72.18.200.92 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Santa Clara CA Data Center

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 62 - port: 3390 proto: TCP cat: Misc Attack	2019-12-12 09:22:31

Comments on same subnet:

IP	Type	Details	Datetime
72.18.200.94	attack	Repeated RDP login failures. Last user: administrator	2020-06-11 23:25:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 72.18.200.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17294
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;72.18.200.92.			IN	A

;; AUTHORITY SECTION:
.			488	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121101 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 09:22:28 CST 2019
;; MSG SIZE  rcvd: 116

Host info

92.200.18.72.in-addr.arpa domain name pointer santaclara-ca-datacenter.serverpoint.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
92.200.18.72.in-addr.arpa	name = santaclara-ca-datacenter.serverpoint.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
69.172.87.212	attack	Aug 11 20:19:20 vps1 sshd[30498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.172.87.212 Aug 11 20:19:22 vps1 sshd[30498]: Failed password for invalid user 99887766 from 69.172.87.212 port 37862 ssh2 Aug 11 20:20:47 vps1 sshd[30516]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.172.87.212 Aug 11 20:20:49 vps1 sshd[30516]: Failed password for invalid user sdsdar from 69.172.87.212 port 44999 ssh2 Aug 11 20:22:11 vps1 sshd[30539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.172.87.212 Aug 11 20:22:13 vps1 sshd[30539]: Failed password for invalid user q1w2e3!@ from 69.172.87.212 port 52133 ssh2 ...	2020-08-12 04:02:03
220.141.183.218	attack	Aug 11 17:22:04 master sshd[20174]: Failed password for root from 220.141.183.218 port 48859 ssh2	2020-08-12 04:19:58
151.80.46.138	attackbotsspam	[portscan] Port scan	2020-08-12 04:22:39
194.61.24.177	attackspambots	...	2020-08-12 04:25:12
179.99.30.250	attack	Bruteforce detected by fail2ban	2020-08-12 04:04:48
138.68.233.112	attack	Automatic report - Banned IP Access	2020-08-12 04:26:55
2600:3000:1511:200::1d	attackspambots	Tried to connect (6x) -	2020-08-12 04:14:20
157.245.234.138	attackbotsspam	IMAP	2020-08-12 04:25:35
23.231.110.130	attackbots	Received: from mail.gullents.icu (unknown [23.231.110.130]) Date: Tue, 11 Aug 2020 07:40:20 -0400 From: "BuzzBGone Associates" Subject: **SPAM** Amazing new mosquito-killing device!	2020-08-12 04:20:45
104.248.56.150	attackbotsspam	Aug 11 21:38:34 ns381471 sshd[9858]: Failed password for root from 104.248.56.150 port 52296 ssh2	2020-08-12 04:02:48
188.152.189.220	attack	Aug 11 15:49:04 lanister sshd[32587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.152.189.220 user=root Aug 11 15:49:06 lanister sshd[32587]: Failed password for root from 188.152.189.220 port 37290 ssh2 Aug 11 15:53:14 lanister sshd[32621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.152.189.220 user=root Aug 11 15:53:17 lanister sshd[32621]: Failed password for root from 188.152.189.220 port 41942 ssh2	2020-08-12 04:30:24
51.254.220.61	attackbotsspam	2020-08-11 13:45:54,874 fail2ban.actions [937]: NOTICE [sshd] Ban 51.254.220.61 2020-08-11 14:23:37,265 fail2ban.actions [937]: NOTICE [sshd] Ban 51.254.220.61 2020-08-11 15:01:29,910 fail2ban.actions [937]: NOTICE [sshd] Ban 51.254.220.61 2020-08-11 15:38:07,174 fail2ban.actions [937]: NOTICE [sshd] Ban 51.254.220.61 2020-08-11 16:14:55,262 fail2ban.actions [937]: NOTICE [sshd] Ban 51.254.220.61 ...	2020-08-12 04:32:52
2600:3000:2710:200::1d	attackspambots	Tried to connect (16x) -	2020-08-12 04:17:12
124.123.179.148	attackspam	1597147481 - 08/11/2020 14:04:41 Host: 124.123.179.148/124.123.179.148 Port: 445 TCP Blocked ...	2020-08-12 04:31:22
218.92.0.192	attack	Aug 11 21:32:01 itv-usvr-01 sshd[27789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.192 user=root Aug 11 21:32:03 itv-usvr-01 sshd[27789]: Failed password for root from 218.92.0.192 port 54300 ssh2	2020-08-12 04:18:45

Recently Reported IPs

93.250.131.179	23.12.72.238	88.95.200.85	130.246.58.133
209.61.151.237	22.244.187.92	111.182.57.83	148.181.95.49
224.24.202.84	113.161.66.251	64.171.46.93	123.220.44.92
198.201.123.252	126.242.202.146	25.188.115.16	37.187.99.138
25.124.109.106	202.137.242.26	152.136.44.49	3.120.78.118