103.18.2.242 - IPInfo

Basic Info

City: Kuala Lumpur

Region: Kuala Lumpur

Country: Malaysia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.18.242.18	attackspambots	Oct 3 22:10:06 mail.srvfarm.net postfix/smtpd[660372]: warning: unknown[103.18.242.18]: SASL PLAIN authentication failed: Oct 3 22:10:06 mail.srvfarm.net postfix/smtpd[660372]: lost connection after AUTH from unknown[103.18.242.18] Oct 3 22:15:36 mail.srvfarm.net postfix/smtps/smtpd[658711]: warning: unknown[103.18.242.18]: SASL PLAIN authentication failed: Oct 3 22:15:36 mail.srvfarm.net postfix/smtps/smtpd[658711]: lost connection after AUTH from unknown[103.18.242.18] Oct 3 22:16:51 mail.srvfarm.net postfix/smtps/smtpd[658711]: warning: unknown[103.18.242.18]: SASL PLAIN authentication failed:	2020-10-05 05:34:42
103.18.242.37	attackspambots	Oct 4 03:01:05 mail.srvfarm.net postfix/smtpd[696518]: warning: unknown[103.18.242.37]: SASL PLAIN authentication failed: Oct 4 03:01:05 mail.srvfarm.net postfix/smtpd[696518]: lost connection after AUTH from unknown[103.18.242.37] Oct 4 03:07:34 mail.srvfarm.net postfix/smtpd[700724]: warning: unknown[103.18.242.37]: SASL PLAIN authentication failed: Oct 4 03:07:34 mail.srvfarm.net postfix/smtpd[700724]: lost connection after AUTH from unknown[103.18.242.37] Oct 4 03:07:46 mail.srvfarm.net postfix/smtps/smtpd[697233]: warning: unknown[103.18.242.37]: SASL PLAIN authentication failed:	2020-10-05 05:34:17
103.18.242.18	attack	Oct 3 22:10:06 mail.srvfarm.net postfix/smtpd[660372]: warning: unknown[103.18.242.18]: SASL PLAIN authentication failed: Oct 3 22:10:06 mail.srvfarm.net postfix/smtpd[660372]: lost connection after AUTH from unknown[103.18.242.18] Oct 3 22:15:36 mail.srvfarm.net postfix/smtps/smtpd[658711]: warning: unknown[103.18.242.18]: SASL PLAIN authentication failed: Oct 3 22:15:36 mail.srvfarm.net postfix/smtps/smtpd[658711]: lost connection after AUTH from unknown[103.18.242.18] Oct 3 22:16:51 mail.srvfarm.net postfix/smtps/smtpd[658711]: warning: unknown[103.18.242.18]: SASL PLAIN authentication failed:	2020-10-04 21:29:56
103.18.242.37	attack	Oct 4 03:01:05 mail.srvfarm.net postfix/smtpd[696518]: warning: unknown[103.18.242.37]: SASL PLAIN authentication failed: Oct 4 03:01:05 mail.srvfarm.net postfix/smtpd[696518]: lost connection after AUTH from unknown[103.18.242.37] Oct 4 03:07:34 mail.srvfarm.net postfix/smtpd[700724]: warning: unknown[103.18.242.37]: SASL PLAIN authentication failed: Oct 4 03:07:34 mail.srvfarm.net postfix/smtpd[700724]: lost connection after AUTH from unknown[103.18.242.37] Oct 4 03:07:46 mail.srvfarm.net postfix/smtps/smtpd[697233]: warning: unknown[103.18.242.37]: SASL PLAIN authentication failed:	2020-10-04 21:29:34
103.18.242.18	attackbots	Oct 3 22:10:06 mail.srvfarm.net postfix/smtpd[660372]: warning: unknown[103.18.242.18]: SASL PLAIN authentication failed: Oct 3 22:10:06 mail.srvfarm.net postfix/smtpd[660372]: lost connection after AUTH from unknown[103.18.242.18] Oct 3 22:15:36 mail.srvfarm.net postfix/smtps/smtpd[658711]: warning: unknown[103.18.242.18]: SASL PLAIN authentication failed: Oct 3 22:15:36 mail.srvfarm.net postfix/smtps/smtpd[658711]: lost connection after AUTH from unknown[103.18.242.18] Oct 3 22:16:51 mail.srvfarm.net postfix/smtps/smtpd[658711]: warning: unknown[103.18.242.18]: SASL PLAIN authentication failed:	2020-10-04 13:16:53
