JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 203.115.106.74

203.115.106.74 was found in our database!

This IP was reported 113 times. Confidence of Abuse is 49%: ?

49%

ISP	PRIMENET GLOBAL LTD.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS17426
Domain Name	primenet.in
Country	🇮🇳 India
City	Delhi, Delhi

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 203.115.106.74

Whois 203.115.106.74

IP Abuse Reports for 203.115.106.74:

This IP address has been reported a total of 113 times from 52 distinct sources. 203.115.106.74 was first reported on November 24th 2022, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-23 04:55:15 (22 hours ago)	Honeypot hit: SMB traffic on port 445 Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB	Hacking
🇺🇸 cwytech	2026-06-22 05:08:37 (1 day ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/global-exclusion-high.	Hacking
🇫🇷 sthoyer.de	2026-06-05 06:10:06 (2 weeks ago)	Jun 5 08:10:05 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 5 08:10:05 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=203.115.106.74 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x20 TTL=116 ID=30243 DF PROTO=TCP SPT=64586 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 drewf.ink	2026-06-04 08:04:59 (2 weeks ago)	[08:04] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, ... show more [08:04] Triggered SMB honeypot on port 445. Type: NetBIOS + SMB1. Dialect(s): LANMAN1.0, LM1.2X002, NT LANMAN 1.0, NT LM 0.12 show less	Hacking Exploited Host
🇫🇷 geeek	2026-06-02 06:37:44 (3 weeks ago)	Port scanning: 445 TCP Blocked	Port Scan
🇵🇱 nfsec.pl	2026-06-01 13:16:20 (3 weeks ago)	Detected: TCP scan on port: 445 with flags: SYN	Port Scan
🇩🇪 IP Analyzer	2026-05-30 09:00:28 (3 weeks ago)	Unauthorized connection attempt from IP address 203.115.106.74 on Port 445(SMB)	Port Scan
🇩🇪 guldkage	2026-05-28 06:59:56 (3 weeks ago)	Unauthorized connection attempt detected from IP address 203.115.106.74 to port 445 (ger-02) [SMB]	Exploited Host
🇬🇧 PeravixGroup	2026-05-26 15:01:54 (4 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-26 08:37:29 (4 weeks ago)	tcp/445 (2 or more attempts)	Port Scan
🇦🇹 begou.dev	2026-05-25 07:54:04 (4 weeks ago)	[Threat Intelligence] Port Scanning and/or Unauthorized access -> TCP/445	Port Scan
🇫🇷 sthoyer.de	2026-05-23 11:40:14 (1 month ago)	May 23 13:40:13 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 23 13:40:13 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=203.115.106.74 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x20 TTL=116 ID=9161 DF PROTO=TCP SPT=51880 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 Little Iguana	2026-05-23 11:39:07 (1 month ago)	trying to access non-authorized port	Port Scan
🇫🇷 sthoyer.de	2026-05-23 10:56:51 (1 month ago)	May 23 12:56:50 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more May 23 12:56:50 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=203.115.106.74 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x20 TTL=116 ID=25012 DF PROTO=TCP SPT=56977 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇹🇼 kk_it_man	2026-04-17 06:20:04 (2 months ago)	honey catch	Port Scan

Showing 1 to 15 of 113 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.97

🇳🇱 195.178.110.30

🇸🇬 103.250.11.63

🇫🇷 91.231.89.234

🇩🇪 64.226.126.224

🇰🇷 43.155.214.159

🇩🇪 31.76.244.103

🇨🇳 14.103.115.124

🇳🇱 212.192.216.2

🇨🇳 116.62.242.59

🇱🇾 102.209.35.195

🇵🇱 91.228.33.69

🇬🇧 83.136.251.36

🇮🇪 82.21.218.123

🇺🇸 64.62.197.84

🇺🇸 54.84.104.14

🇸🇮 31.57.216.6

🇺🇸 193.56.116.224

🇺🇸 147.185.132.135

🇧🇬 79.124.40.126