210.6.74.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Broadband Network Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 54377788ec63e25b \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: HK \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 \| CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 01:22:03

Type

Details

Datetime

attackspambots

The IP has triggered Cloudflare WAF. CF-Ray: 54377788ec63e25b | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: HK | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 | CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 01:22:03

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 210.6.74.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64885
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;210.6.74.20.			IN	A

;; AUTHORITY SECTION:
.			183	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121100 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 01:21:58 CST 2019
;; MSG SIZE  rcvd: 115

Host info

20.74.6.210.in-addr.arpa has no PTR record

Nslookup info:

Server:		100.100.2.136
Address:	100.100.2.136#53

Non-authoritative answer:
20.74.6.210.in-addr.arpa	name = 210006074020.ctinets.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
146.168.2.84	attackspambots	$f2bV_matches	2020-03-12 18:11:50
101.109.62.148	attack	Automatic report - SSH Brute-Force Attack	2020-03-12 18:24:17
92.247.142.182	attackspambots	Absender hat Spam-Falle ausgel?st	2020-03-12 18:18:51
129.211.32.25	attackbots	Mar 12 04:08:03 vps46666688 sshd[20910]: Failed password for root from 129.211.32.25 port 49848 ssh2 Mar 12 04:13:52 vps46666688 sshd[20974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.32.25 ...	2020-03-12 18:22:46
14.168.31.168	attack	20/3/11@23:48:21: FAIL: Alarm-Network address from=14.168.31.168 ...	2020-03-12 18:17:35
200.89.174.209	attackspambots	$f2bV_matches	2020-03-12 18:45:46
42.114.1.219	attack	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-03-12 18:44:22
51.254.99.208	attackbots	Automatic report: SSH brute force attempt	2020-03-12 18:39:47
49.72.212.22	attack	Mar 12 11:10:45 vps647732 sshd[10479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.212.22 Mar 12 11:10:47 vps647732 sshd[10479]: Failed password for invalid user wangwq from 49.72.212.22 port 50319 ssh2 ...	2020-03-12 18:33:50
145.239.239.83	attack	Mar 12 11:03:11 ns382633 sshd\[8810\]: Invalid user gitlab-prometheus from 145.239.239.83 port 57342 Mar 12 11:03:11 ns382633 sshd\[8810\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.239.83 Mar 12 11:03:13 ns382633 sshd\[8810\]: Failed password for invalid user gitlab-prometheus from 145.239.239.83 port 57342 ssh2 Mar 12 11:07:20 ns382633 sshd\[9700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.239.83 user=root Mar 12 11:07:23 ns382633 sshd\[9700\]: Failed password for root from 145.239.239.83 port 45560 ssh2	2020-03-12 18:07:51
185.36.81.23	attack	2020-03-12T10:48:58.024449www postfix/smtpd[23939]: warning: unknown[185.36.81.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-03-12T10:57:25.258973www postfix/smtpd[26343]: warning: unknown[185.36.81.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-03-12T11:32:35.171683www postfix/smtpd[1133]: warning: unknown[185.36.81.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-12 18:37:59
202.163.126.134	attack	Brute-force attempt banned	2020-03-12 18:35:05
123.235.36.26	attack	Automatic report: SSH brute force attempt	2020-03-12 18:08:09
167.249.102.174	attackspam	DATE:2020-03-12 04:45:28, IP:167.249.102.174, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-03-12 18:10:04
14.136.204.41	attackbotsspam	SSH bruteforce	2020-03-12 18:35:19

Recently Reported IPs

116.252.0.106	113.128.105.243	113.128.105.75	113.128.104.248
113.99.18.183	112.230.45.224	111.206.221.68	111.181.50.205
110.177.74.216	72.5.68.65	106.120.188.70	57.125.251.5
106.59.245.154	106.39.189.110	60.169.97.169	60.169.95.153
58.212.14.169	47.97.248.214	42.120.160.50	34.83.49.114