City: unknown
Region: unknown
Country: United States
Internet Service Provider: Default Route LLC
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack |
|
2020-10-04 06:04:02 |
| attackbotsspam |
|
2020-10-03 22:04:48 |
| attackspam |
|
2020-10-03 13:49:22 |
| attackspambots |
|
2020-09-27 04:11:46 |
| attackspambots | [N1.H1.VM1] Port Scanner Detected Blocked by UFW |
2020-09-26 20:19:01 |
| attackspambots | IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking. |
2020-09-26 12:01:36 |
| attackbotsspam | firewall-block, port(s): 1337/tcp |
2020-09-25 19:36:27 |
| attack | Port Scan detected! ... |
2020-09-16 23:44:51 |
| attack | Port probing on unauthorized port 8812 |
2020-09-16 16:02:02 |
| attack | ET DROP Dshield Block Listed Source group 1 - port: 8123 proto: tcp cat: Misc Attackbytes: 60 |
2020-09-16 08:02:15 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 74.120.14.29 | attackbots |
|
2020-10-14 06:47:10 |
| 74.120.14.18 | attack |
|
2020-10-14 05:41:37 |
| 74.120.14.16 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 66 - port: 8089 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-14 05:22:14 |
| 74.120.14.71 | attackbotsspam | ET CINS Active Threat Intelligence Poor Reputation IP group 67 - port: 7070 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-14 05:06:23 |
| 74.120.14.27 | attackspambots | Port scan: Attack repeated for 24 hours |
2020-10-14 03:44:00 |
| 74.120.14.74 | attack |
|
2020-10-13 22:38:32 |
| 74.120.14.16 | attack |
|
2020-10-13 20:41:28 |
| 74.120.14.67 | attackbots | 9833/tcp 9718/tcp 18029/tcp... [2020-09-14/10-13]192pkt,176pt.(tcp) |
2020-10-13 20:41:03 |
| 74.120.14.27 | attackspam |
|
2020-10-13 19:03:33 |
| 74.120.14.74 | attackspambots | ET CINS Active Threat Intelligence Poor Reputation IP group 65 |
2020-10-13 13:59:10 |
| 74.120.14.16 | attack | spam |
2020-10-13 12:13:05 |
| 74.120.14.67 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 65 - port: 8382 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-13 12:12:48 |
| 74.120.14.75 | attackspam |
|
2020-10-13 12:12:15 |
| 74.120.14.74 | attackbots |
|
2020-10-13 06:43:19 |
| 74.120.14.16 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 64 - port: 1194 proto: tcp cat: Misc Attackbytes: 60 |
2020-10-13 05:02:43 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 74.120.14.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 964
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;74.120.14.78. IN A
;; AUTHORITY SECTION:
. 580 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020091502 1800 900 604800 86400
;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 16 08:02:12 CST 2020
;; MSG SIZE rcvd: 11678.14.120.74.in-addr.arpa domain name pointer scanner-11.ch1.censys-scanner.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
78.14.120.74.in-addr.arpa name = scanner-11.ch1.censys-scanner.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 80.82.77.212 | attackspam | firewall-block, port(s): 3283/udp, 3702/udp |
2020-04-23 18:47:14 |
| 185.202.1.253 | attack | ET DROP Dshield Block Listed Source group 1 - port: 10000 proto: TCP cat: Misc Attack |
2020-04-23 18:36:49 |
| 77.243.191.18 | attackbots | TCP port 3389: Scan and connection |
2020-04-23 18:48:21 |
| 61.157.138.117 | attackspambots | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic |
2020-04-23 18:52:06 |
| 210.12.24.134 | attackspam | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic |
2020-04-23 18:35:13 |
| 93.124.17.118 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 86 - port: 23 proto: TCP cat: Misc Attack |
2020-04-23 18:42:18 |
| 209.97.190.223 | attackbots | ET SCAN NETWORK Incoming Masscan detected - port: 80 proto: TCP cat: Detection of a Network Scan |
2020-04-23 19:00:53 |
| 220.78.150.50 | attackbots | Unauthorized connection attempt detected from IP address 220.78.150.50 to port 8089 |
2020-04-23 19:00:02 |
| 5.101.0.209 | attack | Apr 23 12:56:29 debian-2gb-nbg1-2 kernel: \[9898338.769031\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=5.101.0.209 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=8775 PROTO=TCP SPT=50304 DPT=6800 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-04-23 18:59:33 |
| 195.40.181.55 | attackbots | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic |
2020-04-23 19:01:17 |
| 45.248.69.27 | attackbotsspam | Apr 23 04:36:31 NPSTNNYC01T sshd[17476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.248.69.27 Apr 23 04:36:33 NPSTNNYC01T sshd[17476]: Failed password for invalid user admin from 45.248.69.27 port 43638 ssh2 Apr 23 04:45:09 NPSTNNYC01T sshd[18298]: Failed password for root from 45.248.69.27 port 35974 ssh2 ... |
2020-04-23 18:32:51 |
| 45.55.92.115 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 25 - port: 32441 proto: TCP cat: Misc Attack |
2020-04-23 18:56:20 |
| 81.246.63.226 | attackbots | SSH Brute Force |
2020-04-23 18:27:56 |
| 51.68.189.69 | attackbotsspam | Brute-force attempt banned |
2020-04-23 18:30:46 |
| 51.38.37.109 | attack | Apr 23 12:10:16 mout sshd[15193]: Invalid user oracle from 51.38.37.109 port 58890 Apr 23 12:10:17 mout sshd[15193]: Failed password for invalid user oracle from 51.38.37.109 port 58890 ssh2 Apr 23 12:16:44 mout sshd[15468]: Invalid user oracle10 from 51.38.37.109 port 53758 |
2020-04-23 18:31:17 |