107.172.82.134

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
107.172.82.222	attack	Sep 23 23:08:24 herz-der-gamer sshd[26969]: Invalid user ir from 107.172.82.222 port 39432 ...	2019-09-24 07:55:02
107.172.82.222	attackbots	Sep 23 02:40:53 ny01 sshd[26463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.82.222 Sep 23 02:40:55 ny01 sshd[26463]: Failed password for invalid user 1234 from 107.172.82.222 port 50194 ssh2 Sep 23 02:45:10 ny01 sshd[27237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.82.222	2019-09-23 14:58:12
107.172.82.222	attackbots	Sep 21 19:23:09 web1 sshd[3833]: Address 107.172.82.222 maps to 107-172-82-222-host.colocrossing.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 21 19:23:09 web1 sshd[3833]: Invalid user zf from 107.172.82.222 Sep 21 19:23:09 web1 sshd[3833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.82.222 Sep 21 19:23:11 web1 sshd[3833]: Failed password for invalid user zf from 107.172.82.222 port 60268 ssh2 Sep 21 19:23:12 web1 sshd[3833]: Received disconnect from 107.172.82.222: 11: Bye Bye [preauth] Sep 21 19:39:14 web1 sshd[5247]: Address 107.172.82.222 maps to 107-172-82-222-host.colocrossing.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 21 19:39:14 web1 sshd[5247]: Invalid user openerp from 107.172.82.222 Sep 21 19:39:14 web1 sshd[5247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.82.222 Sep 21 19:39:17 web1........ -------------------------------	2019-09-22 12:06:40
107.172.82.222	attack	Sep 21 19:23:09 web1 sshd[3833]: Address 107.172.82.222 maps to 107-172-82-222-host.colocrossing.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 21 19:23:09 web1 sshd[3833]: Invalid user zf from 107.172.82.222 Sep 21 19:23:09 web1 sshd[3833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.82.222 Sep 21 19:23:11 web1 sshd[3833]: Failed password for invalid user zf from 107.172.82.222 port 60268 ssh2 Sep 21 19:23:12 web1 sshd[3833]: Received disconnect from 107.172.82.222: 11: Bye Bye [preauth] Sep 21 19:39:14 web1 sshd[5247]: Address 107.172.82.222 maps to 107-172-82-222-host.colocrossing.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 21 19:39:14 web1 sshd[5247]: Invalid user openerp from 107.172.82.222 Sep 21 19:39:14 web1 sshd[5247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.172.82.222 Sep 21 19:39:17 web1........ -------------------------------	2019-09-22 10:06:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.172.82.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10813
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;107.172.82.134.			IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 76 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 22:08:33 CST 2022
;; MSG SIZE  rcvd: 107

