72.52.145.22 - IPInfo

Basic Info

City: Lansing

Region: Michigan

Country: United States

Internet Service Provider: Liquid Web L.L.C

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	fail2ban	2020-04-02 16:49:31
attackbotsspam	Nov 11 22:41:07 hosting sshd[15110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.52.145.22 user=root Nov 11 22:41:09 hosting sshd[15110]: Failed password for root from 72.52.145.22 port 48746 ssh2 ...	2019-11-12 03:53:12
attackbots	Nov 8 17:16:06 vps647732 sshd[32323]: Failed password for root from 72.52.145.22 port 44186 ssh2 ...	2019-11-09 00:29:30
attackbotsspam	Nov 3 20:02:16 v22019058497090703 sshd[23815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.52.145.22 Nov 3 20:02:18 v22019058497090703 sshd[23815]: Failed password for invalid user frond from 72.52.145.22 port 55046 ssh2 Nov 3 20:06:01 v22019058497090703 sshd[24077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.52.145.22 ...	2019-11-04 03:22:49

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 72.52.145.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52286
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;72.52.145.22.			IN	A

;; AUTHORITY SECTION:
.			331	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110301 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 04 03:22:45 CST 2019
;; MSG SIZE  rcvd: 116

Host info

22.145.52.72.in-addr.arpa domain name pointer deny.icanhasdomin.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
22.145.52.72.in-addr.arpa	name = deny.icanhasdomin.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.209.0.103	attack	2020-06-25T04:18:01.878053linuxbox-skyline sshd[193165]: Invalid user admin from 85.209.0.103 port 33002 ...	2020-06-25 18:22:33
45.67.234.232	attack	From hardreturn@tjseguros.live Thu Jun 25 00:49:26 2020 Received: from tjmx4.tjseguros.live ([45.67.234.232]:42905)	2020-06-25 18:14:26
37.111.48.178	attackbots	Unauthorised access (Jun 25) SRC=37.111.48.178 LEN=52 TTL=110 ID=20820 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-25 18:07:53
156.96.46.8	attackspam	Brute force PBX	2020-06-25 18:37:35
219.147.74.48	attackspambots	SSH BruteForce Attack	2020-06-25 18:08:41
5.109.14.167	attackbots	Hits on port : 445	2020-06-25 18:32:39
159.89.203.193	attack	$f2bV_matches	2020-06-25 18:16:27
68.179.169.125	attack	Jun 25 06:18:33 buvik sshd[13609]: Failed password for invalid user 111 from 68.179.169.125 port 52174 ssh2 Jun 25 06:21:51 buvik sshd[14206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.179.169.125 user=root Jun 25 06:21:53 buvik sshd[14206]: Failed password for root from 68.179.169.125 port 51282 ssh2 ...	2020-06-25 18:24:22
118.24.140.69	attack	Jun 25 11:57:59 meumeu sshd[1398153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.140.69 user=root Jun 25 11:58:01 meumeu sshd[1398153]: Failed password for root from 118.24.140.69 port 61778 ssh2 Jun 25 12:00:53 meumeu sshd[1398524]: Invalid user scpuser from 118.24.140.69 port 40699 Jun 25 12:00:53 meumeu sshd[1398524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.140.69 Jun 25 12:00:53 meumeu sshd[1398524]: Invalid user scpuser from 118.24.140.69 port 40699 Jun 25 12:00:55 meumeu sshd[1398524]: Failed password for invalid user scpuser from 118.24.140.69 port 40699 ssh2 Jun 25 12:03:35 meumeu sshd[1398574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.140.69 user=root Jun 25 12:03:38 meumeu sshd[1398574]: Failed password for root from 118.24.140.69 port 19578 ssh2 Jun 25 12:06:33 meumeu sshd[1398668]: Invalid user zyq from 118.24.140.69 port 53464 ...	2020-06-25 18:33:05
166.111.152.230	attackspam	2020-06-25T10:33:30.607163abusebot-4.cloudsearch.cf sshd[13486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.152.230 user=root 2020-06-25T10:33:32.568806abusebot-4.cloudsearch.cf sshd[13486]: Failed password for root from 166.111.152.230 port 41782 ssh2 2020-06-25T10:36:58.781661abusebot-4.cloudsearch.cf sshd[13534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.152.230 user=root 2020-06-25T10:37:00.632665abusebot-4.cloudsearch.cf sshd[13534]: Failed password for root from 166.111.152.230 port 39052 ssh2 2020-06-25T10:40:20.270408abusebot-4.cloudsearch.cf sshd[13644]: Invalid user ext from 166.111.152.230 port 36294 2020-06-25T10:40:20.276086abusebot-4.cloudsearch.cf sshd[13644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.152.230 2020-06-25T10:40:20.270408abusebot-4.cloudsearch.cf sshd[13644]: Invalid user ext from 166.111.152.230 ...	2020-06-25 18:44:37
132.145.160.32	attack	Jun 25 12:09:51 * sshd[14435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.160.32 Jun 25 12:09:53 * sshd[14435]: Failed password for invalid user staffc from 132.145.160.32 port 58484 ssh2	2020-06-25 18:16:39
222.186.175.202	attack	Jun 25 11:50:24 santamaria sshd\[13912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Jun 25 11:50:26 santamaria sshd\[13912\]: Failed password for root from 222.186.175.202 port 19396 ssh2 Jun 25 11:50:29 santamaria sshd\[13912\]: Failed password for root from 222.186.175.202 port 19396 ssh2 ...	2020-06-25 18:06:51
112.85.42.176	attackbotsspam	2020-06-25T12:20:57.509843ns386461 sshd\[18235\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root 2020-06-25T12:20:59.430426ns386461 sshd\[18235\]: Failed password for root from 112.85.42.176 port 16475 ssh2 2020-06-25T12:21:02.792667ns386461 sshd\[18235\]: Failed password for root from 112.85.42.176 port 16475 ssh2 2020-06-25T12:21:06.370537ns386461 sshd\[18235\]: Failed password for root from 112.85.42.176 port 16475 ssh2 2020-06-25T12:21:09.695646ns386461 sshd\[18235\]: Failed password for root from 112.85.42.176 port 16475 ssh2 ...	2020-06-25 18:23:37
139.59.254.93	attack	Jun 25 11:51:19 eventyay sshd[28828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.254.93 Jun 25 11:51:22 eventyay sshd[28828]: Failed password for invalid user shreya1 from 139.59.254.93 port 35411 ssh2 Jun 25 11:54:39 eventyay sshd[28915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.254.93 ...	2020-06-25 18:15:16
122.116.38.185	attackspambots	port 23	2020-06-25 18:20:58

Recently Reported IPs

56.107.64.131	117.67.11.190	89.176.146.59	96.55.165.248
45.224.105.211	45.178.1.15	65.52.141.253	125.109.109.121
109.188.134.44	85.68.22.6	3.254.34.45	108.169.158.205
60.88.119.80	110.247.78.89	70.2.255.201	185.26.99.79
128.12.156.5	61.74.224.23	123.21.86.22	14.228.77.170