102.39.1.10 - IPInfo

Basic Info

City: Johannesburg

Region: Gauteng

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
102.39.199.245	attackspam	$f2bV_matches	2020-09-09 00:16:18
102.39.199.245	attackbotsspam	$f2bV_matches	2020-09-08 15:47:59
102.39.199.245	attack	$f2bV_matches	2020-09-08 08:22:44
102.39.125.142	attack	Sep 4 18:46:44 mellenthin postfix/smtpd[30907]: NOQUEUE: reject: RCPT from unknown[102.39.125.142]: 554 5.7.1 Service unavailable; Client host [102.39.125.142] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/102.39.125.142; from= to= proto=ESMTP helo=<[102.39.125.142]>	2020-09-06 02:23:25
102.39.125.142	attackspam	Sep 4 18:46:44 mellenthin postfix/smtpd[30907]: NOQUEUE: reject: RCPT from unknown[102.39.125.142]: 554 5.7.1 Service unavailable; Client host [102.39.125.142] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/102.39.125.142; from= to= proto=ESMTP helo=<[102.39.125.142]>	2020-09-05 17:58:40
102.39.197.56	attack	xmlrpc attack	2020-08-03 14:26:47
102.39.111.112	attackbotsspam	Jun 15 19:20:46 mail postfix/postscreen[30322]: DNSBL rank 4 for [102.39.111.112]:62249 ...	2020-07-14 14:00:52
102.39.111.112	attackbots	Lines containing failures of 102.39.111.112 Jul 4 09:30:01 neweola postfix/smtpd[23842]: connect from unknown[102.39.111.112] Jul 4 09:30:02 neweola postfix/smtpd[23842]: lost connection after AUTH from unknown[102.39.111.112] Jul 4 09:30:02 neweola postfix/smtpd[23842]: disconnect from unknown[102.39.111.112] ehlo=1 auth=0/1 commands=1/2 Jul 4 09:30:02 neweola postfix/smtpd[23842]: connect from unknown[102.39.111.112] Jul 4 09:30:03 neweola postfix/smtpd[23842]: lost connection after AUTH from unknown[102.39.111.112] Jul 4 09:30:03 neweola postfix/smtpd[23842]: disconnect from unknown[102.39.111.112] ehlo=1 auth=0/1 commands=1/2 Jul 4 09:30:03 neweola postfix/smtpd[23860]: connect from unknown[102.39.111.112] Jul 4 09:30:04 neweola postfix/smtpd[23860]: lost connection after AUTH from unknown[102.39.111.112] Jul 4 09:30:04 neweola postfix/smtpd[23860]: disconnect from unknown[102.39.111.112] ehlo=1 auth=0/1 commands=1/2 Jul 4 09:30:05 neweola postfix/smtpd[238........ ------------------------------	2020-07-06 00:49:47
102.39.18.221	attackspam	VNC brute force attack detected by fail2ban	2020-07-04 17:39:50
102.39.151.220	attackspam	Jun 26 22:08:01 piServer sshd[26717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.39.151.220 Jun 26 22:08:03 piServer sshd[26717]: Failed password for invalid user admin from 102.39.151.220 port 41016 ssh2 Jun 26 22:12:03 piServer sshd[27243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.39.151.220 ...	2020-06-27 04:35:15
102.39.151.220	attackbotsspam	Invalid user ganesh from 102.39.151.220 port 56184	2020-06-25 06:24:05
102.39.151.220	attack	Jun 24 07:40:29 vps647732 sshd[8209]: Failed password for root from 102.39.151.220 port 56522 ssh2 ...	2020-06-24 17:00:01
102.39.151.220	attackbots	Jun 23 07:53:17 ArkNodeAT sshd\[19923\]: Invalid user emile from 102.39.151.220 Jun 23 07:53:17 ArkNodeAT sshd\[19923\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.39.151.220 Jun 23 07:53:19 ArkNodeAT sshd\[19923\]: Failed password for invalid user emile from 102.39.151.220 port 53166 ssh2	2020-06-23 15:21:06
102.39.151.220	attackspambots	SSH login attempts.	2020-06-19 14:23:37
102.39.151.220	attack	2020-06-18T00:37:44.820386shield sshd\[10204\]: Invalid user ftp1 from 102.39.151.220 port 46316 2020-06-18T00:37:44.825565shield sshd\[10204\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.39.151.220 2020-06-18T00:37:46.644662shield sshd\[10204\]: Failed password for invalid user ftp1 from 102.39.151.220 port 46316 ssh2 2020-06-18T00:41:10.499013shield sshd\[11264\]: Invalid user tom from 102.39.151.220 port 38532 2020-06-18T00:41:10.504031shield sshd\[11264\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.39.151.220	2020-06-18 08:50:02

