172.104.72.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.104.72.116	attack	ET SCAN Suspicious inbound to mySQL port 3306 - port: 3306 proto: TCP cat: Potentially Bad Traffic	2020-06-08 16:05:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.104.72.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4379
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.104.72.12.			IN	A

;; AUTHORITY SECTION:
.			582	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 15:13:39 CST 2022
;; MSG SIZE  rcvd: 106

Host info

12.72.104.172.in-addr.arpa domain name pointer li1682-12.members.linode.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.72.104.172.in-addr.arpa	name = li1682-12.members.linode.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.30.219.88	attackbotsspam	Unauthorized connection attempt from IP address 81.30.219.88 on Port 445(SMB)	2019-09-05 19:07:14
91.121.103.175	attackbotsspam	Sep 5 07:11:28 TORMINT sshd\[26109\]: Invalid user mpiuser from 91.121.103.175 Sep 5 07:11:28 TORMINT sshd\[26109\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.103.175 Sep 5 07:11:30 TORMINT sshd\[26109\]: Failed password for invalid user mpiuser from 91.121.103.175 port 52274 ssh2 ...	2019-09-05 19:27:52
217.174.177.115	attackbots	[portscan] Port scan	2019-09-05 19:34:38
95.7.196.62	attack	Unauthorized connection attempt from IP address 95.7.196.62 on Port 445(SMB)	2019-09-05 19:26:20
46.161.27.122	attackproxy	Trying to VPN attacked	2019-09-05 19:14:49
177.23.185.132	attack	Unauthorized connection attempt from IP address 177.23.185.132 on Port 445(SMB)	2019-09-05 19:37:19
104.45.11.126	attack	F2B jail: sshd. Time: 2019-09-05 13:01:27, Reported by: VKReport	2019-09-05 19:11:23
210.210.175.63	attackspam	Sep 5 12:49:49 rotator sshd\[32268\]: Invalid user vbox from 210.210.175.63Sep 5 12:49:51 rotator sshd\[32268\]: Failed password for invalid user vbox from 210.210.175.63 port 35174 ssh2Sep 5 12:54:08 rotator sshd\[578\]: Invalid user cloud from 210.210.175.63Sep 5 12:54:10 rotator sshd\[578\]: Failed password for invalid user cloud from 210.210.175.63 port 47180 ssh2Sep 5 12:58:25 rotator sshd\[1345\]: Invalid user ftpusr from 210.210.175.63Sep 5 12:58:27 rotator sshd\[1345\]: Failed password for invalid user ftpusr from 210.210.175.63 port 59182 ssh2 ...	2019-09-05 19:20:00
164.132.132.166	attackbots	Unauthorised access (Sep 5) SRC=164.132.132.166 LEN=40 TTL=241 ID=45392 TCP DPT=445 WINDOW=1024 SYN	2019-09-05 18:52:43
36.234.51.5	attackspam	Unauthorized connection attempt from IP address 36.234.51.5 on Port 445(SMB)	2019-09-05 19:18:18
142.93.251.1	attackspam	Sep 5 00:27:36 php1 sshd\[12870\]: Invalid user postgres from 142.93.251.1 Sep 5 00:27:36 php1 sshd\[12870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.251.1 Sep 5 00:27:38 php1 sshd\[12870\]: Failed password for invalid user postgres from 142.93.251.1 port 35208 ssh2 Sep 5 00:32:01 php1 sshd\[13241\]: Invalid user test from 142.93.251.1 Sep 5 00:32:01 php1 sshd\[13241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.251.1	2019-09-05 19:13:31
51.107.87.199	attack	F2B jail: sshd. Time: 2019-09-05 12:04:11, Reported by: VKReport	2019-09-05 19:31:32
167.71.203.148	attack	Sep 5 00:04:59 php2 sshd\[25560\]: Invalid user alex from 167.71.203.148 Sep 5 00:04:59 php2 sshd\[25560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.203.148 Sep 5 00:05:01 php2 sshd\[25560\]: Failed password for invalid user alex from 167.71.203.148 port 55390 ssh2 Sep 5 00:13:13 php2 sshd\[26389\]: Invalid user user from 167.71.203.148 Sep 5 00:13:13 php2 sshd\[26389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.203.148	2019-09-05 19:25:56
202.79.60.37	attack	Unauthorized connection attempt from IP address 202.79.60.37 on Port 445(SMB)	2019-09-05 19:02:56
123.206.51.192	attackspambots	Sep 5 00:53:30 kapalua sshd\[18813\]: Invalid user tom from 123.206.51.192 Sep 5 00:53:30 kapalua sshd\[18813\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.51.192 Sep 5 00:53:32 kapalua sshd\[18813\]: Failed password for invalid user tom from 123.206.51.192 port 51628 ssh2 Sep 5 00:56:07 kapalua sshd\[19064\]: Invalid user web5 from 123.206.51.192 Sep 5 00:56:07 kapalua sshd\[19064\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.51.192	2019-09-05 19:23:38

Recently Reported IPs

172.104.74.18	172.104.77.199	172.104.76.215	172.104.76.14
172.104.77.66	172.104.76.176	172.104.77.94	172.104.78.6
172.104.8.34	172.104.81.213	172.104.82.59	172.104.80.205
172.104.8.232	172.104.8.31	172.104.8.230	172.104.80.18
172.104.82.74	172.104.84.78	172.104.8.243	172.104.84.201