102.182.239.239

Basic Info

City: Johannesburg

Region: Gauteng

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: Afrihost

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
102.182.239.127	attack	Apr 11 05:56:30 debian-2gb-nbg1-2 kernel: \[8836395.192777\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=102.182.239.127 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=42591 PROTO=TCP SPT=11681 DPT=23 WINDOW=59249 RES=0x00 SYN URGP=0	2020-04-11 12:04:31

Type

Details

Datetime

102.182.239.127

attack

Apr 11 05:56:30 debian-2gb-nbg1-2 kernel: \[8836395.192777\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=102.182.239.127 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=42591 PROTO=TCP SPT=11681 DPT=23 WINDOW=59249 RES=0x00 SYN URGP=0

2020-04-11 12:04:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.182.239.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33799
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;102.182.239.239.		IN	A

;; AUTHORITY SECTION:
.			1015	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081600 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 17 02:03:14 CST 2019
;; MSG SIZE  rcvd: 119

Host info

239.239.182.102.in-addr.arpa domain name pointer 102-182-239-239.ip.afrihost.joburg.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
239.239.182.102.in-addr.arpa	name = 102-182-239-239.ip.afrihost.joburg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
93.191.20.34	attackspambots	Repeated brute force against a port	2020-08-16 00:22:22
171.249.138.146	attack	1597494024 - 08/15/2020 14:20:24 Host: 171.249.138.146/171.249.138.146 Port: 445 TCP Blocked	2020-08-16 00:25:02
95.249.244.9	attackspambots	20 attempts against mh-misbehave-ban on cedar	2020-08-16 00:29:02
67.207.88.180	attackspambots	Aug 15 12:49:42 plex-server sshd[1448837]: Failed password for root from 67.207.88.180 port 36336 ssh2 Aug 15 12:50:54 plex-server sshd[1449361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.207.88.180 user=root Aug 15 12:50:55 plex-server sshd[1449361]: Failed password for root from 67.207.88.180 port 54040 ssh2 Aug 15 12:52:08 plex-server sshd[1449871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.207.88.180 user=root Aug 15 12:52:10 plex-server sshd[1449871]: Failed password for root from 67.207.88.180 port 43514 ssh2 ...	2020-08-16 00:38:10
89.23.11.106	attackspam	Email rejected due to spam filtering	2020-08-16 00:15:49
23.95.219.54	attackspam	Web form spam (honeypot)	2020-08-16 00:02:39
218.84.70.60	attackspam	TCP (SYN) 218.84.70.60:51100 -> port 80, len 44	2020-08-16 00:28:14
114.119.165.147	attackbots	Automatic report - Banned IP Access	2020-08-16 00:37:57
68.183.227.196	attack	SSH bruteforce	2020-08-16 00:34:39
23.231.65.22	attack	TCP (SYN) 23.231.65.22:3229 -> port 23, len 44	2020-08-16 00:23:27
149.202.190.73	attackbots	Aug 15 15:12:23 abendstille sshd\[6591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.190.73 user=root Aug 15 15:12:25 abendstille sshd\[6591\]: Failed password for root from 149.202.190.73 port 35276 ssh2 Aug 15 15:16:21 abendstille sshd\[10506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.190.73 user=root Aug 15 15:16:23 abendstille sshd\[10506\]: Failed password for root from 149.202.190.73 port 40523 ssh2 Aug 15 15:20:29 abendstille sshd\[14562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.190.73 user=root ...	2020-08-16 00:06:39
120.92.89.30	attackbots	SSH invalid-user multiple login try	2020-08-16 00:39:54
111.229.120.173	attack	Aug 15 18:14:31 santamaria sshd\[25159\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.120.173 user=root Aug 15 18:14:34 santamaria sshd\[25159\]: Failed password for root from 111.229.120.173 port 40206 ssh2 Aug 15 18:18:13 santamaria sshd\[25235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.120.173 user=root ...	2020-08-16 00:20:49
200.69.236.172	attack	SSH invalid-user multiple login try	2020-08-16 00:29:26
51.77.135.89	attack	Flask-IPban - exploit URL requested:/wp-config.php.original	2020-08-16 00:04:41

Recently Reported IPs

208.144.197.17	194.148.200.185	181.90.127.178	215.71.249.136
193.195.224.97	219.238.161.17	185.234.216.214	141.158.67.21
180.76.160.147	189.34.11.222	91.242.90.70	154.160.11.126
63.205.130.58	91.203.224.5	155.48.76.13	108.103.135.85
164.77.202.219	63.243.87.126	79.131.9.106	157.75.101.17