103.194.242.220

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.194.242.254	attackbots	Dovecot Invalid User Login Attempt.	2020-09-07 01:07:02
103.194.242.254	attackspambots	Dovecot Invalid User Login Attempt.	2020-09-06 16:28:20
103.194.242.254	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-09-06 08:29:04
103.194.242.78	attack	Aug 26 04:40:47 shivevps sshd[24611]: Bad protocol version identification '\024' from 103.194.242.78 port 59582 Aug 26 04:41:19 shivevps sshd[25537]: Bad protocol version identification '\024' from 103.194.242.78 port 60894 Aug 26 04:43:56 shivevps sshd[30268]: Bad protocol version identification '\024' from 103.194.242.78 port 38432 Aug 26 04:44:16 shivevps sshd[30875]: Bad protocol version identification '\024' from 103.194.242.78 port 39199 ...	2020-08-26 14:52:44
103.194.242.254	attackbots	Dovecot Invalid User Login Attempt.	2020-08-14 12:53:06
103.194.242.254	attackbotsspam	proto=tcp . spt=47004 . dpt=25 . Found on Blocklist de (510)	2020-03-10 06:52:35
103.194.242.78	attackspam	email spam	2019-12-19 16:44:49
103.194.242.78	attackspam	Mail sent to address harvested from public web site	2019-11-27 02:34:02
103.194.242.254	attackspam	Absender hat Spam-Falle ausgel?st	2019-11-08 21:31:20
103.194.242.254	attack	postfix (unknown user, SPF fail or relay access denied)	2019-11-05 19:20:42
103.194.242.254	attack	Brute force SMTP login attempts.	2019-09-30 05:58:34
103.194.242.10	attack	Sending SPAM email	2019-08-06 23:06:34
103.194.242.78	attack	C2,WP GET //wp-login.php	2019-07-24 17:11:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.194.242.220
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62510
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.194.242.220.		IN	A

;; AUTHORITY SECTION:
.			237	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011000 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 15:42:17 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 220.242.194.103.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 220.242.194.103.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
13.126.162.23	attackspam	Jul 30 00:16:25 server2101 sshd[26625]: Invalid user dana from 13.126.162.23 Jul 30 00:16:25 server2101 sshd[26625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-13-126-162-23.ap-south-1.compute.amazonaws.com Jul 30 00:16:28 server2101 sshd[26625]: Failed password for invalid user dana from 13.126.162.23 port 50980 ssh2 Jul 30 00:16:28 server2101 sshd[26625]: Received disconnect from 13.126.162.23: 11: Bye Bye [preauth] Jul 30 01:05:07 server2101 sshd[27265]: Invalid user builder from 13.126.162.23 Jul 30 01:05:07 server2101 sshd[27265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-13-126-162-23.ap-south-1.compute.amazonaws.com Jul 30 01:05:09 server2101 sshd[27265]: Failed password for invalid user builder from 13.126.162.23 port 45454 ssh2 Jul 30 01:05:09 server2101 sshd[27265]: Received disconnect from 13.126.162.23: 11: Bye Bye [preauth] Jul 30 01:15:52 server2101 sshd[2747........ -------------------------------	2019-07-31 05:38:49
136.243.19.213	attack	Jul 30 12:13:40 xb0 sshd[19013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.243.19.213 user=r.r Jul 30 12:13:42 xb0 sshd[19013]: Failed password for r.r from 136.243.19.213 port 45380 ssh2 Jul 30 12:13:42 xb0 sshd[19013]: Received disconnect from 136.243.19.213: 11: Bye Bye [preauth] Jul 30 12:20:13 xb0 sshd[1247]: Failed password for invalid user hamlet from 136.243.19.213 port 56922 ssh2 Jul 30 12:20:13 xb0 sshd[1247]: Received disconnect from 136.243.19.213: 11: Bye Bye [preauth] Jul 30 12:24:18 xb0 sshd[21248]: Failed password for invalid user Teija from 136.243.19.213 port 54020 ssh2 Jul 30 12:24:18 xb0 sshd[21248]: Received disconnect from 136.243.19.213: 11: Bye Bye [preauth] Jul 30 12:28:24 xb0 sshd[17809]: Failed password for invalid user frog from 136.243.19.213 port 51164 ssh2 Jul 30 12:28:24 xb0 sshd[17809]: Received disconnect from 136.243.19.213: 11: Bye Bye [preauth] Jul 30 12:32:35 xb0 sshd[17095]: Failed........ -------------------------------	2019-07-31 05:45:55
192.99.245.235	attackspambots	SSH Bruteforce Attack	2019-07-31 06:10:34
62.113.216.248	attackspam	445/tcp [2019-07-30]1pkt	2019-07-31 06:18:54
213.127.122.147	attackbots	Spam Timestamp : 30-Jul-19 12:41 _ BlockList Provider combined abuse _ (845)	2019-07-31 05:55:16
5.101.222.132	attack	B: Magento admin pass test (abusive)	2019-07-31 05:41:53
138.197.188.101	attackbotsspam	Invalid user pfdracin from 138.197.188.101 port 43033	2019-07-31 06:16:54
195.223.54.18	attack	Jul 30 23:18:41 h2177944 sshd\[31232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.223.54.18 Jul 30 23:18:43 h2177944 sshd\[31232\]: Failed password for invalid user africa from 195.223.54.18 port 10687 ssh2 Jul 31 00:19:00 h2177944 sshd\[1188\]: Invalid user dim from 195.223.54.18 port 39664 Jul 31 00:19:00 h2177944 sshd\[1188\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.223.54.18 ...	2019-07-31 06:21:53
221.135.136.10	attackbotsspam	Spam Timestamp : 30-Jul-19 12:11 _ BlockList Provider combined abuse _ (830)	2019-07-31 06:10:09
185.207.57.161	attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2019-07-31 06:05:15
165.227.124.229	attackspam	Invalid user samba from 165.227.124.229 port 44564	2019-07-31 06:16:21
160.124.156.107	attackbotsspam	3306/tcp [2019-07-30]1pkt	2019-07-31 05:39:29
114.215.190.250	attack	TCP src-port=42224 dst-port=25 barracuda spam-sorbs (827)	2019-07-31 06:21:32
115.73.227.186	attack	Spam Timestamp : 30-Jul-19 12:39 _ BlockList Provider combined abuse _ (843)	2019-07-31 05:57:06
34.73.39.215	attackbots	Invalid user alex from 34.73.39.215 port 58116	2019-07-31 06:25:08

Recently Reported IPs

102.193.164.118	106.66.56.169	250.223.155.100	41.60.236.247
22.38.159.100	163.17.106.253	144.7.28.0	147.76.133.196
0.52.197.106	133.213.223.76	59.99.2.16	13.13.153.209
41.196.203.239	106.166.105.29	107.155.31.254	189.184.19.110
11.60.181.153	142.61.10.207	76.217.49.133	242.53.94.140