103.75.149.207

Basic Info

City: unknown

Region: unknown

Country: Nepal

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.75.149.106	attack	Oct 2 20:55:49 ns3164893 sshd[17435]: Failed password for root from 103.75.149.106 port 58700 ssh2 Oct 2 21:03:51 ns3164893 sshd[17906]: Invalid user student9 from 103.75.149.106 port 33724 ...	2020-10-03 04:12:49
103.75.149.106	attack	Invalid user shun from 103.75.149.106 port 51334	2020-10-03 03:00:18
103.75.149.106	attackspam	Invalid user shun from 103.75.149.106 port 51334	2020-10-02 23:32:27
103.75.149.106	attack	Invalid user shun from 103.75.149.106 port 51334	2020-10-02 20:04:35
103.75.149.106	attackbots	detected by Fail2Ban	2020-10-02 16:37:28
103.75.149.106	attack	2020-10-02T06:41:29.676753mail.standpoint.com.ua sshd[525]: Invalid user sandeep from 103.75.149.106 port 35534 2020-10-02T06:41:29.679411mail.standpoint.com.ua sshd[525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.75.149.106 2020-10-02T06:41:29.676753mail.standpoint.com.ua sshd[525]: Invalid user sandeep from 103.75.149.106 port 35534 2020-10-02T06:41:31.849213mail.standpoint.com.ua sshd[525]: Failed password for invalid user sandeep from 103.75.149.106 port 35534 ssh2 2020-10-02T06:46:01.662799mail.standpoint.com.ua sshd[1132]: Invalid user ubuntu from 103.75.149.106 port 44886 ...	2020-10-02 12:56:03
103.75.149.106	attack	SSH BruteForce Attack	2020-09-26 07:13:14
103.75.149.106	attack	Invalid user hack from 103.75.149.106 port 42254	2020-09-26 00:23:13
103.75.149.106	attackspambots	Sep 25 06:43:04 scw-6657dc sshd[13892]: Failed password for root from 103.75.149.106 port 43452 ssh2 Sep 25 06:43:04 scw-6657dc sshd[13892]: Failed password for root from 103.75.149.106 port 43452 ssh2 Sep 25 06:47:32 scw-6657dc sshd[14081]: Invalid user minecraft from 103.75.149.106 port 51708 ...	2020-09-25 15:59:01
103.75.149.106	attack	Invalid user hack from 103.75.149.106 port 42254	2020-09-23 21:21:26
103.75.149.106	attackspam	2020-09-23T05:21:44.314016server.espacesoutien.com sshd[19512]: Invalid user deploy from 103.75.149.106 port 53500 2020-09-23T05:21:44.325216server.espacesoutien.com sshd[19512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.75.149.106 2020-09-23T05:21:44.314016server.espacesoutien.com sshd[19512]: Invalid user deploy from 103.75.149.106 port 53500 2020-09-23T05:21:46.650375server.espacesoutien.com sshd[19512]: Failed password for invalid user deploy from 103.75.149.106 port 53500 ssh2 ...	2020-09-23 13:41:25
103.75.149.106	attack	2020-09-22T17:04:49.938654randservbullet-proofcloud-66.localdomain sshd[11098]: Invalid user oracle from 103.75.149.106 port 49276 2020-09-22T17:04:49.943078randservbullet-proofcloud-66.localdomain sshd[11098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.75.149.106 2020-09-22T17:04:49.938654randservbullet-proofcloud-66.localdomain sshd[11098]: Invalid user oracle from 103.75.149.106 port 49276 2020-09-22T17:04:51.646977randservbullet-proofcloud-66.localdomain sshd[11098]: Failed password for invalid user oracle from 103.75.149.106 port 49276 ssh2 ...	2020-09-23 05:30:47
103.75.149.106	attackbots	...	2020-09-09 20:24:30
103.75.149.106	attack	$f2bV_matches	2020-09-09 06:33:25
103.75.149.106	attackbots	2020-08-28T11:42:38.678388morrigan.ad5gb.com sshd[3094283]: Invalid user ircd from 103.75.149.106 port 59076 2020-08-28T11:42:40.282924morrigan.ad5gb.com sshd[3094283]: Failed password for invalid user ircd from 103.75.149.106 port 59076 ssh2	2020-08-29 02:31:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.75.149.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22858
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.75.149.207.			IN	A

