103.94.5.18 - IPInfo

基本信息:

城市(city): Jakarta

省份(region): Jakarta

国家(country): Indonesia

运营商(isp): CV. Tunas Dua Serangkai

主机名(hostname): unknown

机构(organization): PT INDONESIA COMNETS PLUS

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 06:56:42

相同子网IP讨论:

IP	类型	评论内容	时间
103.94.5.250	attack	Unauthorized connection attempt from IP address 103.94.5.250 on Port 445(SMB)	2020-01-14 05:12:19
103.94.5.42	attackspam	Automatic report - Banned IP Access	2020-01-03 19:48:49
103.94.5.42	attack	Dec 24 10:54:41 vibhu-HP-Z238-Microtower-Workstation sshd\[6355\]: Invalid user schatz from 103.94.5.42 Dec 24 10:54:41 vibhu-HP-Z238-Microtower-Workstation sshd\[6355\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 Dec 24 10:54:43 vibhu-HP-Z238-Microtower-Workstation sshd\[6355\]: Failed password for invalid user schatz from 103.94.5.42 port 48688 ssh2 Dec 24 10:57:59 vibhu-HP-Z238-Microtower-Workstation sshd\[6519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 user=root Dec 24 10:58:02 vibhu-HP-Z238-Microtower-Workstation sshd\[6519\]: Failed password for root from 103.94.5.42 port 47844 ssh2 ...	2019-12-24 13:33:51
103.94.5.42	attack	Dec 17 18:05:04 loxhost sshd\[12817\]: Invalid user truche from 103.94.5.42 port 37134 Dec 17 18:05:04 loxhost sshd\[12817\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 Dec 17 18:05:06 loxhost sshd\[12817\]: Failed password for invalid user truche from 103.94.5.42 port 37134 ssh2 Dec 17 18:11:19 loxhost sshd\[13070\]: Invalid user shynique from 103.94.5.42 port 45938 Dec 17 18:11:19 loxhost sshd\[13070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 ...	2019-12-18 01:30:35
103.94.5.42	attack	Dec 14 17:22:43 eventyay sshd[7307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 Dec 14 17:22:45 eventyay sshd[7307]: Failed password for invalid user lisa from 103.94.5.42 port 32808 ssh2 Dec 14 17:29:36 eventyay sshd[7571]: Failed password for backup from 103.94.5.42 port 43002 ssh2 ...	2019-12-15 00:38:39
103.94.56.152	attack	Automatic report - Port Scan Attack	2019-12-12 22:13:55
103.94.5.42	attackspambots	Dec 7 00:49:26 ny01 sshd[26791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 Dec 7 00:49:28 ny01 sshd[26791]: Failed password for invalid user mosse from 103.94.5.42 port 51398 ssh2 Dec 7 00:56:16 ny01 sshd[27950]: Failed password for root from 103.94.5.42 port 60226 ssh2	2019-12-07 14:08:13
103.94.5.42	attackbotsspam	$f2bV_matches	2019-12-07 07:27:00
103.94.5.42	attackspambots	Dec 6 17:24:33 OPSO sshd\[30818\]: Invalid user blough from 103.94.5.42 port 34434 Dec 6 17:24:33 OPSO sshd\[30818\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42 Dec 6 17:24:36 OPSO sshd\[30818\]: Failed password for invalid user blough from 103.94.5.42 port 34434 ssh2 Dec 6 17:31:22 OPSO sshd\[32153\]: Invalid user mpiuser from 103.94.5.42 port 44378 Dec 6 17:31:22 OPSO sshd\[32153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.94.5.42	2019-12-07 00:31:52
103.94.5.42	attackspam	$f2bV_matches	2019-12-02 17:17:18
103.94.5.42	attackspambots	Nov 30 09:37:09 vps647732 sshd[27655]: Failed password for root from 103.94.5.42 port 44832 ssh2 ...	2019-11-30 16:52:51
103.94.5.42	attackbots	Nov 30 11:25:20 areeb-Workstation sshd[16322]: Failed password for root from 103.94.5.42 port 55286 ssh2 ...	2019-11-30 14:12:09
103.94.5.42	attackspambots	SSH invalid-user multiple login try	2019-11-26 21:29:41
103.94.5.42	attack	2019-11-11T23:16:17.406222abusebot-6.cloudsearch.cf sshd\[19832\]: Invalid user guest from 103.94.5.42 port 51732	2019-11-12 07:46:15
103.94.5.42	attackspam	$f2bV_matches	2019-11-09 01:19:56

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.94.5.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63441
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.94.5.18.			IN	A