103.18.242.37	attackbots	Oct 4 03:01:05 mail.srvfarm.net postfix/smtpd[696518]: warning: unknown[103.18.242.37]: SASL PLAIN authentication failed: Oct 4 03:01:05 mail.srvfarm.net postfix/smtpd[696518]: lost connection after AUTH from unknown[103.18.242.37] Oct 4 03:07:34 mail.srvfarm.net postfix/smtpd[700724]: warning: unknown[103.18.242.37]: SASL PLAIN authentication failed: Oct 4 03:07:34 mail.srvfarm.net postfix/smtpd[700724]: lost connection after AUTH from unknown[103.18.242.37] Oct 4 03:07:46 mail.srvfarm.net postfix/smtps/smtpd[697233]: warning: unknown[103.18.242.37]: SASL PLAIN authentication failed:	2020-10-04 13:16:31
103.18.242.34	attackspam	$f2bV_matches	2020-09-30 04:53:49
103.18.242.34	attack	$f2bV_matches	2020-09-29 21:01:44
103.18.242.34	attackspambots	$f2bV_matches	2020-09-29 13:13:28
103.18.242.23	attack	Sep 8 10:14:26 mail.srvfarm.net postfix/smtps/smtpd[1700326]: warning: unknown[103.18.242.23]: SASL PLAIN authentication failed: Sep 8 10:14:26 mail.srvfarm.net postfix/smtps/smtpd[1700326]: lost connection after AUTH from unknown[103.18.242.23] Sep 8 10:19:14 mail.srvfarm.net postfix/smtps/smtpd[1716015]: warning: unknown[103.18.242.23]: SASL PLAIN authentication failed: Sep 8 10:19:15 mail.srvfarm.net postfix/smtps/smtpd[1716015]: lost connection after AUTH from unknown[103.18.242.23] Sep 8 10:19:25 mail.srvfarm.net postfix/smtps/smtpd[1700325]: warning: unknown[103.18.242.23]: SASL PLAIN authentication failed:	2020-09-12 02:11:45
103.18.242.23	attackbotsspam	Sep 8 10:14:26 mail.srvfarm.net postfix/smtps/smtpd[1700326]: warning: unknown[103.18.242.23]: SASL PLAIN authentication failed: Sep 8 10:14:26 mail.srvfarm.net postfix/smtps/smtpd[1700326]: lost connection after AUTH from unknown[103.18.242.23] Sep 8 10:19:14 mail.srvfarm.net postfix/smtps/smtpd[1716015]: warning: unknown[103.18.242.23]: SASL PLAIN authentication failed: Sep 8 10:19:15 mail.srvfarm.net postfix/smtps/smtpd[1716015]: lost connection after AUTH from unknown[103.18.242.23] Sep 8 10:19:25 mail.srvfarm.net postfix/smtps/smtpd[1700325]: warning: unknown[103.18.242.23]: SASL PLAIN authentication failed:	2020-09-11 18:04:26
103.18.242.9	attackbots	Aug 27 05:34:14 mail.srvfarm.net postfix/smtps/smtpd[1357935]: warning: unknown[103.18.242.9]: SASL PLAIN authentication failed: Aug 27 05:34:14 mail.srvfarm.net postfix/smtps/smtpd[1357935]: lost connection after AUTH from unknown[103.18.242.9] Aug 27 05:35:40 mail.srvfarm.net postfix/smtps/smtpd[1355752]: warning: unknown[103.18.242.9]: SASL PLAIN authentication failed: Aug 27 05:35:40 mail.srvfarm.net postfix/smtps/smtpd[1355752]: lost connection after AUTH from unknown[103.18.242.9] Aug 27 05:42:13 mail.srvfarm.net postfix/smtpd[1362101]: warning: unknown[103.18.242.9]: SASL PLAIN authentication failed:	2020-08-28 07:35:55
103.18.242.14	attackspam	Brute force attempt	2020-08-21 20:18:47
103.18.242.44	attackspam	Attempted Brute Force (dovecot)	2020-08-21 02:37:06
103.18.242.45	attackspam	Aug 16 05:34:34 mail.srvfarm.net postfix/smtpd[1887514]: warning: unknown[103.18.242.45]: SASL PLAIN authentication failed: Aug 16 05:34:34 mail.srvfarm.net postfix/smtpd[1887514]: lost connection after AUTH from unknown[103.18.242.45] Aug 16 05:36:18 mail.srvfarm.net postfix/smtps/smtpd[1890437]: warning: unknown[103.18.242.45]: SASL PLAIN authentication failed: Aug 16 05:36:18 mail.srvfarm.net postfix/smtps/smtpd[1890437]: lost connection after AUTH from unknown[103.18.242.45] Aug 16 05:38:01 mail.srvfarm.net postfix/smtpd[1887514]: warning: unknown[103.18.242.45]: SASL PLAIN authentication failed:	2020-08-16 12:42:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.18.2.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5258
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.18.2.242.			IN	A

