103.94.5.18 - IPInfo

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): CV. Tunas Dua Serangkai

主机名(hostname): unknown

机构(organization): PT INDONESIA COMNETS PLUS

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 06:56:42

相同子网IP讨论:

IP	类型	评论内容	时间
103.94.5.250	attack	Unauthorized connection attempt from IP address 103.94.5.250 on Port 445(SMB)	2020-01-14 05:12:19
103.94.5.42	attackspam	Automatic report - Banned IP Access	2020-01-03 19:48:49
103.94.5.42	attack	Dec 24 10:54:41 vibhu-HP-Z238-Microtower-Workstation sshd\[6355\]: Invalid user schatz from 103.94.5.42 Dec 24 10:54:41 vibhu-HP-Z238-Microtower-Workstation sshd\[6355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 Dec 24 10:54:43 vibhu-HP-Z238-Microtower-Workstation sshd\[6355\]: Failed password for invalid user schatz from 103.94.5.42 port 48688 ssh2 Dec 24 10:57:59 vibhu-HP-Z238-Microtower-Workstation sshd\[6519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 user=root Dec 24 10:58:02 vibhu-HP-Z238-Microtower-Workstation sshd\[6519\]: Failed password for root from 103.94.5.42 port 47844 ssh2 ...	2019-12-24 13:33:51
103.94.5.42	attack	Dec 17 18:05:04 loxhost sshd\[12817\]: Invalid user truche from 103.94.5.42 port 37134 Dec 17 18:05:04 loxhost sshd\[12817\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 Dec 17 18:05:06 loxhost sshd\[12817\]: Failed password for invalid user truche from 103.94.5.42 port 37134 ssh2 Dec 17 18:11:19 loxhost sshd\[13070\]: Invalid user shynique from 103.94.5.42 port 45938 Dec 17 18:11:19 loxhost sshd\[13070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 ...	2019-12-18 01:30:35
103.94.5.42	attack	Dec 14 17:22:43 eventyay sshd[7307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 Dec 14 17:22:45 eventyay sshd[7307]: Failed password for invalid user lisa from 103.94.5.42 port 32808 ssh2 Dec 14 17:29:36 eventyay sshd[7571]: Failed password for backup from 103.94.5.42 port 43002 ssh2 ...	2019-12-15 00:38:39
103.94.56.152	attack	Automatic report - Port Scan Attack	2019-12-12 22:13:55
103.94.5.42	attackspambots	Dec 7 00:49:26 ny01 sshd[26791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 Dec 7 00:49:28 ny01 sshd[26791]: Failed password for invalid user mosse from 103.94.5.42 port 51398 ssh2 Dec 7 00:56:16 ny01 sshd[27950]: Failed password for root from 103.94.5.42 port 60226 ssh2	2019-12-07 14:08:13
103.94.5.42	attackbotsspam	$f2bV_matches	2019-12-07 07:27:00
103.94.5.42	attackspambots	Dec 6 17:24:33 OPSO sshd\[30818\]: Invalid user blough from 103.94.5.42 port 34434 Dec 6 17:24:33 OPSO sshd\[30818\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 Dec 6 17:24:36 OPSO sshd\[30818\]: Failed password for invalid user blough from 103.94.5.42 port 34434 ssh2 Dec 6 17:31:22 OPSO sshd\[32153\]: Invalid user mpiuser from 103.94.5.42 port 44378 Dec 6 17:31:22 OPSO sshd\[32153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42	2019-12-07 00:31:52
103.94.5.42	attackspam	$f2bV_matches	2019-12-02 17:17:18
103.94.5.42	attackspambots	Nov 30 09:37:09 vps647732 sshd[27655]: Failed password for root from 103.94.5.42 port 44832 ssh2 ...	2019-11-30 16:52:51
103.94.5.42	attackbots	Nov 30 11:25:20 areeb-Workstation sshd[16322]: Failed password for root from 103.94.5.42 port 55286 ssh2 ...	2019-11-30 14:12:09
103.94.5.42	attackspambots	SSH invalid-user multiple login try	2019-11-26 21:29:41
103.94.5.42	attack	2019-11-11T23:16:17.406222abusebot-6.cloudsearch.cf sshd\[19832\]: Invalid user guest from 103.94.5.42 port 51732	2019-11-12 07:46:15
103.94.5.42	attackspam	$f2bV_matches	2019-11-09 01:19:56

