172.12.1.82 - IPInfo

Basic Info

City: Bay City

Region: Michigan

Country: United States

Internet Service Provider: AT&T

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.12.14.44	attack	Invalid user hxeadm from 172.12.14.44 port 42390	2019-08-01 20:35:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.12.1.82
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37266
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;172.12.1.82.			IN	A

;; AUTHORITY SECTION:
.			427	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040301 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 04 05:13:28 CST 2020
;; MSG SIZE  rcvd: 115

Host info

82.1.12.172.in-addr.arpa domain name pointer 172-12-1-82.lightspeed.sgnwmi.sbcglobal.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
82.1.12.172.in-addr.arpa	name = 172-12-1-82.lightspeed.sgnwmi.sbcglobal.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
195.158.24.137	attack	Oct 2 18:21:45 dedicated sshd[23839]: Invalid user ramakiri from 195.158.24.137 port 46598	2019-10-03 00:45:50
191.54.122.140	attackspambots	Automatic report - Port Scan Attack	2019-10-03 01:01:08
34.68.136.212	attack	2019-10-02T17:00:00.416862abusebot-6.cloudsearch.cf sshd\[30873\]: Invalid user ftpuser from 34.68.136.212 port 47440	2019-10-03 01:02:27
46.166.151.47	attackspam	\[2019-10-02 13:16:48\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-02T13:16:48.343-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01246462607509",SessionID="0x7f1e1cc63648",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/52595",ACLName="no_extension_match" \[2019-10-02 13:18:50\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-02T13:18:50.788-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01346462607509",SessionID="0x7f1e1c11c748",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/60220",ACLName="no_extension_match" \[2019-10-02 13:20:53\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-02T13:20:53.089-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01546462607509",SessionID="0x7f1e1c86a428",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/64715",ACLName="no_extens	2019-10-03 01:26:06
88.214.56.58	attack	Oct 2 19:23:44 mail sshd\[13774\]: Invalid user logon from 88.214.56.58 Oct 2 19:23:44 mail sshd\[13774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.214.56.58 Oct 2 19:23:46 mail sshd\[13774\]: Failed password for invalid user logon from 88.214.56.58 port 38624 ssh2	2019-10-03 01:25:21
193.227.47.101	attack	Unauthorized connection attempt from IP address 193.227.47.101 on Port 445(SMB)	2019-10-03 00:44:47
203.237.211.222	attack	2019-10-02T21:38:00.322460enmeeting.mahidol.ac.th sshd\[27321\]: Invalid user i from 203.237.211.222 port 56566 2019-10-02T21:38:00.336611enmeeting.mahidol.ac.th sshd\[27321\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.237.211.222 2019-10-02T21:38:03.111481enmeeting.mahidol.ac.th sshd\[27321\]: Failed password for invalid user i from 203.237.211.222 port 56566 ssh2 ...	2019-10-03 00:46:45
61.157.91.159	attackbots	Oct 2 11:56:39 xb0 sshd[16455]: Failed password for invalid user irvin from 61.157.91.159 port 50268 ssh2 Oct 2 11:56:39 xb0 sshd[16455]: Received disconnect from 61.157.91.159: 11: Bye Bye [preauth] Oct 2 12:21:55 xb0 sshd[21800]: Failed password for invalid user agsadmin from 61.157.91.159 port 50892 ssh2 Oct 2 12:21:56 xb0 sshd[21800]: Received disconnect from 61.157.91.159: 11: Bye Bye [preauth] Oct 2 12:28:15 xb0 sshd[27538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.157.91.159 user=mysql Oct 2 12:28:17 xb0 sshd[27538]: Failed password for mysql from 61.157.91.159 port 39458 ssh2 Oct 2 12:28:18 xb0 sshd[27538]: Received disconnect from 61.157.91.159: 11: Bye Bye [preauth] Oct 2 12:37:28 xb0 sshd[27143]: Failed password for invalid user user from 61.157.91.159 port 44823 ssh2 Oct 2 12:37:28 xb0 sshd[27143]: Received disconnect from 61.157.91.159: 11: Bye Bye [preauth] Oct 2 12:42:03 xb0 sshd[25856]: Failed ........ -------------------------------	2019-10-03 01:09:26
212.147.15.213	attack	Lines containing failures of 212.147.15.213 Sep 30 13:11:41 dns01 sshd[15127]: Invalid user cyberbd from 212.147.15.213 port 18057 Sep 30 13:11:41 dns01 sshd[15127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.147.15.213 Sep 30 13:11:43 dns01 sshd[15127]: Failed password for invalid user cyberbd from 212.147.15.213 port 18057 ssh2 Sep 30 13:11:43 dns01 sshd[15127]: Received disconnect from 212.147.15.213 port 18057:11: Normal Shutdown [preauth] Sep 30 13:11:43 dns01 sshd[15127]: Disconnected from invalid user cyberbd 212.147.15.213 port 18057 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=212.147.15.213	2019-10-03 01:03:38
89.235.113.120	attackspam	B: Magento admin pass /admin/ test (wrong country)	2019-10-03 00:52:01
157.42.62.37	attackspambots	Unauthorized connection attempt from IP address 157.42.62.37 on Port 445(SMB)	2019-10-03 00:50:45
37.139.0.226	attackspambots	Oct 2 18:05:54 vps691689 sshd[4670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.0.226 Oct 2 18:05:56 vps691689 sshd[4670]: Failed password for invalid user tom1 from 37.139.0.226 port 33734 ssh2 Oct 2 18:10:05 vps691689 sshd[4748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.0.226 ...	2019-10-03 00:52:50
124.113.218.153	attackspambots	[Aegis] @ 2019-10-02 13:31:25 0100 -> Sendmail rejected message.	2019-10-03 01:27:09
116.102.97.134	attackspam	Unauthorized connection attempt from IP address 116.102.97.134 on Port 445(SMB)	2019-10-03 01:10:39
188.131.173.220	attackbotsspam	$f2bV_matches	2019-10-03 01:12:10

Recently Reported IPs

155.254.89.107	60.220.25.51	40.91.216.235	194.81.30.218
202.120.18.175	221.117.88.195	95.227.129.186	14.229.113.216
86.41.36.134	196.192.10.245	162.234.168.168	14.167.186.68
92.39.50.81	184.120.92.230	202.24.210.116	99.200.62.220
194.100.35.165	211.2.7.75	203.196.190.156	177.71.217.207