117.92.120.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.92.120.145	attackspam	Telnetd brute force attack detected by fail2ban	2020-08-01 08:40:45
117.92.120.223	attackspambots	Unauthorized connection attempt detected from IP address 117.92.120.223 to port 5555 [T]	2020-05-06 07:39:52
117.92.120.60	attackbots	Honeypot attack, port: 5555, PTR: PTR record not found	2020-05-06 01:32:36
117.92.120.236	attack	unauthorized connection attempt	2020-01-22 20:20:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.92.120.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30432
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.92.120.74.			IN	A

;; AUTHORITY SECTION:
.			145	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 30 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 23:10:47 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 74.120.92.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.120.92.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.234.3.90	attack	Oct 14 14:24:09 meumeu sshd[26975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.3.90 Oct 14 14:24:12 meumeu sshd[26975]: Failed password for invalid user backup2 from 49.234.3.90 port 48764 ssh2 Oct 14 14:29:12 meumeu sshd[27595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.3.90 ...	2019-10-14 21:14:50
103.21.218.242	attackspambots	Oct 14 12:55:55 game-panel sshd[16425]: Failed password for root from 103.21.218.242 port 57522 ssh2 Oct 14 13:00:48 game-panel sshd[16601]: Failed password for root from 103.21.218.242 port 40898 ssh2	2019-10-14 21:27:32
116.110.117.42	attackspam	SSH Brute-Force reported by Fail2Ban	2019-10-14 21:07:39
175.6.32.128	attack	Oct 14 14:48:33 ns381471 sshd[8171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.6.32.128 Oct 14 14:48:35 ns381471 sshd[8171]: Failed password for invalid user harley from 175.6.32.128 port 44017 ssh2 Oct 14 14:54:15 ns381471 sshd[8270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.6.32.128	2019-10-14 21:19:40
119.251.193.48	attackspam	Unauthorised access (Oct 14) SRC=119.251.193.48 LEN=40 TTL=49 ID=7705 TCP DPT=8080 WINDOW=20039 SYN	2019-10-14 21:18:23
46.38.144.202	attack	Oct 14 14:54:17 relay postfix/smtpd\[8845\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 14:55:13 relay postfix/smtpd\[792\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 14:56:14 relay postfix/smtpd\[8845\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 14:57:16 relay postfix/smtpd\[9979\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 14:58:11 relay postfix/smtpd\[2528\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-14 21:02:16
109.203.110.58	attackbots	WordPress wp-login brute force :: 109.203.110.58 0.040 BYPASS [15/Oct/2019:00:01:29 1100] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-14 21:14:11
85.132.44.120	attackspambots	Web application scan	2019-10-14 21:22:17
124.204.45.66	attackbots	2019-10-14T12:59:18.047212abusebot-5.cloudsearch.cf sshd\[22434\]: Invalid user anna from 124.204.45.66 port 58744	2019-10-14 21:13:21
190.79.238.85	attackbots	Oct 14 13:52:50 v22018076622670303 sshd\[12905\]: Invalid user admin from 190.79.238.85 port 39326 Oct 14 13:52:50 v22018076622670303 sshd\[12905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.79.238.85 Oct 14 13:52:52 v22018076622670303 sshd\[12905\]: Failed password for invalid user admin from 190.79.238.85 port 39326 ssh2 ...	2019-10-14 21:30:31
182.191.113.94	attack	Looking for resource vulnerabilities	2019-10-14 21:23:07
72.43.141.7	attack	Oct 14 02:54:59 auw2 sshd\[8619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=rrcs-72-43-141-7.nyc.biz.rr.com user=root Oct 14 02:55:01 auw2 sshd\[8619\]: Failed password for root from 72.43.141.7 port 10988 ssh2 Oct 14 02:59:34 auw2 sshd\[8995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=rrcs-72-43-141-7.nyc.biz.rr.com user=root Oct 14 02:59:36 auw2 sshd\[8995\]: Failed password for root from 72.43.141.7 port 4136 ssh2 Oct 14 03:04:20 auw2 sshd\[9402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=rrcs-72-43-141-7.nyc.biz.rr.com user=root	2019-10-14 21:11:49
178.33.130.196	attackspambots	Oct 14 13:54:17 ns37 sshd[1030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.130.196	2019-10-14 21:09:36
178.128.193.158	attack	[MonOct1413:54:17.9267702019][:error][pid11910:tid47845725062912][client178.128.193.158:36300][client178.128.193.158]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\<\?script\\|\(\?:\<\\|\<\?/\)\(\?:\(\?:java\\|vb\)script\\|about\\|applet\\|activex\\|chrome\\|qx\?ss\\|embed\)\\|\<\?/\?i\?frame\\\\\\\\b\)"atARGS:read-more-text.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1079"][id"340147"][rev"141"][msg"Atomicorp.comWAFRules:PotentialCrossSiteScriptingAttack"][data"\	2019-10-14 21:01:52
35.201.243.170	attackbotsspam	Oct 14 01:57:19 tdfoods sshd\[3720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.243.201.35.bc.googleusercontent.com user=root Oct 14 01:57:21 tdfoods sshd\[3720\]: Failed password for root from 35.201.243.170 port 27104 ssh2 Oct 14 02:01:12 tdfoods sshd\[4024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.243.201.35.bc.googleusercontent.com user=root Oct 14 02:01:13 tdfoods sshd\[4024\]: Failed password for root from 35.201.243.170 port 57448 ssh2 Oct 14 02:05:00 tdfoods sshd\[4322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.243.201.35.bc.googleusercontent.com user=root	2019-10-14 21:30:15

Recently Reported IPs

117.92.120.18	117.92.121.102	117.92.121.114	117.92.120.81
114.234.45.40	117.92.121.210	117.92.121.193	117.92.121.202
117.92.121.125	117.92.121.215	117.92.121.23	117.92.121.130
117.92.121.243	117.92.121.236	117.92.121.212	114.234.45.49
117.92.121.245	117.92.121.251	117.92.121.26	117.92.121.238