74.120.14.46 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Default Route LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Oct 3 23:37:01 baraca inetd[61588]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp) Oct 3 23:37:02 baraca inetd[61589]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp) Oct 3 23:37:04 baraca inetd[61590]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp) ...	2020-10-05 02:09:30
attackspam	Oct 3 23:37:01 baraca inetd[61588]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp) Oct 3 23:37:02 baraca inetd[61589]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp) Oct 3 23:37:04 baraca inetd[61590]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp) ...	2020-10-04 17:52:35

Type

Details

Datetime

attack

Oct  3 23:37:01 baraca inetd[61588]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp)
Oct  3 23:37:02 baraca inetd[61589]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp)
Oct  3 23:37:04 baraca inetd[61590]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp)
...

2020-10-05 02:09:30

attackspam

Oct  3 23:37:01 baraca inetd[61588]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp)
Oct  3 23:37:02 baraca inetd[61589]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp)
Oct  3 23:37:04 baraca inetd[61590]: refused connection from scanner-06.ch1.censys-scanner.com, service sshd (tcp)
...

2020-10-04 17:52:35

Comments on same subnet:

IP	Type	Details	Datetime
74.120.14.29	attackbots	TCP (SYN) 74.120.14.29:49585 -> port 995, len 44	2020-10-14 06:47:10
74.120.14.18	attack	TCP (SYN) 74.120.14.18:63537 -> port 8080, len 44	2020-10-14 05:41:37
74.120.14.16	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 66 - port: 8089 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:22:14
74.120.14.71	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 67 - port: 7070 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:06:23
74.120.14.27	attackspambots	Port scan: Attack repeated for 24 hours	2020-10-14 03:44:00
74.120.14.74	attack	TCP (SYN) 74.120.14.74:36705 -> port 5495, len 44	2020-10-13 22:38:32
74.120.14.16	attack	TCP (SYN) 74.120.14.16:37330 -> port 25, len 44	2020-10-13 20:41:28
74.120.14.67	attackbots	9833/tcp 9718/tcp 18029/tcp... [2020-09-14/10-13]192pkt,176pt.(tcp)	2020-10-13 20:41:03
74.120.14.27	attackspam	TCP (SYN) 74.120.14.27:33289 -> port 2222, len 44	2020-10-13 19:03:33
74.120.14.74	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 65	2020-10-13 13:59:10
74.120.14.16	attack	spam	2020-10-13 12:13:05
74.120.14.67	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 65 - port: 8382 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 12:12:48
74.120.14.75	attackspam	TCP (SYN) 74.120.14.75:2675 -> port 3010, len 44	2020-10-13 12:12:15
74.120.14.74	attackbots	TCP (SYN) 74.120.14.74:24302 -> port 9845, len 44	2020-10-13 06:43:19
74.120.14.16	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 64 - port: 1194 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 05:02:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 74.120.14.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24144
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;74.120.14.46.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100301 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 04 17:52:30 CST 2020
;; MSG SIZE  rcvd: 116

Host info

46.14.120.74.in-addr.arpa domain name pointer scanner-06.ch1.censys-scanner.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
46.14.120.74.in-addr.arpa	name = scanner-06.ch1.censys-scanner.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.15.91	attackbots	2020-03-02T04:07:52.125001luisaranguren sshd[2959430]: Failed password for root from 222.186.15.91 port 30486 ssh2 2020-03-02T04:07:54.774068luisaranguren sshd[2959430]: Failed password for root from 222.186.15.91 port 30486 ssh2 ...	2020-03-02 01:12:03
212.119.194.34	attackspam	Mar 1 17:51:07 vps647732 sshd[3972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.119.194.34 Mar 1 17:51:09 vps647732 sshd[3972]: Failed password for invalid user f2 from 212.119.194.34 port 50300 ssh2 ...	2020-03-02 01:14:37
85.228.107.66	attack	Honeypot attack, port: 5555, PTR: ua-85-228-107-66.bbcust.telenor.se.	2020-03-02 01:47:59
94.25.168.233	attackspam	Honeypot attack, port: 445, PTR: client.yota.ru.	2020-03-02 01:52:59
51.38.186.200	attackbots	Mar 1 18:21:59 silence02 sshd[21374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.200 Mar 1 18:22:01 silence02 sshd[21374]: Failed password for invalid user admin from 51.38.186.200 port 45794 ssh2 Mar 1 18:28:17 silence02 sshd[21702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.200	2020-03-02 01:41:48
193.58.196.146	attackspam	SSH invalid-user multiple login attempts	2020-03-02 01:41:03
179.61.194.0	attack	missing rdns	2020-03-02 01:39:39
177.85.93.216	attackspam	Mar 1 18:22:36 gw1 sshd[6752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.85.93.216 Mar 1 18:22:38 gw1 sshd[6752]: Failed password for invalid user postgres from 177.85.93.216 port 60594 ssh2 ...	2020-03-02 01:31:24
119.236.253.143	attack	Honeypot attack, port: 5555, PTR: n119236253143.netvigator.com.	2020-03-02 01:31:58
213.239.96.74	attackbots	Unauthorized connection attempt detected from IP address 213.239.96.74 to port 5555 [J]	2020-03-02 01:42:36
106.12.38.35	attack	Mar 1 18:32:20 * sshd[30110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.35 Mar 1 18:32:22 * sshd[30110]: Failed password for invalid user github from 106.12.38.35 port 32872 ssh2	2020-03-02 01:44:07
112.85.42.173	attack	Mar 1 18:10:37 srv206 sshd[6834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root Mar 1 18:10:38 srv206 sshd[6834]: Failed password for root from 112.85.42.173 port 55080 ssh2 ...	2020-03-02 01:21:46
185.143.223.170	attackbots	Mar 1 18:22:21 relay postfix/smtpd\[18458\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.170\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.170\]\> Mar 1 18:22:21 relay postfix/smtpd\[18458\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.170\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.170\]\> Mar 1 18:22:21 relay postfix/smtpd\[18458\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.170\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.170\]\> Mar 1 18:22:21 relay postfix/smtpd\[18458\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.170\]: 554 5.7.1 \: Relay access ...	2020-03-02 01:54:41
206.189.145.251	attackbots	Mar 1 18:25:09 vps647732 sshd[5952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.145.251 Mar 1 18:25:11 vps647732 sshd[5952]: Failed password for invalid user www from 206.189.145.251 port 36066 ssh2 ...	2020-03-02 01:33:21
59.0.224.88	attack	Unauthorized connection attempt detected from IP address 59.0.224.88 to port 23 [J]	2020-03-02 01:23:32

Recently Reported IPs

188.169.30.30	174.219.11.190	154.8.183.204	217.182.78.195
34.207.202.197	24.6.55.188	119.183.53.224	110.153.77.192
123.129.27.58	117.25.60.204	5.141.178.251	39.79.146.116
138.197.213.241	190.147.251.89	61.54.192.79	35.97.235.14
103.18.6.65	102.10.247.103	98.209.166.170	36.2.65.109