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.94.5.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63441
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.94.5.18.			IN	A

;; AUTHORITY SECTION:
.			2206	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040402 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 05 07:43:35 +08 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 18.5.94.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 18.5.94.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
193.112.23.81	attack	Automated report - ssh fail2ban: Aug 30 08:45:37 authentication failure Aug 30 08:45:39 wrong password, user=testuser, port=54901, ssh2 Aug 30 08:48:02 authentication failure	2019-08-30 19:52:40
185.216.119.54	attack	Unauthorized connection attempt from IP address 185.216.119.54 on Port 25(SMTP)	2019-08-30 20:32:28
198.245.50.81	attackbots	Aug 30 10:16:38 vps647732 sshd[3747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.50.81 Aug 30 10:16:40 vps647732 sshd[3747]: Failed password for invalid user arun from 198.245.50.81 port 41768 ssh2 ...	2019-08-30 20:09:50
157.230.186.166	attackbotsspam	Aug 29 21:33:35 lcprod sshd\[30429\]: Invalid user af from 157.230.186.166 Aug 29 21:33:35 lcprod sshd\[30429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.186.166 Aug 29 21:33:37 lcprod sshd\[30429\]: Failed password for invalid user af from 157.230.186.166 port 41702 ssh2 Aug 29 21:37:43 lcprod sshd\[30804\]: Invalid user listen from 157.230.186.166 Aug 29 21:37:43 lcprod sshd\[30804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.186.166	2019-08-30 19:45:14
137.59.78.34	attack	Unauthorized connection attempt from IP address 137.59.78.34 on Port 445(SMB)	2019-08-30 19:57:10
103.87.26.93	attackspam	Unauthorized connection attempt from IP address 103.87.26.93 on Port 445(SMB)	2019-08-30 20:26:13
151.243.41.128	attack	Telnet Server BruteForce Attack	2019-08-30 20:30:58
148.244.151.50	attack	Unauthorized connection attempt from IP address 148.244.151.50 on Port 445(SMB)	2019-08-30 20:06:45
45.80.64.216	attackbots	Invalid user awsjava from 45.80.64.216 port 37854	2019-08-30 20:21:29
189.148.190.26	attackspambots	Unauthorized connection attempt from IP address 189.148.190.26 on Port 445(SMB)	2019-08-30 20:34:05
167.71.158.65	attackspam	Aug 30 05:43:07 work-partkepr sshd\[20398\]: Invalid user lyc from 167.71.158.65 port 48714 Aug 30 05:43:08 work-partkepr sshd\[20398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.158.65 ...	2019-08-30 20:04:19
92.220.29.21	attackbots	20 attempts against mh-misbehave-ban on pluto.magehost.pro	2019-08-30 20:24:11
91.245.35.215	attackspam	Unauthorized connection attempt from IP address 91.245.35.215 on Port 445(SMB)	2019-08-30 20:21:00
114.37.20.53	attackspambots	Unauthorized connection attempt from IP address 114.37.20.53 on Port 445(SMB)	2019-08-30 19:59:04
176.214.81.217	attack	Invalid user tester from 176.214.81.217 port 40975	2019-08-30 20:04:00

最近上报的IP列表

185.49.99.216	195.70.44.11	186.93.121.173	197.45.155.10
219.68.62.85	213.82.190.238	72.89.17.122	170.233.47.242
103.16.62.66	196.52.43.99	109.116.220.186	152.170.108.110
52.250.104.214	36.72.219.214	62.12.115.116	59.48.153.231
193.32.161.12	185.237.99.248	139.199.14.186	194.63.140.52