;; AUTHORITY SECTION:
.			2206	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040402 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 05 07:43:35 +08 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 18.5.94.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 18.5.94.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
130.61.121.105	attack	Sep 14 21:36:18 dedicated sshd[27521]: Invalid user Fortimanager_Access from 130.61.121.105 port 14684	2019-09-15 03:58:31
212.72.47.218	attack	Spam trapped	2019-09-15 03:51:02
220.76.93.215	attack	Sep 14 18:22:15 MK-Soft-VM5 sshd\[32537\]: Invalid user shianhan from 220.76.93.215 port 33934 Sep 14 18:22:15 MK-Soft-VM5 sshd\[32537\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.93.215 Sep 14 18:22:17 MK-Soft-VM5 sshd\[32537\]: Failed password for invalid user shianhan from 220.76.93.215 port 33934 ssh2 ...	2019-09-15 03:33:12
5.59.38.128	attackbotsspam	Port 1433 Scan	2019-09-15 03:37:33
222.120.192.122	attack	Automatic report - Banned IP Access	2019-09-15 04:12:57
40.86.180.170	attackbotsspam	Sep 14 19:43:37 unicornsoft sshd\[3497\]: Invalid user lobby from 40.86.180.170 Sep 14 19:43:37 unicornsoft sshd\[3497\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.86.180.170 Sep 14 19:43:39 unicornsoft sshd\[3497\]: Failed password for invalid user lobby from 40.86.180.170 port 9472 ssh2	2019-09-15 04:11:08
189.253.8.251	attackbotsspam	Honeypot attack, port: 445, PTR: dsl-189-253-8-251-dyn.prod-infinitum.com.mx.	2019-09-15 03:51:20
69.90.16.116	attack	Sep 14 20:48:29 microserver sshd[34334]: Invalid user kibana from 69.90.16.116 port 55718 Sep 14 20:48:29 microserver sshd[34334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.90.16.116 Sep 14 20:48:30 microserver sshd[34334]: Failed password for invalid user kibana from 69.90.16.116 port 55718 ssh2 Sep 14 20:52:42 microserver sshd[35017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.90.16.116 user=ftp Sep 14 20:52:44 microserver sshd[35017]: Failed password for ftp from 69.90.16.116 port 44422 ssh2 Sep 14 21:05:22 microserver sshd[36741]: Invalid user ju from 69.90.16.116 port 37890 Sep 14 21:05:22 microserver sshd[36741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.90.16.116 Sep 14 21:05:25 microserver sshd[36741]: Failed password for invalid user ju from 69.90.16.116 port 37890 ssh2 Sep 14 21:09:49 microserver sshd[37326]: Invalid user amanda from 69.90.16.116 port 548	2019-09-15 03:45:34
41.210.9.17	attackspambots	Chat Spam	2019-09-15 03:27:33
41.44.190.179	attackspambots	Chat Spam	2019-09-15 03:55:00
95.88.108.58	attackspam	Sep 14 20:30:15 meumeu sshd[9711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.88.108.58 Sep 14 20:30:17 meumeu sshd[9711]: Failed password for invalid user admin from 95.88.108.58 port 47348 ssh2 Sep 14 20:30:22 meumeu sshd[9712]: Failed password for root from 95.88.108.58 port 47356 ssh2 ...	2019-09-15 04:07:16
91.194.211.40	attack	Sep 14 21:13:50 microserver sshd[38129]: Invalid user akers from 91.194.211.40 port 46634 Sep 14 21:13:50 microserver sshd[38129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.194.211.40 Sep 14 21:13:52 microserver sshd[38129]: Failed password for invalid user akers from 91.194.211.40 port 46634 ssh2 Sep 14 21:17:12 microserver sshd[38739]: Invalid user pedro from 91.194.211.40 port 49532 Sep 14 21:17:12 microserver sshd[38739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.194.211.40 Sep 14 21:30:08 microserver sshd[40464]: Invalid user mx from 91.194.211.40 port 32860 Sep 14 21:30:08 microserver sshd[40464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.194.211.40 Sep 14 21:30:10 microserver sshd[40464]: Failed password for invalid user mx from 91.194.211.40 port 32860 ssh2 Sep 14 21:33:25 microserver sshd[40964]: pam_unix(sshd:auth): authentication failure; logname= uid=0	2019-09-15 03:45:02
158.69.112.95	attackbots	Sep 14 20:52:56 MainVPS sshd[27861]: Invalid user taivi from 158.69.112.95 port 40822 Sep 14 20:52:56 MainVPS sshd[27861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.112.95 Sep 14 20:52:56 MainVPS sshd[27861]: Invalid user taivi from 158.69.112.95 port 40822 Sep 14 20:52:58 MainVPS sshd[27861]: Failed password for invalid user taivi from 158.69.112.95 port 40822 ssh2 Sep 14 20:56:45 MainVPS sshd[28117]: Invalid user deploy from 158.69.112.95 port 56672 ...	2019-09-15 03:26:40
124.47.14.14	attackbots	Sep 14 09:21:55 php1 sshd\[14140\]: Invalid user ftpuser2 from 124.47.14.14 Sep 14 09:21:55 php1 sshd\[14140\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.47.14.14 Sep 14 09:21:58 php1 sshd\[14140\]: Failed password for invalid user ftpuser2 from 124.47.14.14 port 54344 ssh2 Sep 14 09:25:11 php1 sshd\[14424\]: Invalid user corky from 124.47.14.14 Sep 14 09:25:11 php1 sshd\[14424\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.47.14.14	2019-09-15 03:32:52
138.197.166.233	attackbots	Sep 14 21:04:38 vps01 sshd[6902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.166.233 Sep 14 21:04:40 vps01 sshd[6902]: Failed password for invalid user hax from 138.197.166.233 port 60908 ssh2	2019-09-15 03:28:52

最近上报的IP列表

185.49.99.216	195.70.44.11	186.93.121.173	197.45.155.10
219.68.62.85	213.82.190.238	72.89.17.122	170.233.47.242
103.16.62.66	196.52.43.99	109.116.220.186	152.170.108.110
52.250.104.214	36.72.219.214	62.12.115.116	59.48.153.231
193.32.161.12	185.237.99.248	139.199.14.186	194.63.140.52