104.22.72.120 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.22.72.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63799
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.22.72.120.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022801 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 01 02:17:30 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 120.72.22.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 120.72.22.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
197.210.53.63	attackspambots	Brute forcing email accounts	2020-10-12 16:15:06
134.175.227.112	attackspam	2020-10-12T02:39:57.7539531495-001 sshd[57490]: Invalid user nagiosadmin from 134.175.227.112 port 56444 2020-10-12T02:39:59.4347471495-001 sshd[57490]: Failed password for invalid user nagiosadmin from 134.175.227.112 port 56444 ssh2 2020-10-12T02:44:15.1698921495-001 sshd[57760]: Invalid user biblioteca from 134.175.227.112 port 57372 2020-10-12T02:44:15.1728901495-001 sshd[57760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.227.112 2020-10-12T02:44:15.1698921495-001 sshd[57760]: Invalid user biblioteca from 134.175.227.112 port 57372 2020-10-12T02:44:17.2712421495-001 sshd[57760]: Failed password for invalid user biblioteca from 134.175.227.112 port 57372 ssh2 ...	2020-10-12 16:36:00
165.22.49.42	attack	Oct 12 10:04:58 abendstille sshd\[19540\]: Invalid user durai from 165.22.49.42 Oct 12 10:04:58 abendstille sshd\[19540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.49.42 Oct 12 10:05:01 abendstille sshd\[19540\]: Failed password for invalid user durai from 165.22.49.42 port 43038 ssh2 Oct 12 10:07:06 abendstille sshd\[22080\]: Invalid user administracao from 165.22.49.42 Oct 12 10:07:06 abendstille sshd\[22080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.49.42 ...	2020-10-12 16:15:24
213.184.254.128	attackspam	1602449191 - 10/11/2020 22:46:31 Host: 213.184.254.128/213.184.254.128 Port: 445 TCP Blocked	2020-10-12 16:29:59
147.135.211.127	attackspambots	147.135.211.127 - - [12/Oct/2020:08:30:10 +0100] "POST /wp-login.php HTTP/1.1" 200 4427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 147.135.211.127 - - [12/Oct/2020:08:30:11 +0100] "POST /wp-login.php HTTP/1.1" 200 4427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 147.135.211.127 - - [12/Oct/2020:08:30:12 +0100] "POST /wp-login.php HTTP/1.1" 200 4427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-12 16:03:58
39.69.76.153	attack	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-12 16:20:09
201.243.10.136	attackspambots	Lines containing failures of 201.243.10.136 Oct 11 15:23:22 kmh-vmh-003-fsn07 sshd[11647]: Invalid user Csongor from 201.243.10.136 port 39698 Oct 11 15:23:22 kmh-vmh-003-fsn07 sshd[11647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.243.10.136 Oct 11 15:23:24 kmh-vmh-003-fsn07 sshd[11647]: Failed password for invalid user Csongor from 201.243.10.136 port 39698 ssh2 Oct 11 15:23:26 kmh-vmh-003-fsn07 sshd[11647]: Received disconnect from 201.243.10.136 port 39698:11: Bye Bye [preauth] Oct 11 15:23:26 kmh-vmh-003-fsn07 sshd[11647]: Disconnected from invalid user Csongor 201.243.10.136 port 39698 [preauth] Oct 11 15:38:42 kmh-vmh-003-fsn07 sshd[14268]: Invalid user sandy from 201.243.10.136 port 38550 Oct 11 15:38:42 kmh-vmh-003-fsn07 sshd[14268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.243.10.136 Oct 11 15:38:44 kmh-vmh-003-fsn07 sshd[14268]: Failed password for invalid us........ ------------------------------	2020-10-12 15:50:06
194.243.28.84	attack	Oct 11 22:00:31 web9 sshd\[3693\]: Invalid user dexter from 194.243.28.84 Oct 11 22:00:31 web9 sshd\[3693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.243.28.84 Oct 11 22:00:33 web9 sshd\[3693\]: Failed password for invalid user dexter from 194.243.28.84 port 44768 ssh2 Oct 11 22:04:42 web9 sshd\[4248\]: Invalid user sandra from 194.243.28.84 Oct 11 22:04:42 web9 sshd\[4248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.243.28.84	2020-10-12 16:08:00
59.78.85.210	attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-12 16:19:53
139.170.150.253	attack	Fail2Ban	2020-10-12 16:18:04
167.71.188.215	attackspambots	Oct 11 21:54:12 foo sshd[27699]: Address 167.71.188.215 maps to brconsorcios.dighostnameal, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 11 21:54:12 foo sshd[27699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.188.215 user=r.r Oct 11 21:54:14 foo sshd[27699]: Failed password for r.r from 167.71.188.215 port 49546 ssh2 Oct 11 21:54:14 foo sshd[27699]: Connection closed by 167.71.188.215 [preauth] Oct 11 21:56:38 foo sshd[27778]: Address 167.71.188.215 maps to brconsorcios.dighostnameal, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 11 21:56:38 foo sshd[27778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.188.215 user=r.r Oct 11 21:56:40 foo sshd[27778]: Failed password for r.r from 167.71.188.215 port 58846 ssh2 Oct 11 21:56:40 foo sshd[27778]: Connection closed by 167.71.188.215 [preauth] Oct 11 21:58:56 foo ss........ -------------------------------	2020-10-12 15:56:38
202.70.72.217	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-12T05:50:02Z and 2020-10-12T06:05:51Z	2020-10-12 16:19:01
139.99.89.202	attackspam	Oct 12 09:47:12 dignus sshd[25365]: Failed password for invalid user wayne from 139.99.89.202 port 48464 ssh2 Oct 12 09:50:00 dignus sshd[25446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.89.202 user=root Oct 12 09:50:01 dignus sshd[25446]: Failed password for root from 139.99.89.202 port 58828 ssh2 Oct 12 09:52:43 dignus sshd[25490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.89.202 user=root Oct 12 09:52:45 dignus sshd[25490]: Failed password for root from 139.99.89.202 port 40958 ssh2 ...	2020-10-12 16:14:39
84.255.249.179	attackbots	Fail2Ban Ban Triggered (2)	2020-10-12 16:33:15
41.72.61.67	attackspam	TCP (SYN) 41.72.61.67:50481 -> port 1433, len 40	2020-10-12 16:13:59

Recently Reported IPs

104.22.72.202	104.22.72.210	104.22.72.235	104.22.73.141
104.22.73.120	104.22.72.220	104.223.43.80	104.223.43.92
104.223.43.85	104.223.43.86	104.223.45.249	104.223.62.165
104.223.43.82	104.223.45.231	104.223.43.90	104.227.1.81
104.227.1.84	104.227.1.83	104.227.100.0	104.227.1.93