202.129.241.102

Basic Info

City: Anand

Region: Gujarat

Country: India

Internet Service Provider: Elecon Information Technology Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Oct 8 13:45:34 v22019058497090703 sshd[2270]: Failed password for root from 202.129.241.102 port 49418 ssh2 Oct 8 13:47:04 v22019058497090703 sshd[2399]: Failed password for root from 202.129.241.102 port 60974 ssh2 ...	2019-10-09 02:31:56
attackspambots	Oct 1 07:05:16 www sshd\[37271\]: Invalid user dragos from 202.129.241.102Oct 1 07:05:17 www sshd\[37271\]: Failed password for invalid user dragos from 202.129.241.102 port 43006 ssh2Oct 1 07:06:51 www sshd\[37286\]: Invalid user jia from 202.129.241.102 ...	2019-10-01 17:19:26
attackbotsspam	Sep 22 16:09:00 localhost sshd\[16501\]: Invalid user cosmo from 202.129.241.102 port 41184 Sep 22 16:09:00 localhost sshd\[16501\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.129.241.102 Sep 22 16:09:02 localhost sshd\[16501\]: Failed password for invalid user cosmo from 202.129.241.102 port 41184 ssh2	2019-09-22 22:11:51
attackbots	Invalid user norm from 202.129.241.102 port 43424	2019-09-21 15:43:10
attack	Sep 19 13:20:38 vps01 sshd[26647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.129.241.102 Sep 19 13:20:40 vps01 sshd[26647]: Failed password for invalid user newadmin from 202.129.241.102 port 51234 ssh2	2019-09-19 19:51:50
attack	Sep 14 19:23:11 host sshd\[5462\]: Invalid user amavis from 202.129.241.102 port 53858 Sep 14 19:23:11 host sshd\[5462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.129.241.102 ...	2019-09-15 01:51:37
attack	Sep 9 23:25:12 areeb-Workstation sshd[765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.129.241.102 Sep 9 23:25:14 areeb-Workstation sshd[765]: Failed password for invalid user ts3srv from 202.129.241.102 port 55006 ssh2 ...	2019-09-10 02:09:46

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.129.241.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39310
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.129.241.102.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090902 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 10 02:09:33 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 102.241.129.202.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 102.241.129.202.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.62.33.138	attack	Mar 31 03:02:52 web1 sshd\[13720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.33.138 user=root Mar 31 03:02:53 web1 sshd\[13720\]: Failed password for root from 178.62.33.138 port 37512 ssh2 Mar 31 03:06:16 web1 sshd\[14087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.33.138 user=root Mar 31 03:06:18 web1 sshd\[14087\]: Failed password for root from 178.62.33.138 port 39474 ssh2 Mar 31 03:09:53 web1 sshd\[14552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.33.138 user=root	2020-03-31 21:39:33
23.99.212.201	attack	Brute forcing RDP port 3389	2020-03-31 21:09:52
179.182.135.184	attackbots	1585658092 - 03/31/2020 14:34:52 Host: 179.182.135.184/179.182.135.184 Port: 445 TCP Blocked	2020-03-31 21:07:17
14.249.96.0	attackbotsspam	445/tcp [2020-03-31]1pkt	2020-03-31 21:22:36
148.153.12.213	attackspambots	1433/tcp [2020-03-31]1pkt	2020-03-31 21:45:19
114.67.176.63	attackspambots	SSH login attempts.	2020-03-31 21:41:16
139.59.254.93	attackbotsspam	Mar 31 15:00:34 ewelt sshd[5861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.254.93 user=root Mar 31 15:00:36 ewelt sshd[5861]: Failed password for root from 139.59.254.93 port 44839 ssh2 Mar 31 15:05:04 ewelt sshd[6158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.254.93 user=root Mar 31 15:05:06 ewelt sshd[6158]: Failed password for root from 139.59.254.93 port 55261 ssh2 ...	2020-03-31 21:19:26
183.177.101.122	attackbotsspam	445/tcp [2020-03-31]1pkt	2020-03-31 22:00:14
106.13.234.61	attackspambots	Mar 31 14:30:06 srv01 sshd[1985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.234.61 user=root Mar 31 14:30:08 srv01 sshd[1985]: Failed password for root from 106.13.234.61 port 35604 ssh2 Mar 31 14:34:32 srv01 sshd[2242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.234.61 user=root Mar 31 14:34:34 srv01 sshd[2242]: Failed password for root from 106.13.234.61 port 37552 ssh2 ...	2020-03-31 21:31:41
84.217.101.216	attackbots	SE_OWNIT-MNT_<177>1585658077 [1:2403446:56378] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 74 [Classification: Misc Attack] [Priority: 2]: {TCP} 84.217.101.216:13094	2020-03-31 21:26:19
54.37.20.138	attackspam	detected by Fail2Ban	2020-03-31 21:20:44
222.186.30.35	attackbotsspam	Mar 31 15:48:01 cvbnet sshd[12496]: Failed password for root from 222.186.30.35 port 64299 ssh2 Mar 31 15:48:05 cvbnet sshd[12496]: Failed password for root from 222.186.30.35 port 64299 ssh2 ...	2020-03-31 21:54:54
188.165.40.174	attack	Mar 31 09:26:55 ws24vmsma01 sshd[78451]: Failed password for root from 188.165.40.174 port 47144 ssh2 ...	2020-03-31 21:42:20
212.100.133.244	attackbots	Mar 31 08:38:23 www6-3 sshd[25993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.100.133.244 user=r.r Mar 31 08:38:25 www6-3 sshd[25993]: Failed password for r.r from 212.100.133.244 port 49598 ssh2 Mar 31 08:38:25 www6-3 sshd[25993]: Received disconnect from 212.100.133.244 port 49598:11: Bye Bye [preauth] Mar 31 08:38:25 www6-3 sshd[25993]: Disconnected from 212.100.133.244 port 49598 [preauth] Mar 31 08:43:57 www6-3 sshd[26525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.100.133.244 user=r.r Mar 31 08:43:59 www6-3 sshd[26525]: Failed password for r.r from 212.100.133.244 port 51010 ssh2 Mar 31 08:43:59 www6-3 sshd[26525]: Received disconnect from 212.100.133.244 port 51010:11: Bye Bye [preauth] Mar 31 08:43:59 www6-3 sshd[26525]: Disconnected from 212.100.133.244 port 51010 [preauth] Mar 31 08:48:14 www6-3 sshd[26797]: pam_unix(sshd:auth): authentication failure; logname........ -------------------------------	2020-03-31 21:23:11
189.80.247.194	attackspam	Honeypot attack, port: 445, PTR: 18980247194.user.veloxzone.com.br.	2020-03-31 21:16:35

Recently Reported IPs

220.44.243.114	32.18.0.0	165.199.220.73	96.19.3.46
52.93.106.215	191.6.238.35	84.6.125.206	107.173.198.29
222.248.230.21	64.217.142.174	196.67.155.44	201.225.4.83
87.113.211.172	108.121.63.162	191.55.16.140	47.12.106.96
115.148.126.34	27.186.4.105	187.138.30.91	122.121.110.125