121.210.74.103

Basic Info

City: unknown

Region: unknown

Country: Australia

Internet Service Provider: Telstra Internet

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	trying to access non-authorized port	2020-02-07 17:29:56

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.210.74.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27572
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.210.74.103.			IN	A

;; AUTHORITY SECTION:
.			153	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020700 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 17:29:51 CST 2020
;; MSG SIZE  rcvd: 118

Host info

103.74.210.121.in-addr.arpa domain name pointer cpe-121-210-74-103.hhui-cr-008.cht.nsw.bigpond.net.au.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
103.74.210.121.in-addr.arpa	name = cpe-121-210-74-103.hhui-cr-008.cht.nsw.bigpond.net.au.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.47.242.117	attack	Jul 14 08:12:52 askasleikir sshd[1337]: Failed password for invalid user ora from 103.47.242.117 port 56302 ssh2	2020-07-14 22:26:39
103.221.252.34	attack	Port Scan ...	2020-07-14 22:07:09
119.28.70.244	attackspam	Unauthorized connection attempt from IP address 119.28.70.244 on Port 445(SMB)	2020-07-14 22:14:49
185.220.100.254	attackspambots	Time: Tue Jul 14 10:33:15 2020 -0300 IP: 185.220.100.254 (DE/Germany/tor-exit-3.zbau.f3netze.de) Failures: 5 (mod_security) Interval: 3600 seconds Blocked: Permanent Block	2020-07-14 22:04:53
118.70.118.214	attackbotsspam	Unauthorized connection attempt from IP address 118.70.118.214 on Port 445(SMB)	2020-07-14 22:17:38
106.12.212.100	attackbots	SSH Brute-Force Attack	2020-07-14 22:15:19
124.123.169.169	attack	Unauthorized connection attempt from IP address 124.123.169.169 on Port 445(SMB)	2020-07-14 22:11:01
176.31.255.223	attack	Jul 14 07:46:18 askasleikir sshd[1146]: Failed password for invalid user lab from 176.31.255.223 port 43078 ssh2	2020-07-14 22:22:31
167.250.127.235	attack	2020-07-14T16:48:01.162484mail.standpoint.com.ua sshd[9701]: Invalid user bw from 167.250.127.235 port 15205 2020-07-14T16:48:01.165846mail.standpoint.com.ua sshd[9701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.250.127.235 2020-07-14T16:48:01.162484mail.standpoint.com.ua sshd[9701]: Invalid user bw from 167.250.127.235 port 15205 2020-07-14T16:48:03.110100mail.standpoint.com.ua sshd[9701]: Failed password for invalid user bw from 167.250.127.235 port 15205 ssh2 2020-07-14T16:51:44.259042mail.standpoint.com.ua sshd[10214]: Invalid user oim from 167.250.127.235 port 24418 ...	2020-07-14 22:01:03
13.67.45.29	attackbots	IP blocked	2020-07-14 22:13:01
170.106.38.190	attackspam	2020-07-14T16:06:44+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-07-14 22:28:17
118.24.126.48	attack	2020-07-14T13:13:13.380757abusebot-5.cloudsearch.cf sshd[19378]: Invalid user class from 118.24.126.48 port 37906 2020-07-14T13:13:13.387344abusebot-5.cloudsearch.cf sshd[19378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.126.48 2020-07-14T13:13:13.380757abusebot-5.cloudsearch.cf sshd[19378]: Invalid user class from 118.24.126.48 port 37906 2020-07-14T13:13:15.683534abusebot-5.cloudsearch.cf sshd[19378]: Failed password for invalid user class from 118.24.126.48 port 37906 ssh2 2020-07-14T13:15:22.240787abusebot-5.cloudsearch.cf sshd[19387]: Invalid user ut99 from 118.24.126.48 port 55618 2020-07-14T13:15:22.244675abusebot-5.cloudsearch.cf sshd[19387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.126.48 2020-07-14T13:15:22.240787abusebot-5.cloudsearch.cf sshd[19387]: Invalid user ut99 from 118.24.126.48 port 55618 2020-07-14T13:15:24.249851abusebot-5.cloudsearch.cf sshd[19387]: Failed p ...	2020-07-14 21:54:12
40.83.94.188	attackbotsspam	Jul 14 04:21:56 host sshd[19136]: Invalid user host from 40.83.94.188 Jul 14 04:21:56 host sshd[19137]: Invalid user host from 40.83.94.188 Jul 14 04:21:56 host sshd[19136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.83.94.188 Jul 14 04:21:56 host sshd[19137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.83.94.188 Jul 14 04:21:56 host sshd[19140]: Invalid user mahost from 40.83.94.188 Jul 14 04:21:56 host sshd[19140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.83.94.188 Jul 14 04:21:56 host sshd[19139]: Invalid user host from 40.83.94.188 Jul 14 04:21:56 host sshd[19138]: Invalid user host from 40.83.94.188 Jul 14 04:21:56 host sshd[19141]: Invalid user host from 40.83.94.188 Jul 14 04:21:56 host sshd[19139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.83.94.188 Jul 14 04:21:56 ho........ -------------------------------	2020-07-14 22:12:39
156.96.128.214	attackbots	SIPVicious Scanner Detection	2020-07-14 21:57:14
69.171.251.112	attackspam	[Tue Jul 14 20:14:58.932752 2020] [:error] [pid 32195:tid 140254290355968] [client 69.171.251.112:54262] [client 69.171.251.112] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulan_Provinsi_Jawa_Timur/2020/07_Juli_2020/01_Prakiraan_Bulanan_Daerah_Potensi_Banjir_di_Provinsi_Jawa_Timur_AGUSTUS_Tahun_2020_update_10_Juli_2020.jpg"] [uniqu ...	2020-07-14 22:27:42

Recently Reported IPs

220.131.82.56	189.208.188.183	178.69.222.8	216.221.202.190
163.187.112.71	182.76.196.153	180.117.0.221	83.110.78.176
79.182.11.196	156.206.136.222	117.93.168.140	101.50.108.14
184.90.73.120	156.200.162.23	114.41.10.227	111.72.205.200
90.130.107.130	83.219.136.197	70.126.128.112	58.69.183.164