102.5.145.98 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kenya

Internet Service Provider: Airtel Networks Kenya Limited

Hostname: unknown

Organization: unknown

Usage Type: Mobile ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jan 21 13:57:37 srv01 sshd[24423]: Invalid user admin from 102.5.145.98 port 65279 Jan 21 13:57:37 srv01 sshd[24423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.5.145.98 Jan 21 13:57:37 srv01 sshd[24423]: Invalid user admin from 102.5.145.98 port 65279 Jan 21 13:57:39 srv01 sshd[24423]: Failed password for invalid user admin from 102.5.145.98 port 65279 ssh2 Jan 21 13:57:37 srv01 sshd[24423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.5.145.98 Jan 21 13:57:37 srv01 sshd[24423]: Invalid user admin from 102.5.145.98 port 65279 Jan 21 13:57:39 srv01 sshd[24423]: Failed password for invalid user admin from 102.5.145.98 port 65279 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=102.5.145.98	2020-01-22 03:21:12

Type

Details

Datetime

attack

Jan 21 13:57:37 srv01 sshd[24423]: Invalid user admin from 102.5.145.98 port 65279
Jan 21 13:57:37 srv01 sshd[24423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.5.145.98
Jan 21 13:57:37 srv01 sshd[24423]: Invalid user admin from 102.5.145.98 port 65279
Jan 21 13:57:39 srv01 sshd[24423]: Failed password for invalid user admin from 102.5.145.98 port 65279 ssh2
Jan 21 13:57:37 srv01 sshd[24423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.5.145.98
Jan 21 13:57:37 srv01 sshd[24423]: Invalid user admin from 102.5.145.98 port 65279
Jan 21 13:57:39 srv01 sshd[24423]: Failed password for invalid user admin from 102.5.145.98 port 65279 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=102.5.145.98

2020-01-22 03:21:12

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.5.145.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41066
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;102.5.145.98.			IN	A

;; AUTHORITY SECTION:
.			529	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012101 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 03:21:09 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 98.145.5.102.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 98.145.5.102.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.220.101.60	attack	SSH-BruteForce	2019-08-11 07:39:51
222.99.52.246	attackbots	Dec 20 22:48:19 motanud sshd\[29207\]: Invalid user web3 from 222.99.52.246 port 47276 Dec 20 22:48:19 motanud sshd\[29207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.52.246 Dec 20 22:48:21 motanud sshd\[29207\]: Failed password for invalid user web3 from 222.99.52.246 port 47276 ssh2	2019-08-11 07:27:10
223.223.186.114	attackspam	Mar 4 20:36:06 motanud sshd\[15036\]: Invalid user xx from 223.223.186.114 port 57521 Mar 4 20:36:06 motanud sshd\[15036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.223.186.114 Mar 4 20:36:07 motanud sshd\[15036\]: Failed password for invalid user xx from 223.223.186.114 port 57521 ssh2	2019-08-11 07:04:00
188.246.226.71	attackspambots	Portscan or hack attempt detected by psad/fwsnort	2019-08-11 07:39:34
223.111.139.247	attackspam	May 4 20:27:05 motanud sshd\[26891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.111.139.247 user=root May 4 20:27:08 motanud sshd\[26891\]: Failed password for root from 223.111.139.247 port 38478 ssh2 May 4 20:27:10 motanud sshd\[26891\]: Failed password for root from 223.111.139.247 port 38478 ssh2	2019-08-11 07:21:39
109.172.42.111	attackbots	port scan/probe/communication attempt	2019-08-11 07:42:53
157.230.94.168	attackspambots	Aug 11 00:33:28 ubuntu-2gb-nbg1-dc3-1 sshd[7586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.94.168 Aug 11 00:33:30 ubuntu-2gb-nbg1-dc3-1 sshd[7586]: Failed password for invalid user leonard from 157.230.94.168 port 57250 ssh2 ...	2019-08-11 07:19:03
223.171.37.178	attackspam	Jan 6 16:29:22 motanud sshd\[26555\]: Invalid user deployer from 223.171.37.178 port 35366 Jan 6 16:29:22 motanud sshd\[26555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.171.37.178 Jan 6 16:29:24 motanud sshd\[26555\]: Failed password for invalid user deployer from 223.171.37.178 port 35366 ssh2	2019-08-11 07:13:29
195.119.114.32	attackspam	Aug 11 02:23:07 www sshd\[151153\]: Invalid user www from 195.119.114.32 Aug 11 02:23:07 www sshd\[151153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.119.114.32 Aug 11 02:23:09 www sshd\[151153\]: Failed password for invalid user www from 195.119.114.32 port 36997 ssh2 ...	2019-08-11 07:35:56
178.87.53.232	attack	Telnet/23 MH Probe, BF, Hack -	2019-08-11 07:34:18
200.89.175.103	attack	SSH-BruteForce	2019-08-11 07:07:48
223.171.32.56	attack	Jan 3 05:27:50 motanud sshd\[9013\]: Invalid user openerp from 223.171.32.56 port 47782 Jan 3 05:27:50 motanud sshd\[9013\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.171.32.56 Jan 3 05:27:52 motanud sshd\[9013\]: Failed password for invalid user openerp from 223.171.32.56 port 47782 ssh2	2019-08-11 07:15:34
223.202.201.220	attack	Feb 27 00:53:16 motanud sshd\[3125\]: Invalid user sms from 223.202.201.220 port 50005 Feb 27 00:53:16 motanud sshd\[3125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.202.201.220 Feb 27 00:53:18 motanud sshd\[3125\]: Failed password for invalid user sms from 223.202.201.220 port 50005 ssh2	2019-08-11 07:09:25
223.171.46.146	attack	Dec 20 20:10:51 motanud sshd\[21087\]: Invalid user git from 223.171.46.146 port 32869 Dec 20 20:10:51 motanud sshd\[21087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.171.46.146 Dec 20 20:10:53 motanud sshd\[21087\]: Failed password for invalid user git from 223.171.46.146 port 32869 ssh2	2019-08-11 07:13:11
223.111.139.203	attackspam	May 4 20:41:32 motanud sshd\[27599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.111.139.203 user=root May 4 20:41:34 motanud sshd\[27599\]: Failed password for root from 223.111.139.203 port 56683 ssh2 May 4 20:41:36 motanud sshd\[27599\]: Failed password for root from 223.111.139.203 port 56683 ssh2	2019-08-11 07:25:31

Recently Reported IPs

235.242.209.71	177.67.159.213	60.168.11.231	60.205.222.239
188.172.133.106	91.126.217.107	89.243.8.84	180.124.23.245
92.92.29.110	83.31.89.129	82.207.246.239	63.250.37.114
104.211.100.237	196.19.73.253	94.253.127.81	27.34.47.101
77.40.89.7	167.114.200.252	126.18.95.236	84.184.84.244