72.47.244.13 - IPInfo

Basic Info

City: Culver City

Region: California

Country: United States

Internet Service Provider: Media Temple Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	72.47.244.13 - - [16/Sep/2019:04:19:44 -0400] "GET /?page=products&action=list&linkID=5516999999.1%20union%20select%20unhex(hex(version()))%20--%20and%201%3D1 HTTP/1.1" 200 58536 "-" "-" ...	2019-09-17 01:54:53

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 72.47.244.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7065
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;72.47.244.13.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091601 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 17 01:54:47 CST 2019
;; MSG SIZE  rcvd: 116

Host info

13.244.47.72.in-addr.arpa domain name pointer n13.c11.mtsvc.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
13.244.47.72.in-addr.arpa	name = n13.c11.mtsvc.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
50.67.178.164	attackspambots	Oct 27 10:00:07 TORMINT sshd\[6132\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.67.178.164 user=root Oct 27 10:00:10 TORMINT sshd\[6132\]: Failed password for root from 50.67.178.164 port 44666 ssh2 Oct 27 10:07:14 TORMINT sshd\[6880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.67.178.164 user=root ...	2019-10-27 22:11:12
189.207.44.54	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/189.207.44.54/ MX - 1H : (57) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : MX NAME ASN : ASN6503 IP : 189.207.44.54 CIDR : 189.207.32.0/19 PREFIX COUNT : 2074 UNIQUE IP COUNT : 1522176 ATTACKS DETECTED ASN6503 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-27 13:07:06 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-27 22:13:30
175.5.137.44	attackspambots	Fail2Ban - FTP Abuse Attempt	2019-10-27 21:44:04
222.186.175.217	attackbots	Oct 27 14:56:30 dedicated sshd[23571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Oct 27 14:56:32 dedicated sshd[23571]: Failed password for root from 222.186.175.217 port 25504 ssh2	2019-10-27 22:12:33
51.77.200.243	attackbotsspam	Oct 27 14:09:53 sso sshd[4130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.243 Oct 27 14:09:55 sso sshd[4130]: Failed password for invalid user love from 51.77.200.243 port 53158 ssh2 ...	2019-10-27 21:44:46
178.95.65.170	attack	Port Scan: TCP/25	2019-10-27 22:26:10
121.142.111.98	attack	Oct 27 13:18:06 MK-Soft-VM4 sshd[27792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.142.111.98 Oct 27 13:18:07 MK-Soft-VM4 sshd[27792]: Failed password for invalid user administrator from 121.142.111.98 port 45668 ssh2 ...	2019-10-27 21:48:20
106.13.142.115	attack	failed root login	2019-10-27 22:03:25
144.217.80.190	attack	144.217.80.190 - - \[27/Oct/2019:12:07:32 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 144.217.80.190 - - \[27/Oct/2019:12:07:32 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-10-27 21:50:34
118.24.67.4	attack	"POST /jsc.php HTTP/1.1" 404 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:31.0) Gecko/20100101 Firefox/31.0" 0.000071 "POST /605.php HTTP/1.1" 404 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:31.0) Gecko/20100101 Firefox/31.0" 0.000065 "POST /whoami.php.php HTTP/1.1" 404 0 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:31.0) Gecko/20100101 Firefox/31.0" 0.000064	2019-10-27 22:03:44
129.211.108.202	attackbotsspam	Oct 27 19:23:52 areeb-Workstation sshd[1494]: Failed password for root from 129.211.108.202 port 60974 ssh2 ...	2019-10-27 22:17:50
106.12.21.212	attack	Automatic report - Banned IP Access	2019-10-27 22:07:48
49.234.233.164	attackspam	Oct 27 03:24:31 friendsofhawaii sshd\[9791\]: Invalid user a5211314 from 49.234.233.164 Oct 27 03:24:31 friendsofhawaii sshd\[9791\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.233.164 Oct 27 03:24:33 friendsofhawaii sshd\[9791\]: Failed password for invalid user a5211314 from 49.234.233.164 port 35542 ssh2 Oct 27 03:30:00 friendsofhawaii sshd\[10255\]: Invalid user general1 from 49.234.233.164 Oct 27 03:30:00 friendsofhawaii sshd\[10255\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.233.164	2019-10-27 22:09:23
99.228.65.127	attackspam	Oct 27 12:07:15 *** sshd[4295]: User root from 99.228.65.127 not allowed because not listed in AllowUsers	2019-10-27 22:02:50
217.112.128.145	attack	Postfix RBL failed	2019-10-27 21:47:17

Recently Reported IPs

52.175.53.143	178.90.39.157	117.26.106.77	95.14.89.235
13.75.44.81	70.100.130.1	167.172.147.152	106.13.73.76
104.163.144.241	66.172.166.102	122.49.195.98	43.245.185.70
189.168.76.96	187.140.56.69	82.209.55.160	132.178.241.252
149.129.48.31	165.117.21.173	71.214.58.51	121.23.17.172