103.42.2.35 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Afghanistan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.42.255.245	attackspambots	Automatic report - Port Scan Attack	2020-10-13 03:50:52
103.42.255.245	attack	Automatic report - Port Scan Attack	2020-10-12 19:25:19
103.42.217.238	attackspambots	Automatic report - XMLRPC Attack	2020-06-07 03:48:14
103.42.253.234	attack	spam	2020-01-24 16:23:37
103.42.253.238	attack	spam	2020-01-22 16:30:09
103.42.216.202	attackbotsspam	Jan 10 05:54:25 exim[24310]: [1\45] 1ipmJT-0006K6-MP H=(103-42-216-202.fmgmyanmar.com) [103.42.216.202] F= rejected after DATA: This message scored 12.2 spam points.	2020-01-10 15:27:28
103.42.254.240	attackspam	Unauthorized connection attempt detected from IP address 103.42.254.240 to port 8080	2019-12-11 20:35:58
103.42.216.107	attackbotsspam	2019-11-20 15:03:22 H=(103-42-216-107.fmgmyanmar.com) [103.42.216.107]:63629 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.42.216.107) 2019-11-20 15:03:23 unexpected disconnection while reading SMTP command from (103-42-216-107.fmgmyanmar.com) [103.42.216.107]:63629 I=[10.100.18.21]:25 (error: Connection reset by peer) 2019-11-20 15:36:53 H=(103-42-216-107.fmgmyanmar.com) [103.42.216.107]:21816 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.42.216.107) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.42.216.107	2019-11-21 01:36:56
103.42.216.102	attack	Autoban 103.42.216.102 AUTH/CONNECT	2019-11-18 18:25:34
103.42.253.238	attack	Nov 18 17:02:14 our-server-hostname postfix/smtpd[22155]: connect from unknown[103.42.253.238] Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov 18 17:02:22 our-server-hostname postfix/smtpd[22155]: lost connection after RCPT from unknown[103.42.253.238] Nov 18 17:02:22 our-server-hostname postfix/smtpd[22155]: disconnect from unknown[103.42.253.238] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.42.253.238	2019-11-18 18:24:26
103.42.218.190	attackspam	Port 1433 Scan	2019-11-13 20:27:26
103.42.255.152	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-11-01 17:00:37
103.42.255.99	attack	postfix	2019-10-11 02:21:32
103.42.255.99	attack	email spam	2019-10-03 17:30:00
103.42.219.170	attackbots	Unauthorized connection attempt from IP address 103.42.219.170 on Port 445(SMB)	2019-09-30 03:11:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.42.2.35
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24243
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.42.2.35.			IN	A

;; AUTHORITY SECTION:
.			118	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 16:58:30 CST 2022
;; MSG SIZE  rcvd: 104

Host info

35.2.42.103.in-addr.arpa domain name pointer 103-42-2-35-awcc-mobility-customer.as38742.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
35.2.42.103.in-addr.arpa	name = 103-42-2-35-awcc-mobility-customer.as38742.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.214.114.7	attackbotsspam	Jun 1 12:06:34 OPSO sshd\[9355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.214.114.7 user=root Jun 1 12:06:36 OPSO sshd\[9355\]: Failed password for root from 91.214.114.7 port 59534 ssh2 Jun 1 12:10:32 OPSO sshd\[10230\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.214.114.7 user=root Jun 1 12:10:34 OPSO sshd\[10230\]: Failed password for root from 91.214.114.7 port 35964 ssh2 Jun 1 12:14:21 OPSO sshd\[11046\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.214.114.7 user=root	2020-06-01 18:32:32
101.206.211.222	attackbots	Jun 1 07:56:38 piServer sshd[3255]: Failed password for root from 101.206.211.222 port 54528 ssh2 Jun 1 07:59:29 piServer sshd[3486]: Failed password for root from 101.206.211.222 port 39822 ssh2 ...	2020-06-01 18:20:06
5.236.131.208	attack	Unauthorized connection attempt from IP address 5.236.131.208 on Port 445(SMB)	2020-06-01 18:35:52
173.201.196.172	attackspam	LGS,WP GET /shop/wp-includes/wlwmanifest.xml	2020-06-01 18:16:55
5.104.235.150	attack	Unauthorized connection attempt from IP address 5.104.235.150 on Port 445(SMB)	2020-06-01 18:34:08
191.241.242.71	attackbotsspam	Unauthorized connection attempt from IP address 191.241.242.71 on Port 445(SMB)	2020-06-01 18:04:46
173.201.196.148	attackspam	LGS,WP GET /news/wp-includes/wlwmanifest.xml	2020-06-01 18:29:53
211.193.58.173	attackbots	odoo8 ...	2020-06-01 18:33:52
41.139.159.25	attackspambots	2020-06-0108:07:471jfdbu-0000pn-Kq\<=info@whatsup2013.chH=\(localhost\)[123.20.184.137]:57914P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2226id=9F9A2C7F74A08FCC10155CE4206DEA96@whatsup2013.chT="Justdemandasmallamountofyourowninterest"forstevep30@hotmail.com2020-06-0108:07:051jfdbD-0000m7-Up\<=info@whatsup2013.chH=\(localhost\)[123.20.179.254]:52178P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3029id=20c87e2d260d272fb3b600ac4b3f150935e9f2@whatsup2013.chT="tochris.gaillard.chris"forchris.gaillard.chris@gmail.commfpika13@gmail.comacostaeduard133@gmail.com2020-06-0108:07:101jfdbG-0000mh-Se\<=info@whatsup2013.chH=41-139-159-25.safaricombusiness.co.ke\(localhost\)[41.139.159.25]:47903P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2243id=FFFA4C1F14C0EFAC70753C8440944CD1@whatsup2013.chT="Justrequireabitofyourpersonalinterest"formakss1122ma@gmail.com2020-06-0108:10:011jfde4-0001	2020-06-01 18:22:09
119.192.243.56	attack	port 23	2020-06-01 18:31:10
58.19.0.3	attack	CPHulk brute force detection (a)	2020-06-01 18:08:12
42.113.219.231	attackspam	Unauthorized connection attempt from IP address 42.113.219.231 on Port 445(SMB)	2020-06-01 18:31:43
122.117.190.9	attack	TCP (SYN) 122.117.190.9:38443 -> port 23, len 44	2020-06-01 18:17:24
188.165.236.122	attackbots	Jun 1 03:53:47 server1 sshd\[16751\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.236.122 user=root Jun 1 03:53:49 server1 sshd\[16751\]: Failed password for root from 188.165.236.122 port 33811 ssh2 Jun 1 03:57:14 server1 sshd\[17984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.236.122 user=root Jun 1 03:57:17 server1 sshd\[17984\]: Failed password for root from 188.165.236.122 port 40274 ssh2 Jun 1 04:00:37 server1 sshd\[19210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.236.122 user=root ...	2020-06-01 18:21:22
45.114.133.165	attack	Unauthorized connection attempt from IP address 45.114.133.165 on Port 445(SMB)	2020-06-01 18:06:41

Recently Reported IPs

79.44.54.170	52.79.55.212	190.12.106.242	91.203.25.28
113.94.80.71	37.22.239.76	179.107.11.202	2.136.61.100
39.165.101.235	218.244.147.59	102.69.147.184	103.24.177.79
61.54.162.254	113.174.246.30	91.234.192.167	218.216.237.29
124.120.131.176	91.99.117.154	117.182.27.38	45.248.94.118