City: Los Angeles
Region: California
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
# start
NetRange: 72.244.0.0 - 72.245.255.255
CIDR: 72.244.0.0/15
NetName: MEGAPATH-BLK-63
NetHandle: NET-72-244-0-0-1
Parent: NET72 (NET-72-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: GTT Americas, LLC (GAL-104)
RegDate: 2005-03-22
Updated: 2025-05-07
Ref: https://rdap.arin.net/registry/ip/72.244.0.0
OrgName: GTT Americas, LLC
OrgId: GAL-104
Address: 4201 Wilson Blvd -Suite 504
City: Arlington
StateProv: VA
PostalCode: 22203
Country: US
RegDate: 2025-02-11
Updated: 2025-07-08
Ref: https://rdap.arin.net/registry/entity/GAL-104
OrgTechHandle: AS3251-ARIN
OrgTechName: AS3257 Netguard
OrgTechPhone: +49 69 48007422
OrgTechEmail: netguard@gtt.net
OrgTechRef: https://rdap.arin.net/registry/entity/AS3251-ARIN
OrgTechHandle: GLD5-ARIN
OrgTechName: GTT Legal Departement
OrgTechPhone: +359886606
OrgTechEmail: alexander.mutafchiyski@gtt.net
OrgTechRef: https://rdap.arin.net/registry/entity/GLD5-ARIN
OrgTechHandle: GIT5-ARIN
OrgTechName: GTT IPAM Team
OrgTechPhone: +1-703-442-5500
OrgTechEmail: netguard@gtt.net
OrgTechRef: https://rdap.arin.net/registry/entity/GIT5-ARIN
OrgAbuseHandle: GAD46-ARIN
OrgAbuseName: GTT Abuse Department
OrgAbusePhone: +1-703-442-5501
OrgAbuseEmail: abuse@gtt.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/GAD46-ARIN
OrgNOCHandle: GNOC16-ARIN
OrgNOCName: GTT Network Operations Center
OrgNOCPhone: +1-703-442-5500
OrgNOCEmail: noc@gtt.net
OrgNOCRef: https://rdap.arin.net/registry/entity/GNOC16-ARIN
# end
# start
NetRange: 72.245.128.0 - 72.245.135.255
CIDR: 72.245.128.0/21
NetName: ARISK-GTT
NetHandle: NET-72-245-128-0-1
Parent: MEGAPATH-BLK-63 (NET-72-244-0-0-1)
NetType: Reallocated
OriginAS:
Organization: Arisk Communications inc. (AC-5396)
RegDate: 2025-08-13
Updated: 2025-08-13
Comment: Geofeed https://ariskisp.com/rfc8805.csv
Ref: https://rdap.arin.net/registry/ip/72.245.128.0
OrgName: Arisk Communications inc.
OrgId: AC-5396
Address: 350 NORTHERN BLVD STE 324 -1331 ALBANY NY 12204-1000
City: ALBANY
StateProv: NY
PostalCode: 12204
Country: US
RegDate: 2024-06-28
Updated: 2024-07-03
Ref: https://rdap.arin.net/registry/entity/AC-5396
ReferralServer: rwhois://rwhois.ariskisp.com:4321
OrgTechHandle: WILSO1903-ARIN
OrgTechName: Wilson
OrgTechPhone: +1-518-512-9230
OrgTechEmail: support@ariskisp.com
OrgTechRef: https://rdap.arin.net/registry/entity/WILSO1903-ARIN
OrgAbuseHandle: WILSO1903-ARIN
OrgAbuseName: Wilson
OrgAbusePhone: +1-518-512-9230
OrgAbuseEmail: support@ariskisp.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/WILSO1903-ARIN
# end
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
Found a referral to rwhois.ariskisp.com:4321.; <<>> DiG 9.10.3-P4-Ubuntu <<>> 72.245.131.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;72.245.131.102. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025100200 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 02 17:10:40 CST 2025
;; MSG SIZE rcvd: 107Host 102.131.245.72.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 102.131.245.72.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 114.232.194.174 | attackspambots | 2019-06-26T21:36:30.477862 X postfix/smtpd[11548]: warning: unknown[114.232.194.174]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-26T21:57:58.119214 X postfix/smtpd[14097]: warning: unknown[114.232.194.174]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T00:59:07.453889 X postfix/smtpd[39029]: warning: unknown[114.232.194.174]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-06-27 07:08:14 |
| 114.231.148.189 | attack | 2019-06-26T19:41:31.084837 X postfix/smtpd[60464]: warning: unknown[114.231.148.189]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-26T19:41:48.006745 X postfix/smtpd[60814]: warning: unknown[114.231.148.189]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T00:59:00.465770 X postfix/smtpd[39029]: warning: unknown[114.231.148.189]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-06-27 07:10:29 |
| 187.58.65.21 | attack | Invalid user guest from 187.58.65.21 port 9407 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.58.65.21 Failed password for invalid user guest from 187.58.65.21 port 9407 ssh2 Invalid user worldpress from 187.58.65.21 port 43638 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.58.65.21 |
2019-06-27 06:53:01 |
| 186.101.32.102 | attackspambots | Jun 26 20:22:43 cp sshd[5951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.101.32.102 Jun 26 20:22:43 cp sshd[5951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.101.32.102 |
2019-06-27 06:43:59 |
| 164.132.47.139 | attackspam | $f2bV_matches |
2019-06-27 06:46:29 |
| 103.114.107.129 | attackspambots | TCP 3389 (RDP) |
2019-06-27 06:39:44 |
| 118.24.165.163 | attackbotsspam | Jun 27 00:59:10 cp sshd[4651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.165.163 Jun 27 00:59:10 cp sshd[4651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.165.163 |
2019-06-27 07:06:06 |
| 199.249.230.119 | attack | frenzy |
2019-06-27 07:06:39 |
| 196.52.43.110 | attackspambots | Port scan: Attack repeated for 24 hours |
2019-06-27 06:58:12 |
| 89.133.62.227 | attackbotsspam | Jun 27 00:58:53 vps647732 sshd[10017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.133.62.227 Jun 27 00:58:56 vps647732 sshd[10017]: Failed password for invalid user gmodttt from 89.133.62.227 port 54845 ssh2 ... |
2019-06-27 07:11:58 |
| 219.84.201.39 | attack | 19/6/26@18:59:06: FAIL: Alarm-Intrusion address from=219.84.201.39 ... |
2019-06-27 07:07:46 |
| 185.137.111.123 | attack | Jun 26 23:49:43 mail postfix/smtpd\[25719\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 27 00:20:19 mail postfix/smtpd\[26643\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 27 00:20:55 mail postfix/smtpd\[26652\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 27 00:21:31 mail postfix/smtpd\[26652\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ |
2019-06-27 06:41:34 |
| 91.185.193.155 | attack | RDP Bruteforce |
2019-06-27 07:07:32 |
| 2.179.39.131 | attackspam | " " |
2019-06-27 06:28:51 |
| 49.51.233.81 | attackspam | Jun 26 15:42:50 core01 sshd\[30848\]: Invalid user zuan from 49.51.233.81 port 38076 Jun 26 15:42:50 core01 sshd\[30848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.233.81 ... |
2019-06-27 06:42:38 |