103.42.216.28 - IPInfo

Basic Info

City: Yangon

Region: Rangoon

Country: Myanmar

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.42.216.202	attackbotsspam	Jan 10 05:54:25 exim[24310]: [1\45] 1ipmJT-0006K6-MP H=(103-42-216-202.fmgmyanmar.com) [103.42.216.202] F= rejected after DATA: This message scored 12.2 spam points.	2020-01-10 15:27:28
103.42.216.107	attackbotsspam	2019-11-20 15:03:22 H=(103-42-216-107.fmgmyanmar.com) [103.42.216.107]:63629 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.42.216.107) 2019-11-20 15:03:23 unexpected disconnection while reading SMTP command from (103-42-216-107.fmgmyanmar.com) [103.42.216.107]:63629 I=[10.100.18.21]:25 (error: Connection reset by peer) 2019-11-20 15:36:53 H=(103-42-216-107.fmgmyanmar.com) [103.42.216.107]:21816 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.42.216.107) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.42.216.107	2019-11-21 01:36:56
103.42.216.102	attack	Autoban 103.42.216.102 AUTH/CONNECT	2019-11-18 18:25:34

Type

Details

Datetime

103.42.216.202

attackbotsspam

Jan 10 05:54:25  exim[24310]: [1\45] 1ipmJT-0006K6-MP H=(103-42-216-202.fmgmyanmar.com) [103.42.216.202] F= rejected after DATA: This message scored 12.2 spam points.

2020-01-10 15:27:28

103.42.216.107

attackbotsspam

2019-11-20 15:03:22 H=(103-42-216-107.fmgmyanmar.com) [103.42.216.107]:63629 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.42.216.107)
2019-11-20 15:03:23 unexpected disconnection while reading SMTP command from (103-42-216-107.fmgmyanmar.com) [103.42.216.107]:63629 I=[10.100.18.21]:25 (error: Connection reset by peer)
2019-11-20 15:36:53 H=(103-42-216-107.fmgmyanmar.com) [103.42.216.107]:21816 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=103.42.216.107)


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=103.42.216.107

2019-11-21 01:36:56

103.42.216.102

attack

Autoban   103.42.216.102 AUTH/CONNECT

2019-11-18 18:25:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.42.216.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21513
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.42.216.28.			IN	A

;; AUTHORITY SECTION:
.			593	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040402 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 05 18:36:12 CST 2022
;; MSG SIZE  rcvd: 106

Host info

28.216.42.103.in-addr.arpa domain name pointer 103-42-216-28.fmgmyanmar.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
28.216.42.103.in-addr.arpa	name = 103-42-216-28.fmgmyanmar.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.175.121.80	attack	Tried sshing with brute force.	2020-04-15 19:07:56
220.134.32.74	attackspambots	trying to access non-authorized port	2020-04-15 19:11:13
178.128.218.56	attackspam	Apr 15 08:54:28 game-panel sshd[4794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.218.56 Apr 15 08:54:30 game-panel sshd[4794]: Failed password for invalid user firefart from 178.128.218.56 port 45722 ssh2 Apr 15 08:59:39 game-panel sshd[4945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.218.56	2020-04-15 19:12:48
51.77.140.111	attackbots	Apr 15 08:28:21 vmd48417 sshd[5343]: Failed password for root from 51.77.140.111 port 40512 ssh2	2020-04-15 19:34:53
183.89.214.8	attack	IMAP/SMTP Authentication Failure	2020-04-15 19:42:07
31.163.128.246	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-15 19:50:29
78.252.28.25	attackspam	Apr 15 06:45:15 master sshd[29397]: Failed password for root from 78.252.28.25 port 51512 ssh2 Apr 15 07:00:12 master sshd[29730]: Failed password for root from 78.252.28.25 port 39234 ssh2 Apr 15 07:10:17 master sshd[29944]: Failed password for invalid user gts from 78.252.28.25 port 48740 ssh2 Apr 15 07:20:14 master sshd[30041]: Failed password for root from 78.252.28.25 port 58364 ssh2 Apr 15 07:29:27 master sshd[30061]: Failed password for root from 78.252.28.25 port 39540 ssh2 Apr 15 07:38:40 master sshd[30496]: Failed password for invalid user craft from 78.252.28.25 port 48978 ssh2 Apr 15 07:48:17 master sshd[30623]: Failed password for root from 78.252.28.25 port 58456 ssh2 Apr 15 07:57:34 master sshd[30682]: Failed password for root from 78.252.28.25 port 39640 ssh2 Apr 15 08:06:52 master sshd[31115]: Failed password for invalid user R00T from 78.252.28.25 port 49076 ssh2 Apr 15 08:16:40 master sshd[31250]: Failed password for invalid user bmuuser from 78.252.28.25 port 58590 ssh2	2020-04-15 19:27:42
98.126.155.146	attackbotsspam	US_Krypt_<177>1586922737 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2]: {TCP} 98.126.155.146:64655	2020-04-15 19:16:11
66.68.187.145	attackspambots	2020-04-14 UTC: (43x) - bathory,bruno,db2,fake,girl,isaac,nobody,player,rawlinson,rdavidson,root(29x),server,tester,unidata,xavier	2020-04-15 19:37:00
212.64.29.79	attack	SSH brutforce	2020-04-15 19:15:23
83.61.10.169	attackbotsspam	SSH Brute-Forcing (server1)	2020-04-15 19:13:39
47.17.177.110	attackbotsspam	Apr 15 18:31:22 webhost01 sshd[7861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.17.177.110 Apr 15 18:31:24 webhost01 sshd[7861]: Failed password for invalid user user from 47.17.177.110 port 51506 ssh2 ...	2020-04-15 19:40:36
81.241.179.193	attack	Apr 15 10:45:00 ns381471 sshd[24436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.241.179.193 Apr 15 10:45:01 ns381471 sshd[24436]: Failed password for invalid user radio from 81.241.179.193 port 37866 ssh2	2020-04-15 19:36:24
175.19.187.234	attack	Apr 15 09:46:18 prod4 vsftpd\[28348\]: \[anonymous\] FAIL LOGIN: Client "175.19.187.234" Apr 15 09:46:26 prod4 vsftpd\[28375\]: \[www\] FAIL LOGIN: Client "175.19.187.234" Apr 15 09:46:29 prod4 vsftpd\[28393\]: \[www\] FAIL LOGIN: Client "175.19.187.234" Apr 15 09:46:34 prod4 vsftpd\[28409\]: \[www\] FAIL LOGIN: Client "175.19.187.234" Apr 15 09:46:37 prod4 vsftpd\[28457\]: \[www\] FAIL LOGIN: Client "175.19.187.234" ...	2020-04-15 19:38:15
113.21.116.137	attackbotsspam	IMAP/SMTP Authentication Failure	2020-04-15 19:16:51

Recently Reported IPs

103.42.216.26	103.42.217.167	103.42.217.175	103.42.217.183
103.42.217.185	103.60.17.251	103.60.99.11	103.61.139.31
103.63.134.234	103.65.193.215	103.68.194.126	103.69.234.235
103.7.40.149	103.7.40.39	103.7.41.121	103.7.41.125
103.7.41.152	103.7.41.84	103.7.8.154	103.7.8.66