Host info

134.82.172.107.in-addr.arpa domain name pointer 107-172-82-134-host.colocrossing.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.82.172.107.in-addr.arpa	name = 107-172-82-134-host.colocrossing.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
179.180.130.170	attack	May 21 07:47:24 hurricane sshd[5801]: Invalid user zbp from 179.180.130.170 port 58074 May 21 07:47:24 hurricane sshd[5801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.180.130.170 May 21 07:47:26 hurricane sshd[5801]: Failed password for invalid user zbp from 179.180.130.170 port 58074 ssh2 May 21 07:47:26 hurricane sshd[5801]: Received disconnect from 179.180.130.170 port 58074:11: Bye Bye [preauth] May 21 07:47:26 hurricane sshd[5801]: Disconnected from 179.180.130.170 port 58074 [preauth] May 21 07:49:40 hurricane sshd[5813]: Invalid user ep from 179.180.130.170 port 45190 May 21 07:49:40 hurricane sshd[5813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.180.130.170 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=179.180.130.170	2020-05-21 20:44:40
222.186.190.2	attackbots	2020-05-21T15:05:56.827926afi-git.jinr.ru sshd[8752]: Failed password for root from 222.186.190.2 port 24650 ssh2 2020-05-21T15:05:59.849419afi-git.jinr.ru sshd[8752]: Failed password for root from 222.186.190.2 port 24650 ssh2 2020-05-21T15:06:03.281036afi-git.jinr.ru sshd[8752]: Failed password for root from 222.186.190.2 port 24650 ssh2 2020-05-21T15:06:03.281148afi-git.jinr.ru sshd[8752]: error: maximum authentication attempts exceeded for root from 222.186.190.2 port 24650 ssh2 [preauth] 2020-05-21T15:06:03.281161afi-git.jinr.ru sshd[8752]: Disconnecting: Too many authentication failures [preauth] ...	2020-05-21 20:07:33
159.89.231.2	attack	May 21 09:00:47 ws12vmsma01 sshd[33346]: Invalid user yls from 159.89.231.2 May 21 09:00:48 ws12vmsma01 sshd[33346]: Failed password for invalid user yls from 159.89.231.2 port 56258 ssh2 May 21 09:04:52 ws12vmsma01 sshd[33953]: Invalid user kzp from 159.89.231.2 ...	2020-05-21 20:08:29
167.71.40.124	attackspam	Unauthorized SSH login attempts	2020-05-21 20:43:00
87.251.74.199	attackspam	Excessive Port-Scanning	2020-05-21 20:18:00
80.82.65.253	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 71 - port: 4327 proto: TCP cat: Misc Attack	2020-05-21 20:10:36
45.55.189.252	attack	May 21 12:03:48 *** sshd[326]: Invalid user qmq from 45.55.189.252	2020-05-21 20:44:06
206.189.198.237	attackbotsspam	May 21 14:01:40 legacy sshd[32672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.198.237 May 21 14:01:42 legacy sshd[32672]: Failed password for invalid user lqi from 206.189.198.237 port 34636 ssh2 May 21 14:04:10 legacy sshd[304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.198.237 ...	2020-05-21 20:19:13
5.196.67.41	attack	May 21 14:21:40 OPSO sshd\[9950\]: Invalid user ao from 5.196.67.41 port 53246 May 21 14:21:40 OPSO sshd\[9950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.67.41 May 21 14:21:42 OPSO sshd\[9950\]: Failed password for invalid user ao from 5.196.67.41 port 53246 ssh2 May 21 14:27:57 OPSO sshd\[11187\]: Invalid user zyk from 5.196.67.41 port 33212 May 21 14:27:57 OPSO sshd\[11187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.67.41	2020-05-21 20:33:24
183.159.113.25	attack	May 21 14:03:15 localhost postfix/smtpd\[32289\]: warning: unknown\[183.159.113.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 21 14:03:24 localhost postfix/smtpd\[305\]: warning: unknown\[183.159.113.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 21 14:03:43 localhost postfix/smtpd\[32289\]: warning: unknown\[183.159.113.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 21 14:04:01 localhost postfix/smtpd\[32289\]: warning: unknown\[183.159.113.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 21 14:04:09 localhost postfix/smtpd\[305\]: warning: unknown\[183.159.113.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-21 20:19:35
185.186.240.2	attackspam	2020-05-21T07:41:20.0073401495-001 sshd[49285]: Invalid user spe from 185.186.240.2 port 33590 2020-05-21T07:41:22.1885241495-001 sshd[49285]: Failed password for invalid user spe from 185.186.240.2 port 33590 ssh2 2020-05-21T07:45:40.4909721495-001 sshd[49391]: Invalid user ovs from 185.186.240.2 port 59980 2020-05-21T07:45:40.4985511495-001 sshd[49391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.186.240.2 2020-05-21T07:45:40.4909721495-001 sshd[49391]: Invalid user ovs from 185.186.240.2 port 59980 2020-05-21T07:45:42.6951571495-001 sshd[49391]: Failed password for invalid user ovs from 185.186.240.2 port 59980 ssh2 ...	2020-05-21 20:42:32
152.32.240.76	attack	May 21 14:04:15 sshd\[11589\]: Invalid user bda from 152.32.240.76May 21 14:04:18 sshd\[11589\]: Failed password for invalid user bda from 152.32.240.76 port 46534 ssh2 ...	2020-05-21 20:08:46
162.247.74.201	attack	2020-05-21T13:58:34.908518wiz-ks3 sshd[21083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.201 user=root 2020-05-21T13:58:36.361850wiz-ks3 sshd[21083]: Failed password for root from 162.247.74.201 port 48580 ssh2 2020-05-21T14:02:34.371107wiz-ks3 sshd[21254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.201 user=root 2020-05-21T14:02:36.772682wiz-ks3 sshd[21254]: Failed password for root from 162.247.74.201 port 42962 ssh2 2020-05-21T14:03:35.430973wiz-ks3 sshd[21302]: Invalid user admin from 162.247.74.201 port 56926 2020-05-21T14:03:35.747548wiz-ks3 sshd[21302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.201 2020-05-21T14:03:35.430973wiz-ks3 sshd[21302]: Invalid user admin from 162.247.74.201 port 56926 2020-05-21T14:03:37.522108wiz-ks3 sshd[21302]: Failed password for invalid user admin from 162.247.74.201 port 56926 ssh2 2020-05-21T14:04:03.	2020-05-21 20:24:58
222.186.15.62	attack	May 21 08:04:08 NPSTNNYC01T sshd[19212]: Failed password for root from 222.186.15.62 port 12482 ssh2 May 21 08:04:20 NPSTNNYC01T sshd[19221]: Failed password for root from 222.186.15.62 port 58961 ssh2 ...	2020-05-21 20:13:34
66.249.155.244	attackspam	May 21 14:55:36 pkdns2 sshd\[52110\]: Invalid user pxh from 66.249.155.244May 21 14:55:38 pkdns2 sshd\[52110\]: Failed password for invalid user pxh from 66.249.155.244 port 49024 ssh2May 21 14:59:52 pkdns2 sshd\[52308\]: Invalid user yh from 66.249.155.244May 21 14:59:54 pkdns2 sshd\[52308\]: Failed password for invalid user yh from 66.249.155.244 port 55432 ssh2May 21 15:04:05 pkdns2 sshd\[52578\]: Invalid user lilijin from 66.249.155.244May 21 15:04:07 pkdns2 sshd\[52578\]: Failed password for invalid user lilijin from 66.249.155.244 port 33608 ssh2 ...	2020-05-21 20:20:18

Recently Reported IPs

178.79.189.232	130.61.238.228	187.167.182.171	103.5.125.10
101.43.104.45	201.209.234.143	156.34.180.110	156.214.91.229
96.27.37.123	113.214.20.189	41.60.232.13	89.212.62.232
117.213.24.97	114.40.74.108	59.144.184.110	157.190.185.231
69.203.100.137	14.231.59.236	45.116.106.105	119.120.228.173