;; AUTHORITY SECTION:
.			247	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121802 1800 900 604800 86400

;; Query time: 138 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 19 06:55:02 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 242.2.18.103.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 242.2.18.103.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
161.246.35.226	attackbotsspam	ft-1848-basketball.de 161.246.35.226 [07/May/2020:05:49:24 +0200] "POST /wp-login.php HTTP/1.1" 200 2498 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ft-1848-basketball.de 161.246.35.226 [07/May/2020:05:49:24 +0200] "POST /xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-07 18:31:30
141.98.81.84	attackbotsspam	5x Failed Password	2020-05-07 18:35:26
134.249.141.83	attackspam	C2,WP GET //wp-includes/wlwmanifest.xml	2020-05-07 18:58:48
128.199.142.90	attackspam	May 7 07:41:10 ns381471 sshd[29140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.142.90 May 7 07:41:12 ns381471 sshd[29140]: Failed password for invalid user zimbra from 128.199.142.90 port 60839 ssh2	2020-05-07 18:30:08
58.214.253.202	attackspambots	2020-05-0705:47:071jWXV3-0006ZJ-2w\<=info@whatsup2013.chH=118-171-169-125.dynamic-ip.hinet.net$localhost$[118.171.169.125]:56852P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3112id=af9dadfef5de0b072065d38074b3b9b5867b49b5@whatsup2013.chT="Seekingmybesthalf"forgheram72@hotmail.comimamabdillah21@gmail.com2020-05-0705:47:361jWXVX-0006by-OM\<=info@whatsup2013.chH=$localhost$[123.24.172.65]:57460P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3134id=85e9a8fbf0db0e022560d68571b6bcb0830fdf7e@whatsup2013.chT="I'mverybored"forjerrymattos@gmail.com76dmtz@gmail.com2020-05-0705:48:231jWXWJ-0006dQ-2b\<=info@whatsup2013.chH=$localhost$[186.210.91.64]:50080P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3101id=801badfef5def4fc6065d37f986c465a5835e9@whatsup2013.chT="Areyoureallyalone\?"foro.g.notoes2@gmail.comhamptonmichael6335@gmail.com2020-05-0705:48:381jWXWX-0006gq-6s\<=info@whats	2020-05-07 19:00:13
18.218.102.142	attack	May 7 07:07:36 ns381471 sshd[26909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.218.102.142 May 7 07:07:38 ns381471 sshd[26909]: Failed password for invalid user test from 18.218.102.142 port 44846 ssh2	2020-05-07 18:30:57
208.68.39.220	attackspam	" "	2020-05-07 18:25:34
91.134.173.100	attackspambots	May 7 03:57:01 vlre-nyc-1 sshd\[5906\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.173.100 user=root May 7 03:57:03 vlre-nyc-1 sshd\[5906\]: Failed password for root from 91.134.173.100 port 45816 ssh2 May 7 04:00:28 vlre-nyc-1 sshd\[5942\]: Invalid user liviu from 91.134.173.100 May 7 04:00:28 vlre-nyc-1 sshd\[5942\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.173.100 May 7 04:00:31 vlre-nyc-1 sshd\[5942\]: Failed password for invalid user liviu from 91.134.173.100 port 56198 ssh2 ...	2020-05-07 18:53:06
128.199.121.32	attackbotsspam	May 7 09:44:44 saturn sshd[40660]: Invalid user mailtest from 128.199.121.32 port 47546 May 7 09:44:46 saturn sshd[40660]: Failed password for invalid user mailtest from 128.199.121.32 port 47546 ssh2 May 7 09:59:49 saturn sshd[41219]: Invalid user ashton from 128.199.121.32 port 34728 ...	2020-05-07 18:28:34
82.130.202.35	attack	07.05.2020 05:48:45 - Login Fail on hMailserver Detected by ELinOX-hMail-A2F	2020-05-07 19:02:32
85.239.35.161	attackbotsspam	2020-05-07T12:55:09.259777vps751288.ovh.net sshd\[3413\]: Invalid user support from 85.239.35.161 port 61296 2020-05-07T12:55:10.511314vps751288.ovh.net sshd\[3412\]: Invalid user 0101 from 85.239.35.161 port 61306 2020-05-07T12:55:10.877396vps751288.ovh.net sshd\[3413\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.35.161 2020-05-07T12:55:11.058085vps751288.ovh.net sshd\[3411\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.35.161 user=root 2020-05-07T12:55:11.841699vps751288.ovh.net sshd\[3412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.239.35.161	2020-05-07 18:57:02
82.223.110.49	attack	Brute force attempt	2020-05-07 18:32:05
45.55.173.117	attackspambots	port	2020-05-07 18:46:54
220.142.221.164	attack	port 23	2020-05-07 18:44:43
64.53.14.211	attack	May 7 08:32:15 ws26vmsma01 sshd[174694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.53.14.211 May 7 08:32:17 ws26vmsma01 sshd[174694]: Failed password for invalid user marie from 64.53.14.211 port 40903 ssh2 ...	2020-05-07 18:34:36

Recently Reported IPs

77.107.59.243	220.38.58.92	85.27.208.8	95.134.189.21
167.75.59.60	40.92.67.54	3.204.14.47	70.133.243.246
1.254.228.121	93.92.160.81	46.49.148.18	83.170.214.142
85.113.41.207	1.26.52.25	175.104.243.1	14.186.45.174
77.253.192.166	61.180.201.77	50.127.216.102	144.21.177.214