;; AUTHORITY SECTION:
.			116	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 26 00:11:39 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 207.149.75.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 207.149.75.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.65.152.201	attackbotsspam	Apr 27 16:11:44 hosting sshd[15956]: Invalid user ts3serv from 159.65.152.201 port 39362 ...	2020-04-28 00:20:43
186.121.204.10	attackspambots	Apr 27 18:12:13 vps sshd[465272]: Invalid user oa from 186.121.204.10 port 38286 Apr 27 18:12:13 vps sshd[465272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-186-121-204-10.acelerate.net Apr 27 18:12:15 vps sshd[465272]: Failed password for invalid user oa from 186.121.204.10 port 38286 ssh2 Apr 27 18:15:55 vps sshd[488380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-186-121-204-10.acelerate.net user=root Apr 27 18:15:57 vps sshd[488380]: Failed password for root from 186.121.204.10 port 40618 ssh2 ...	2020-04-28 00:23:29
168.90.89.35	attackbotsspam	2020-04-27T16:01:01.196400sd-86998 sshd[22805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.90.89.35.megalinkpi.net.br user=root 2020-04-27T16:01:03.435718sd-86998 sshd[22805]: Failed password for root from 168.90.89.35 port 60452 ssh2 2020-04-27T16:06:00.159500sd-86998 sshd[23357]: Invalid user kv from 168.90.89.35 port 36329 2020-04-27T16:06:00.164480sd-86998 sshd[23357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.90.89.35.megalinkpi.net.br 2020-04-27T16:06:00.159500sd-86998 sshd[23357]: Invalid user kv from 168.90.89.35 port 36329 2020-04-27T16:06:01.449885sd-86998 sshd[23357]: Failed password for invalid user kv from 168.90.89.35 port 36329 ssh2 ...	2020-04-28 00:16:41
106.54.54.254	attackbots	Apr 27 12:54:46 l03 sshd[24394]: Invalid user super from 106.54.54.254 port 33694 ...	2020-04-27 23:35:34
128.71.111.32	attackspam	1587988485 - 04/27/2020 13:54:45 Host: 128.71.111.32/128.71.111.32 Port: 445 TCP Blocked	2020-04-27 23:35:05
218.92.0.178	attackspambots	Apr 27 17:32:05 vps sshd[252021]: Failed password for root from 218.92.0.178 port 18809 ssh2 Apr 27 17:32:08 vps sshd[252021]: Failed password for root from 218.92.0.178 port 18809 ssh2 Apr 27 17:32:12 vps sshd[252021]: Failed password for root from 218.92.0.178 port 18809 ssh2 Apr 27 17:32:16 vps sshd[252021]: Failed password for root from 218.92.0.178 port 18809 ssh2 Apr 27 17:32:19 vps sshd[252021]: Failed password for root from 218.92.0.178 port 18809 ssh2 ...	2020-04-28 00:05:11
141.98.9.137	attackbots	2020-04-27T15:39:41.584272shield sshd\[25081\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.137 user=operator 2020-04-27T15:39:44.203144shield sshd\[25081\]: Failed password for operator from 141.98.9.137 port 51740 ssh2 2020-04-27T15:40:04.122142shield sshd\[25191\]: Invalid user support from 141.98.9.137 port 33428 2020-04-27T15:40:04.126773shield sshd\[25191\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.137 2020-04-27T15:40:05.902555shield sshd\[25191\]: Failed password for invalid user support from 141.98.9.137 port 33428 ssh2	2020-04-27 23:57:23
