74.120.14.78 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Default Route LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	TCP (SYN) 74.120.14.78:24139 -> port 4848, len 44	2020-10-04 06:04:02
attackbotsspam	TCP (SYN) 74.120.14.78:19134 -> port 9441, len 44	2020-10-03 22:04:48
attackspam	TCP (SYN) 74.120.14.78:18145 -> port 8385, len 44	2020-10-03 13:49:22
attackspambots	TCP (SYN) 74.120.14.78:34705 -> port 9447, len 44	2020-09-27 04:11:46
attackspambots	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-09-26 20:19:01
attackspambots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-09-26 12:01:36
attackbotsspam	firewall-block, port(s): 1337/tcp	2020-09-25 19:36:27
attack	Port Scan detected! ...	2020-09-16 23:44:51
attack	Port probing on unauthorized port 8812	2020-09-16 16:02:02
attack	ET DROP Dshield Block Listed Source group 1 - port: 8123 proto: tcp cat: Misc Attackbytes: 60	2020-09-16 08:02:15

Comments on same subnet:

IP	Type	Details	Datetime
74.120.14.29	attackbots	TCP (SYN) 74.120.14.29:49585 -> port 995, len 44	2020-10-14 06:47:10
74.120.14.18	attack	TCP (SYN) 74.120.14.18:63537 -> port 8080, len 44	2020-10-14 05:41:37
74.120.14.16	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 66 - port: 8089 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:22:14
74.120.14.71	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 67 - port: 7070 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:06:23
74.120.14.27	attackspambots	Port scan: Attack repeated for 24 hours	2020-10-14 03:44:00
74.120.14.74	attack	TCP (SYN) 74.120.14.74:36705 -> port 5495, len 44	2020-10-13 22:38:32
74.120.14.16	attack	TCP (SYN) 74.120.14.16:37330 -> port 25, len 44	2020-10-13 20:41:28
74.120.14.67	attackbots	9833/tcp 9718/tcp 18029/tcp... [2020-09-14/10-13]192pkt,176pt.(tcp)	2020-10-13 20:41:03
74.120.14.27	attackspam	TCP (SYN) 74.120.14.27:33289 -> port 2222, len 44	2020-10-13 19:03:33
74.120.14.74	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 65	2020-10-13 13:59:10
74.120.14.16	attack	spam	2020-10-13 12:13:05
74.120.14.67	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 65 - port: 8382 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 12:12:48
74.120.14.75	attackspam	TCP (SYN) 74.120.14.75:2675 -> port 3010, len 44	2020-10-13 12:12:15
74.120.14.74	attackbots	TCP (SYN) 74.120.14.74:24302 -> port 9845, len 44	2020-10-13 06:43:19
74.120.14.16	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 64 - port: 1194 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 05:02:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 74.120.14.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 964
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;74.120.14.78.			IN	A

;; AUTHORITY SECTION:
.			580	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091502 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 16 08:02:12 CST 2020
;; MSG SIZE  rcvd: 116

Host info

78.14.120.74.in-addr.arpa domain name pointer scanner-11.ch1.censys-scanner.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
78.14.120.74.in-addr.arpa	name = scanner-11.ch1.censys-scanner.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.75.66.108	attackbots	Sep 26 07:53:04 ip-172-31-16-56 sshd\[2118\]: Invalid user op from 106.75.66.108\ Sep 26 07:53:07 ip-172-31-16-56 sshd\[2118\]: Failed password for invalid user op from 106.75.66.108 port 37556 ssh2\ Sep 26 07:57:43 ip-172-31-16-56 sshd\[2161\]: Failed password for root from 106.75.66.108 port 42392 ssh2\ Sep 26 08:02:31 ip-172-31-16-56 sshd\[2207\]: Invalid user scs from 106.75.66.108\ Sep 26 08:02:33 ip-172-31-16-56 sshd\[2207\]: Failed password for invalid user scs from 106.75.66.108 port 47230 ssh2\	2020-09-26 17:24:50
49.235.90.244	attack	$f2bV_matches	2020-09-26 17:28:25
93.184.221.240	attack	Blocked by Sophos UTM Network Protection . / / proto=6 . srcport=80 . dstport=49970 . (3527)	2020-09-26 17:32:24
190.210.60.4	attackbots	Sep 26 11:22:08 pve1 sshd[9441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.210.60.4 Sep 26 11:22:10 pve1 sshd[9441]: Failed password for invalid user admin from 190.210.60.4 port 34305 ssh2 ...	2020-09-26 17:28:59
139.162.69.98	attack	TCP (SYN) 139.162.69.98:52933 -> port 5060, len 44	2020-09-26 17:27:48
162.243.128.97	attackspam	TCP (SYN) 162.243.128.97:53036 -> port 60837, len 44	2020-09-26 16:58:22
40.89.155.138	attackspam	$f2bV_matches	2020-09-26 17:16:29
52.231.72.246	attackspambots	Sep 26 01:47:36 propaganda sshd[24157]: Connection from 52.231.72.246 port 7219 on 10.0.0.161 port 22 rdomain "" Sep 26 01:47:36 propaganda sshd[24157]: Invalid user 249 from 52.231.72.246 port 7219	2020-09-26 16:57:24
125.44.15.82	attackbots	Listed on abuseat.org plus zen-spamhaus / proto=6 . srcport=50184 . dstport=60001 . (3532)	2020-09-26 16:57:48
128.199.204.26	attackspam	SSH Brute-Force reported by Fail2Ban	2020-09-26 17:35:11
222.186.190.2	attackspambots	Sep 26 09:01:14 email sshd\[20849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Sep 26 09:01:17 email sshd\[20849\]: Failed password for root from 222.186.190.2 port 48254 ssh2 Sep 26 09:01:20 email sshd\[20849\]: Failed password for root from 222.186.190.2 port 48254 ssh2 Sep 26 09:01:34 email sshd\[20898\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Sep 26 09:01:36 email sshd\[20898\]: Failed password for root from 222.186.190.2 port 52652 ssh2 ...	2020-09-26 17:19:31
40.113.16.216	attackbotsspam	Automatic report - Brute Force attack using this IP address	2020-09-26 17:26:27
118.89.228.58	attackspam	Invalid user peter from 118.89.228.58 port 36479	2020-09-26 17:36:33
195.54.161.58	attackbots	[Tue Sep 22 10:12:29 2020] - DDoS Attack From IP: 195.54.161.58 Port: 56081	2020-09-26 17:01:06
52.142.58.202	attackspambots	2020-09-26T04:29:30.218321dreamphreak.com sshd[422469]: Invalid user 13.245.27.122 from 52.142.58.202 port 56732 2020-09-26T04:29:32.032827dreamphreak.com sshd[422469]: Failed password for invalid user 13.245.27.122 from 52.142.58.202 port 56732 ssh2 ...	2020-09-26 17:37:15

Recently Reported IPs

73.15.111.149	80.135.235.108	65.132.25.68	140.150.98.194
39.137.9.228	103.62.153.222	45.51.172.44	168.8.227.169
160.173.204.111	165.234.127.176	212.179.176.213	162.83.23.223
42.57.151.217	83.74.215.195	107.173.114.121	210.164.205.244
185.68.71.183	200.255.124.231	80.9.85.197	66.152.130.26