61.94.102.168 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT. Telekomunikasi Indonesia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 61.94.102.168 on Port 445(SMB)	2019-08-25 21:45:29

Comments on same subnet:

IP	Type	Details	Datetime
61.94.102.129	attackspam	Port Scan ...	2020-08-06 14:40:48
61.94.102.72	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 03-01-2020 04:50:11.	2020-01-03 15:55:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.94.102.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53980
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.94.102.168.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 25 21:45:13 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 168.102.94.61.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 168.102.94.61.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.31.24.113	attackspam	02/08/2020-04:12:35.554787 193.31.24.113 Protocol: 6 SURICATA TLS invalid record/traffic	2020-02-08 11:13:42
218.92.0.178	attackbots	Feb 8 00:16:19 ny01 sshd[18266]: Failed password for root from 218.92.0.178 port 43330 ssh2 Feb 8 00:16:32 ny01 sshd[18266]: error: maximum authentication attempts exceeded for root from 218.92.0.178 port 43330 ssh2 [preauth] Feb 8 00:16:38 ny01 sshd[18296]: Failed password for root from 218.92.0.178 port 18924 ssh2	2020-02-08 13:36:39
87.103.245.190	attackspam	Sending SPAM email	2020-02-08 13:00:17
101.227.251.235	attackbotsspam	(sshd) Failed SSH login from 101.227.251.235 (CN/China/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 7 23:34:23 ubnt-55d23 sshd[10991]: Invalid user cfz from 101.227.251.235 port 29304 Feb 7 23:34:25 ubnt-55d23 sshd[10991]: Failed password for invalid user cfz from 101.227.251.235 port 29304 ssh2	2020-02-08 11:16:17
45.55.173.225	attack	no	2020-02-08 13:35:30
42.60.204.46	attack	Automatic report - Port Scan	2020-02-08 13:25:05
223.73.116.83	attack	Feb 8 06:00:01 icecube postfix/smtpd[74418]: NOQUEUE: reject: RCPT from unknown[223.73.116.83]: 554 5.7.1 Service unavailable; Client host [223.73.116.83] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/223.73.116.83; from= to= proto=ESMTP helo=	2020-02-08 13:06:29
123.59.194.42	attackspambots	" "	2020-02-08 11:18:22
176.31.128.45	attackbotsspam	Feb 8 01:56:26 firewall sshd[31766]: Invalid user yre from 176.31.128.45 Feb 8 01:56:29 firewall sshd[31766]: Failed password for invalid user yre from 176.31.128.45 port 34508 ssh2 Feb 8 01:59:24 firewall sshd[31896]: Invalid user mzq from 176.31.128.45 ...	2020-02-08 13:32:18
61.177.172.128	attack	Feb 8 06:12:51 * sshd[13280]: Failed password for root from 61.177.172.128 port 54145 ssh2 Feb 8 06:13:06 * sshd[13280]: Failed password for root from 61.177.172.128 port 54145 ssh2 Feb 8 06:13:06 * sshd[13280]: error: maximum authentication attempts exceeded for root from 61.177.172.128 port 54145 ssh2 [preauth]	2020-02-08 13:24:44
203.186.138.82	attackspambots	Feb 7 18:57:10 sachi sshd\[23400\]: Invalid user orn from 203.186.138.82 Feb 7 18:57:10 sachi sshd\[23400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203186138082.ctinets.com Feb 7 18:57:11 sachi sshd\[23400\]: Failed password for invalid user orn from 203.186.138.82 port 37138 ssh2 Feb 7 18:59:42 sachi sshd\[23560\]: Invalid user apd from 203.186.138.82 Feb 7 18:59:42 sachi sshd\[23560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203186138082.ctinets.com	2020-02-08 13:21:55
116.193.220.194	attack	email spam	2020-02-08 13:00:43
91.121.78.113	attackbots	2020-02-08T05:15:49Z - RDP login failed multiple times. (91.121.78.113)	2020-02-08 13:26:36
104.7.66.131	attackbotsspam	Feb 8 04:52:04 game-panel sshd[21201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.7.66.131 Feb 8 04:52:06 game-panel sshd[21201]: Failed password for invalid user anf from 104.7.66.131 port 59162 ssh2 Feb 8 04:59:53 game-panel sshd[21488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.7.66.131	2020-02-08 13:16:07
123.207.74.24	attackspam	Feb 8 05:31:19 XXX sshd[34775]: Invalid user piu from 123.207.74.24 port 43998	2020-02-08 13:12:02

Recently Reported IPs

51.106.200.138	8.150.181.115	132.209.36.16	72.115.24.205
167.71.82.184	179.198.184.226	137.210.230.173	79.14.113.37
3.61.119.1	108.98.173.193	246.183.121.225	64.35.250.17
8.254.91.252	157.237.247.144	85.143.145.5	226.71.39.245
108.70.53.132	182.174.40.95	83.25.169.47	134.103.236.124