128.199.225.104	attackbotsspam	Apr 27 13:48:01 l03 sshd[1680]: Invalid user bos from 128.199.225.104 port 52610 ...	2020-04-27 23:39:00
34.74.204.67	attackspam	[Mon Apr 27 18:53:59.930879 2020] [:error] [pid 5829:tid 140575014553344] [client 34.74.204.67:56799] [client 34.74.204.67] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "XqbH1zsqLtpMvmFBdz70zQAAAhw"] ...	2020-04-28 00:16:13
140.238.190.22	attackspam	140.238.190.22 - - [27/Apr/2020:13:54:14 +0200] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0" 140.238.190.22 - - [27/Apr/2020:13:54:15 +0200] "GET /home.asp HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0" 140.238.190.22 - - [27/Apr/2020:13:54:16 +0200] "GET /login.cgi?uri= HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0" 140.238.190.22 - - [27/Apr/2020:13:54:17 +0200] "GET /vpn/index.html HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0" 140.238.190.22 - - [27/Apr/2020:13:54:18 +0200] "GET /cgi-bin/luci HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:57.0) Gecko/20100101 Firefox/57.0"	2020-04-27 23:56:43
125.91.32.157	attackbots	SSH bruteforce	2020-04-28 00:06:35
106.13.52.83	attackspam	Apr 27 15:36:33 pkdns2 sshd\[27919\]: Invalid user oper from 106.13.52.83Apr 27 15:36:34 pkdns2 sshd\[27919\]: Failed password for invalid user oper from 106.13.52.83 port 37570 ssh2Apr 27 15:40:59 pkdns2 sshd\[28118\]: Invalid user uuu from 106.13.52.83Apr 27 15:41:01 pkdns2 sshd\[28118\]: Failed password for invalid user uuu from 106.13.52.83 port 37992 ssh2Apr 27 15:45:24 pkdns2 sshd\[28332\]: Invalid user pao from 106.13.52.83Apr 27 15:45:26 pkdns2 sshd\[28332\]: Failed password for invalid user pao from 106.13.52.83 port 38412 ssh2 ...	2020-04-28 00:10:53
51.83.98.104	attack	2020-04-26 22:45:44 server sshd[10628]: Failed password for invalid user nancy from 51.83.98.104 port 58858 ssh2	2020-04-28 00:05:54
168.138.147.95	attackbots	Apr 27 15:03:44 ArkNodeAT sshd\[23003\]: Invalid user mall from 168.138.147.95 Apr 27 15:03:44 ArkNodeAT sshd\[23003\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.147.95 Apr 27 15:03:46 ArkNodeAT sshd\[23003\]: Failed password for invalid user mall from 168.138.147.95 port 47106 ssh2	2020-04-28 00:23:51
153.126.164.10	attack	2020-04-27T14:27:16.084212shield sshd\[13713\]: Invalid user site1 from 153.126.164.10 port 45658 2020-04-27T14:27:16.087912shield sshd\[13713\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ik1-318-19006.vs.sakura.ne.jp 2020-04-27T14:27:18.217853shield sshd\[13713\]: Failed password for invalid user site1 from 153.126.164.10 port 45658 ssh2 2020-04-27T14:31:43.676048shield sshd\[14285\]: Invalid user adhi from 153.126.164.10 port 58552 2020-04-27T14:31:43.681068shield sshd\[14285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ik1-318-19006.vs.sakura.ne.jp	2020-04-27 23:38:16

Recently Reported IPs

103.75.149.17	103.75.149.132	103.75.149.12	103.75.149.196
103.75.149.42	103.75.149.33	103.75.149.3	103.75.149.61
103.18.75.16	103.75.149.72	103.75.149.97	103.75.150.130
103.75.150.20	103.75.150.19	103.75.149.8	103.75.150.18
103.75.150.38	103.75.150.28	103.18.75.4	103.75.150.46