102.220.78.34 - IPInfo

Basic Info

City: Johannesburg

Region: Gauteng

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.220.78.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39145
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;102.220.78.34.			IN	A

;; AUTHORITY SECTION:
.			144	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040101 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 01 20:36:48 CST 2022
;; MSG SIZE  rcvd: 106

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

server can't find 102.220.78.34.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
116.236.220.210	attack	SSH Brute Force	2020-03-24 03:34:54
128.199.239.8	attackbotsspam	Unauthorized connection attempt from IP address 128.199.239.8 on Port 445(SMB)	2020-03-24 04:03:01
142.129.152.171	attackspam	Automatic report - Port Scan Attack	2020-03-24 03:57:31
114.88.240.50	attack	Netgear DGN Device Remote Command Execution Vulnerability	2020-03-24 03:45:49
46.38.145.5	attack	Mar 23 19:59:11 mail postfix/smtpd\[16892\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 23 19:59:41 mail postfix/smtpd\[16892\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 23 20:30:08 mail postfix/smtpd\[17465\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 23 20:30:36 mail postfix/smtpd\[17465\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-03-24 03:36:50
185.62.189.163	attackbots	(sshd) Failed SSH login from 185.62.189.163 (NL/Netherlands/hosted-by.blazingfast.io): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 23 20:35:05 elude sshd[13254]: Invalid user nafuna from 185.62.189.163 port 39912 Mar 23 20:35:06 elude sshd[13254]: Failed password for invalid user nafuna from 185.62.189.163 port 39912 ssh2 Mar 23 20:43:07 elude sshd[13752]: Invalid user sj from 185.62.189.163 port 59623 Mar 23 20:43:09 elude sshd[13752]: Failed password for invalid user sj from 185.62.189.163 port 59623 ssh2 Mar 23 20:46:34 elude sshd[13927]: Invalid user wilkes from 185.62.189.163 port 39852	2020-03-24 03:56:20
141.8.183.90	attack	[Mon Mar 23 22:45:10.601907 2020] [:error] [pid 25293:tid 140519768332032] [client 141.8.183.90:39169] [client 141.8.183.90] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XnjZhrdSec56q6n39A6CPwAAAqM"] ...	2020-03-24 03:58:58
119.42.96.136	attackbotsspam	Automatic report - Port Scan Attack	2020-03-24 04:03:22
113.176.99.158	attack	Unauthorized connection attempt from IP address 113.176.99.158 on Port 445(SMB)	2020-03-24 03:31:47
189.79.111.149	attackspambots	Mar 23 19:51:04 minden010 sshd[20489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.79.111.149 Mar 23 19:51:06 minden010 sshd[20489]: Failed password for invalid user cc from 189.79.111.149 port 47374 ssh2 Mar 23 19:54:04 minden010 sshd[21598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.79.111.149 ...	2020-03-24 04:01:33
74.82.47.23	attackspambots	" "	2020-03-24 03:30:56
106.13.103.128	attack	$f2bV_matches	2020-03-24 03:47:28
208.53.45.68	attackbotsspam	Brute-force general attack.	2020-03-24 03:49:10
202.125.150.234	attackbots	Unauthorized connection attempt from IP address 202.125.150.234 on Port 445(SMB)	2020-03-24 03:46:13
112.85.42.186	attackspam	Mar 24 01:19:20 areeb-Workstation sshd[5435]: Failed password for root from 112.85.42.186 port 44455 ssh2 Mar 24 01:19:23 areeb-Workstation sshd[5435]: Failed password for root from 112.85.42.186 port 44455 ssh2 ...	2020-03-24 03:50:38

Recently Reported IPs

102.220.77.196	102.221.13.2	102.221.96.100	102.222.183.33
102.222.223.61	102.222.68.69	102.223.7.2	102.223.81.56
102.23.6.14	102.249.2.74	102.252.64.186	102.252.67.2
102.27.251.121	102.32.101.114	102.32.107.200	102.32.108.81
102.32.114.210	102.32.117.104	102.32.118.141	102.32.118.179