142.0.72.72 - IPInfo

Basic Info

City: Coquitlam

Region: British Columbia

Country: Canada

Internet Service Provider: Avesta Networks LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Honeypot attack, port: 445, PTR: 142-0-72-72.static.avestadns.com.	2019-10-23 04:10:29

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.0.72.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38323
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.0.72.72.			IN	A

;; AUTHORITY SECTION:
.			425	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102201 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 23 04:10:26 CST 2019
;; MSG SIZE  rcvd: 115

Host info

72.72.0.142.in-addr.arpa domain name pointer 142-0-72-72.static.avestadns.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
72.72.0.142.in-addr.arpa	name = 142-0-72-72.static.avestadns.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.48.201	attack	2019-11-05T06:27:41.153081abusebot-2.cloudsearch.cf sshd\[24862\]: Invalid user testsql from 106.13.48.201 port 43202	2019-11-05 16:43:53
182.73.245.70	attack	2019-11-05T06:28:25.124644abusebot-4.cloudsearch.cf sshd\[26905\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.73.245.70 user=root	2019-11-05 16:13:41
138.68.226.175	attackspambots	Nov 5 08:29:50 root sshd[27557]: Failed password for root from 138.68.226.175 port 45806 ssh2 Nov 5 08:33:53 root sshd[27575]: Failed password for root from 138.68.226.175 port 55856 ssh2 Nov 5 08:37:43 root sshd[27620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 ...	2019-11-05 16:13:19
157.245.251.97	attackspambots	Nov 5 08:31:16 minden010 sshd[29047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.251.97 Nov 5 08:31:19 minden010 sshd[29047]: Failed password for invalid user WANGFANG123 from 157.245.251.97 port 53422 ssh2 Nov 5 08:35:18 minden010 sshd[2324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.251.97 ...	2019-11-05 16:45:19
61.224.45.150	attackbots	TCP Port Scanning	2019-11-05 16:34:24
180.167.134.194	attackbots	$f2bV_matches	2019-11-05 16:05:26
165.227.203.162	attackbots	Nov 4 22:24:45 web9 sshd\[3563\]: Invalid user tianxiangkejizhouchuan231 from 165.227.203.162 Nov 4 22:24:45 web9 sshd\[3563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.203.162 Nov 4 22:24:47 web9 sshd\[3563\]: Failed password for invalid user tianxiangkejizhouchuan231 from 165.227.203.162 port 40986 ssh2 Nov 4 22:28:41 web9 sshd\[4119\]: Invalid user suporte123 from 165.227.203.162 Nov 4 22:28:41 web9 sshd\[4119\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.203.162	2019-11-05 16:38:19
203.148.8.6	attackbots	Nov 5 07:27:44 lnxweb62 sshd[16906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.8.6	2019-11-05 16:40:43
87.201.162.159	attackbots	Nov 5 08:28:00 ncomp sshd[2710]: Invalid user supervisor from 87.201.162.159 Nov 5 08:28:03 ncomp sshd[2710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.201.162.159 Nov 5 08:28:00 ncomp sshd[2710]: Invalid user supervisor from 87.201.162.159 Nov 5 08:28:05 ncomp sshd[2710]: Failed password for invalid user supervisor from 87.201.162.159 port 14906 ssh2	2019-11-05 16:25:43
45.227.253.140	attackbotsspam	2019-11-05T09:35:34.480291mail01 postfix/smtpd[31786]: warning: unknown[45.227.253.140]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-05T09:35:42.204012mail01 postfix/smtpd[1387]: warning: unknown[45.227.253.140]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-05T09:36:03.367180mail01 postfix/smtpd[31786]: warning: unknown[45.227.253.140]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-05 16:38:02
129.211.141.207	attackspambots	SSH Bruteforce attack	2019-11-05 16:28:10
45.136.108.65	attack	Connection by 45.136.108.65 on port: 9035 got caught by honeypot at 11/5/2019 6:53:34 AM	2019-11-05 16:29:16
42.236.10.73	attackspam	Automatic report - Banned IP Access	2019-11-05 16:05:01
5.88.155.130	attackspambots	Nov 5 09:37:06 ks10 sshd[23764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.88.155.130 Nov 5 09:37:07 ks10 sshd[23764]: Failed password for invalid user cpanel from 5.88.155.130 port 51102 ssh2 ...	2019-11-05 16:42:17
40.73.116.245	attackbots	Nov 5 08:52:10 sauna sshd[241941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.116.245 Nov 5 08:52:12 sauna sshd[241941]: Failed password for invalid user operator from 40.73.116.245 port 45816 ssh2 ...	2019-11-05 16:31:48

Recently Reported IPs

58.59.39.72	139.97.39.129	123.158.72.191	173.98.122.187
156.181.85.47	177.206.153.66	136.176.14.119	43.224.180.205
18.181.116.202	105.205.246.86	117.78.58.17	123.49.255.225
110.77.162.63	77.136.39.135	76.251.208.114	42.59.75.115
163.209.39.106	109.73.185.106	78.163.233.102	118.65.180.8