102.182.239.239

Basic Info

City: Johannesburg

Region: Gauteng

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: Afrihost

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
102.182.239.127	attack	Apr 11 05:56:30 debian-2gb-nbg1-2 kernel: \[8836395.192777\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=102.182.239.127 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=42591 PROTO=TCP SPT=11681 DPT=23 WINDOW=59249 RES=0x00 SYN URGP=0	2020-04-11 12:04:31

Type

Details

Datetime

102.182.239.127

attack

Apr 11 05:56:30 debian-2gb-nbg1-2 kernel: \[8836395.192777\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=102.182.239.127 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=42591 PROTO=TCP SPT=11681 DPT=23 WINDOW=59249 RES=0x00 SYN URGP=0

2020-04-11 12:04:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.182.239.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33799
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;102.182.239.239.		IN	A

;; AUTHORITY SECTION:
.			1015	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081600 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 17 02:03:14 CST 2019
;; MSG SIZE  rcvd: 119

Host info

239.239.182.102.in-addr.arpa domain name pointer 102-182-239-239.ip.afrihost.joburg.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
239.239.182.102.in-addr.arpa	name = 102-182-239-239.ip.afrihost.joburg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.67.199.188	attackbots	2020-07-05T17:44:08.331412vps751288.ovh.net sshd\[30348\]: Invalid user www from 111.67.199.188 port 55304 2020-07-05T17:44:08.340124vps751288.ovh.net sshd\[30348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.199.188 2020-07-05T17:44:10.459574vps751288.ovh.net sshd\[30348\]: Failed password for invalid user www from 111.67.199.188 port 55304 ssh2 2020-07-05T17:47:00.979610vps751288.ovh.net sshd\[30370\]: Invalid user mircea from 111.67.199.188 port 33360 2020-07-05T17:47:00.989062vps751288.ovh.net sshd\[30370\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.199.188	2020-07-06 00:48:51
167.99.170.91	attack	Jul 5 19:09:40 debian-2gb-nbg1-2 kernel: \[16227593.275902\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=167.99.170.91 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=34579 PROTO=TCP SPT=53047 DPT=21170 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-06 01:16:13
45.62.250.104	attack	Jul 5 17:28:38 inter-technics sshd[17825]: Invalid user rho from 45.62.250.104 port 56632 Jul 5 17:28:38 inter-technics sshd[17825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.62.250.104 Jul 5 17:28:38 inter-technics sshd[17825]: Invalid user rho from 45.62.250.104 port 56632 Jul 5 17:28:40 inter-technics sshd[17825]: Failed password for invalid user rho from 45.62.250.104 port 56632 ssh2 Jul 5 17:34:15 inter-technics sshd[18135]: Invalid user admin from 45.62.250.104 port 55393 ...	2020-07-06 00:54:32
139.162.75.112	attackbots	Jul 5 10:43:02 ip-172-30-0-108 sshd[19946]: refused connect from 139.162.75.112 (139.162.75.112) Jul 5 10:43:07 ip-172-30-0-108 sshd[19958]: refused connect from 139.162.75.112 (139.162.75.112) Jul 5 10:43:12 ip-172-30-0-108 sshd[19969]: refused connect from 139.162.75.112 (139.162.75.112) ...	2020-07-06 01:08:26
71.43.92.101	attackspambots	Honeypot attack, port: 81, PTR: rrcs-71-43-92-101.se.biz.rr.com.	2020-07-06 00:54:05
77.247.181.165	attack	Jul 5 18:09:34 mellenthin sshd[16689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.247.181.165 user=root Jul 5 18:09:36 mellenthin sshd[16689]: Failed password for invalid user root from 77.247.181.165 port 20756 ssh2	2020-07-06 00:58:48
222.186.30.112	attack	Jul 5 16:19:15 scw-6657dc sshd[8204]: Failed password for root from 222.186.30.112 port 63546 ssh2 Jul 5 16:19:15 scw-6657dc sshd[8204]: Failed password for root from 222.186.30.112 port 63546 ssh2 Jul 5 16:19:18 scw-6657dc sshd[8204]: Failed password for root from 222.186.30.112 port 63546 ssh2 ...	2020-07-06 00:34:23
46.243.186.20	attack	Jul 4 05:01:49 vdcadm1 sshd[14125]: Did not receive identification string from 46.243.186.20 Jul 4 05:01:49 vdcadm1 sshd[14127]: Invalid user admin from 46.243.186.20 Jul 4 05:01:49 vdcadm1 sshd[14128]: Received disconnect from 46.243.186.20: 11: Bye Bye Jul 4 05:01:50 vdcadm1 sshd[14129]: Invalid user support from 46.243.186.20 Jul 4 05:01:50 vdcadm1 sshd[14130]: Received disconnect from 46.243.186.20: 11: Bye Bye Jul 4 05:01:50 vdcadm1 sshd[14131]: Invalid user admin from 46.243.186.20 Jul 4 05:01:50 vdcadm1 sshd[14132]: Received disconnect from 46.243.186.20: 11: Bye Bye Jul 4 05:01:50 vdcadm1 sshd[14133]: Invalid user pi from 46.243.186.20 Jul 4 05:01:50 vdcadm1 sshd[14134]: Received disconnect from 46.243.186.20: 11: Bye Bye Jul 4 05:01:51 vdcadm1 sshd[14135]: Invalid user admin from 46.243.186.20 Jul 4 05:01:51 vdcadm1 sshd[14136]: Received disconnect from 46.243.186.20: 11: Bye Bye Jul 4 05:01:51 vdcadm1 sshd[14137]: Invalid user admin from 46.243.186........ -------------------------------	2020-07-06 00:29:12
175.193.13.3	attack	2020-07-05T14:40:48+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-07-06 01:03:18
125.164.10.79	attack	21 attempts against mh-ssh on ship	2020-07-06 00:47:10
220.134.28.131	attack	Honeypot attack, port: 81, PTR: 220-134-28-131.HINET-IP.hinet.net.	2020-07-06 00:32:39
190.64.64.77	attackspam	Jul 5 15:30:01 ArkNodeAT sshd\[374\]: Invalid user ftp from 190.64.64.77 Jul 5 15:30:01 ArkNodeAT sshd\[374\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.64.64.77 Jul 5 15:30:02 ArkNodeAT sshd\[374\]: Failed password for invalid user ftp from 190.64.64.77 port 21475 ssh2	2020-07-06 00:48:14
113.187.252.177	attackbotsspam	Honeypot attack, port: 81, PTR: static.vnpt.vn.	2020-07-06 01:06:09
104.211.203.197	attackspambots	" "	2020-07-06 00:51:20
171.247.152.17	attack	Honeypot attack, port: 81, PTR: dynamic-ip-adsl.viettel.vn.	2020-07-06 01:00:58

Recently Reported IPs

208.144.197.17	194.148.200.185	181.90.127.178	215.71.249.136
193.195.224.97	219.238.161.17	185.234.216.214	141.158.67.21
180.76.160.147	189.34.11.222	91.242.90.70	154.160.11.126
63.205.130.58	91.203.224.5	155.48.76.13	108.103.135.85
164.77.202.219	63.243.87.126	79.131.9.106	157.75.101.17