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 102.39.1.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14705
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;102.39.1.10.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 17:59:52 CST 2021
;; MSG SIZE  rcvd: 40

'

Host info

b'10.1.39.102.in-addr.arpa domain name pointer 102-39-1-10.vox.co.za.
'

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
10.1.39.102.in-addr.arpa	name = 102-39-1-10.vox.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.99.144.82	attackbots	Jun 25 04:15:25 tanzim-HP-Z238-Microtower-Workstation sshd\[29821\]: Invalid user nevada from 167.99.144.82 Jun 25 04:15:25 tanzim-HP-Z238-Microtower-Workstation sshd\[29821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.144.82 Jun 25 04:15:27 tanzim-HP-Z238-Microtower-Workstation sshd\[29821\]: Failed password for invalid user nevada from 167.99.144.82 port 54796 ssh2 ...	2019-06-25 13:20:35
178.155.4.117	attack	Autoban 178.155.4.117 AUTH/CONNECT	2019-06-25 12:51:02
178.232.173.1	attackbots	Autoban 178.232.173.1 AUTH/CONNECT	2019-06-25 12:43:01
178.235.185.247	attackspambots	Autoban 178.235.185.247 AUTH/CONNECT	2019-06-25 12:39:40
71.6.232.4	attackspambots	Port scan: Attack repeated for 24 hours 71.6.232.4 - - [20/Mar/2019:07:22:37 +0200] "GET / HTTP/1.1" 404 530 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/57.0.2987.133 Safari/537.36"	2019-06-25 13:24:33
167.99.77.94	attackspambots	Jun 25 00:45:40 s64-1 sshd[2047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.77.94 Jun 25 00:45:43 s64-1 sshd[2047]: Failed password for invalid user emily from 167.99.77.94 port 36900 ssh2 Jun 25 00:47:28 s64-1 sshd[2080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.77.94 ...	2019-06-25 12:33:20
84.92.39.93	attackbots	Jun 25 03:43:01 vps65 sshd\[8977\]: Invalid user reply from 84.92.39.93 port 47518 Jun 25 03:43:01 vps65 sshd\[8977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.92.39.93 ...	2019-06-25 12:44:02
116.62.217.151	attack	24.06.2019 22:01:28 Recursive DNS scan	2019-06-25 12:49:28
52.167.214.35	attackspambots	ports scanning	2019-06-25 13:24:51
178.235.176.121	attack	Autoban 178.235.176.121 AUTH/CONNECT	2019-06-25 12:40:28
122.228.19.79	attackspam	25.06.2019 04:44:45 Connection to port 2002 blocked by firewall	2019-06-25 12:47:47
197.45.60.180	attackbots	Unauthorised access (Jun 25) SRC=197.45.60.180 LEN=52 TOS=0x08 PREC=0x20 TTL=109 ID=30780 DF TCP DPT=445 WINDOW=8192 SYN	2019-06-25 13:07:55
66.249.66.93	attack	Automatic report - Web App Attack	2019-06-25 12:46:26
178.213.138.54	attackspam	Autoban 178.213.138.54 AUTH/CONNECT	2019-06-25 12:45:26
178.205.106.172	attack	Unauthorized connection attempt from IP address 178.205.106.172 on Port 25(SMTP)	2019-06-25 12:46:56

Recently Reported IPs

99.27.77.8	66.153.153.84	174.106.8.23	162.230.92.94
102.185.147.89	174.91.174.56	77.119.246.1	27.62.20.239
77.119.246.60	106.210.176.180	70.119.99.177	103.149.240.250
49.234.251.64	123.253.65.176	190.186.47.80	5.66.79.216
199.231.233.25	70.132.63.148	196.19.205.163	178.65.35.37