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=102.182.239.127 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=42591 PROTO=TCP SPT=11681 DPT=23 WINDOW=59249 RES=0x00 SYN URGP=0

2020-04-11 12:04:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.182.239.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33799
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;102.182.239.239.		IN	A

;; AUTHORITY SECTION:
.			1015	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081600 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 17 02:03:14 CST 2019
;; MSG SIZE  rcvd: 119

Host info

239.239.182.102.in-addr.arpa domain name pointer 102-182-239-239.ip.afrihost.joburg.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
239.239.182.102.in-addr.arpa	name = 102-182-239-239.ip.afrihost.joburg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.205.5.158	attackspam	Jul 12 13:58:09 debian-2gb-nbg1-2 kernel: \[16813668.882098\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=103.205.5.158 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=12271 PROTO=TCP SPT=45778 DPT=14785 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-12 23:05:42
51.178.142.220	attack	Jul 12 15:00:43 * sshd[14613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.142.220 Jul 12 15:00:45 * sshd[14613]: Failed password for invalid user ding from 51.178.142.220 port 47870 ssh2	2020-07-12 23:15:02
60.167.176.227	attackbotsspam	Jul 12 13:57:32 sso sshd[18253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.167.176.227 Jul 12 13:57:34 sso sshd[18253]: Failed password for invalid user wangxinyu from 60.167.176.227 port 51440 ssh2 ...	2020-07-12 23:26:53
194.116.237.218	attackspambots		2020-07-12 23:16:12
122.102.27.156	attackspambots	Telnet Server BruteForce Attack	2020-07-12 23:31:06
180.253.183.209	attackbotsspam		2020-07-12 23:17:11
35.186.145.141	attack	$f2bV_matches	2020-07-12 22:52:39
80.98.91.230	attackspambots	Automatic report - Port Scan Attack	2020-07-12 23:19:31
162.243.129.170	attack	Port Scan ...	2020-07-12 23:33:45
103.147.173.11	attackspambots	Port Scan ...	2020-07-12 23:24:38
189.219.75.236	attack	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-07-12 23:35:00
67.205.162.223	attack	Jul 12 14:16:16 onepixel sshd[3684118]: Failed password for invalid user evstrat from 67.205.162.223 port 56306 ssh2 Jul 12 14:20:20 onepixel sshd[3686290]: Invalid user jens from 67.205.162.223 port 53482 Jul 12 14:20:20 onepixel sshd[3686290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.162.223 Jul 12 14:20:20 onepixel sshd[3686290]: Invalid user jens from 67.205.162.223 port 53482 Jul 12 14:20:22 onepixel sshd[3686290]: Failed password for invalid user jens from 67.205.162.223 port 53482 ssh2	2020-07-12 23:09:33
61.174.171.62	attack	Jul 12 15:58:33 lukav-desktop sshd\[31622\]: Invalid user ubuntu from 61.174.171.62 Jul 12 15:58:33 lukav-desktop sshd\[31622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.174.171.62 Jul 12 15:58:35 lukav-desktop sshd\[31622\]: Failed password for invalid user ubuntu from 61.174.171.62 port 61626 ssh2 Jul 12 16:02:14 lukav-desktop sshd\[31635\]: Invalid user user from 61.174.171.62 Jul 12 16:02:14 lukav-desktop sshd\[31635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.174.171.62	2020-07-12 22:53:57
103.120.220.34	attack	Jul 12 13:35:23 ns382633 sshd\[18045\]: Invalid user rakesh from 103.120.220.34 port 32780 Jul 12 13:35:23 ns382633 sshd\[18045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.120.220.34 Jul 12 13:35:25 ns382633 sshd\[18045\]: Failed password for invalid user rakesh from 103.120.220.34 port 32780 ssh2 Jul 12 13:57:23 ns382633 sshd\[21957\]: Invalid user kjayroe from 103.120.220.34 port 60084 Jul 12 13:57:23 ns382633 sshd\[21957\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.120.220.34	2020-07-12 23:32:54
103.81.85.21	attackbots	WordPress login Brute force / Web App Attack on client site.	2020-07-12 23:29:30

Recently Reported IPs

208.144.197.17	194.148.200.185	181.90.127.178	215.71.249.136
193.195.224.97	219.238.161.17	185.234.216.214	141.158.67.21
180.76.160.147	189.34.11.222	91.242.90.70	154.160.11.126
63.205.130.58	91.203.224.5	155.48.76.13	108.103.135.85
164.77.202.219	63.243.87.126	79.131.9.106	157.75.101.17