74.120.14.75 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Default Route LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	TCP (SYN) 74.120.14.75:2675 -> port 3010, len 44	2020-10-13 12:12:15
attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 65 - port: 12456 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 05:01:59
attackspam	TCP (SYN) 74.120.14.75:59965 -> port 24510, len 44	2020-09-25 03:34:45
attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 63 - port: 65 proto: tcp cat: Misc Attackbytes: 60	2020-09-24 19:19:50

Comments on same subnet:

IP	Type	Details	Datetime
74.120.14.29	attackbots	TCP (SYN) 74.120.14.29:49585 -> port 995, len 44	2020-10-14 06:47:10
74.120.14.18	attack	TCP (SYN) 74.120.14.18:63537 -> port 8080, len 44	2020-10-14 05:41:37
74.120.14.16	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 66 - port: 8089 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:22:14
74.120.14.71	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 67 - port: 7070 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:06:23
74.120.14.27	attackspambots	Port scan: Attack repeated for 24 hours	2020-10-14 03:44:00
74.120.14.74	attack	TCP (SYN) 74.120.14.74:36705 -> port 5495, len 44	2020-10-13 22:38:32
74.120.14.16	attack	TCP (SYN) 74.120.14.16:37330 -> port 25, len 44	2020-10-13 20:41:28
74.120.14.67	attackbots	9833/tcp 9718/tcp 18029/tcp... [2020-09-14/10-13]192pkt,176pt.(tcp)	2020-10-13 20:41:03
74.120.14.27	attackspam	TCP (SYN) 74.120.14.27:33289 -> port 2222, len 44	2020-10-13 19:03:33
74.120.14.74	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 65	2020-10-13 13:59:10
74.120.14.16	attack	spam	2020-10-13 12:13:05
74.120.14.67	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 65 - port: 8382 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 12:12:48
74.120.14.74	attackbots	TCP (SYN) 74.120.14.74:24302 -> port 9845, len 44	2020-10-13 06:43:19
74.120.14.16	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 64 - port: 1194 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 05:02:43
74.120.14.67	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 65 - port: 104 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 05:02:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 74.120.14.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25387
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;74.120.14.75.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092400 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 24 19:19:40 CST 2020
;; MSG SIZE  rcvd: 116

Host info

75.14.120.74.in-addr.arpa domain name pointer scanner-11.ch1.censys-scanner.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
75.14.120.74.in-addr.arpa	name = scanner-11.ch1.censys-scanner.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
143.208.79.153	attack	Dec 14 07:26:29 [munged] sshd[27531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.79.153	2019-12-14 17:51:10
140.143.240.56	attackspam	$f2bV_matches	2019-12-14 17:58:52
178.128.221.237	attackbots	Dec 14 09:33:28 localhost sshd\[58487\]: Invalid user rsvp from 178.128.221.237 port 40458 Dec 14 09:33:28 localhost sshd\[58487\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.221.237 Dec 14 09:33:30 localhost sshd\[58487\]: Failed password for invalid user rsvp from 178.128.221.237 port 40458 ssh2 Dec 14 09:39:10 localhost sshd\[58708\]: Invalid user w6admin from 178.128.221.237 port 44198 Dec 14 09:39:10 localhost sshd\[58708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.221.237 ...	2019-12-14 17:42:45
167.99.202.143	attackbotsspam	Dec 14 11:11:23 cvbnet sshd[27802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.202.143 Dec 14 11:11:25 cvbnet sshd[27802]: Failed password for invalid user naomi from 167.99.202.143 port 38910 ssh2 ...	2019-12-14 18:13:14
42.113.232.193	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-14 18:15:48
178.62.95.188	attackspambots	178.62.95.188 - - [14/Dec/2019:06:26:36 +0000] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.62.95.188 - - [14/Dec/2019:06:26:37 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-14 17:43:53
144.217.214.25	attack	Dec 14 10:20:34 microserver sshd[33694]: Invalid user guest from 144.217.214.25 port 52616 Dec 14 10:20:34 microserver sshd[33694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.25 Dec 14 10:20:36 microserver sshd[33694]: Failed password for invalid user guest from 144.217.214.25 port 52616 ssh2 Dec 14 10:26:27 microserver sshd[34490]: Invalid user pupo from 144.217.214.25 port 58584 Dec 14 10:26:27 microserver sshd[34490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.25 Dec 14 10:38:12 microserver sshd[36169]: Invalid user ainsworth from 144.217.214.25 port 42354 Dec 14 10:38:12 microserver sshd[36169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.25 Dec 14 10:38:14 microserver sshd[36169]: Failed password for invalid user ainsworth from 144.217.214.25 port 42354 ssh2 Dec 14 10:44:01 microserver sshd[36973]: pam_unix(sshd:auth): authentication fai	2019-12-14 17:58:29
125.209.110.173	attack	Tried sshing with brute force.	2019-12-14 17:41:33
213.150.206.88	attack	Dec 14 15:06:52 areeb-Workstation sshd[25585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.150.206.88 Dec 14 15:06:53 areeb-Workstation sshd[25585]: Failed password for invalid user 1234550 from 213.150.206.88 port 41086 ssh2 ...	2019-12-14 17:45:25
123.16.138.187	attack	IP: 123.16.138.187 ASN: AS45899 VNPT Corp Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 14/12/2019 6:26:08 AM UTC	2019-12-14 18:14:59
211.144.114.26	attack	Dec 13 23:19:12 tdfoods sshd\[5468\]: Invalid user tveranger from 211.144.114.26 Dec 13 23:19:12 tdfoods sshd\[5468\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.144.114.26 Dec 13 23:19:14 tdfoods sshd\[5468\]: Failed password for invalid user tveranger from 211.144.114.26 port 45788 ssh2 Dec 13 23:24:48 tdfoods sshd\[5990\]: Invalid user yoyo from 211.144.114.26 Dec 13 23:24:48 tdfoods sshd\[5990\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.144.114.26	2019-12-14 17:43:36
185.234.218.210	attackbotsspam	email spam	2019-12-14 17:55:48
45.64.139.177	attackspam	postfix (unknown user, SPF fail or relay access denied)	2019-12-14 18:18:19
178.62.78.183	attackbotsspam	Dec 14 10:09:52 sd-53420 sshd\[7753\]: User root from 178.62.78.183 not allowed because none of user's groups are listed in AllowGroups Dec 14 10:09:52 sd-53420 sshd\[7753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.78.183 user=root Dec 14 10:09:54 sd-53420 sshd\[7753\]: Failed password for invalid user root from 178.62.78.183 port 54214 ssh2 Dec 14 10:18:21 sd-53420 sshd\[8343\]: Invalid user yuhua from 178.62.78.183 Dec 14 10:18:21 sd-53420 sshd\[8343\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.78.183 ...	2019-12-14 18:16:18
139.199.248.153	attackbotsspam	Dec 14 10:42:44 eventyay sshd[25623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.153 Dec 14 10:42:46 eventyay sshd[25623]: Failed password for invalid user admin from 139.199.248.153 port 34972 ssh2 Dec 14 10:49:12 eventyay sshd[25784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.248.153 ...	2019-12-14 18:03:29

Recently Reported IPs

95.12.173.87	248.132.134.116	124.16.102.218	119.252.12.30
170.21.92.188	31.17.10.209	148.229.243.51	36.83.53.157
163.59.134.120	170.175.146.112	46.69.226.223	103.138.96.110
60.243.118.214	52.255.165.5	105.247.150.228	147.198.35.239
94.10.159.167	51.132.17.50	103.69.245.182	202.99.237.174