72.142.12.130 - IPInfo

Basic Info

City: Kitchener

Region: Ontario

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
72.142.126.27	attackspambots	SSH Bruteforce	2019-11-17 20:12:12
72.142.126.27	attackspam	'Fail2Ban'	2019-11-12 08:25:03
72.142.126.27	attackspam	Nov 3 09:36:28 raspberrypi sshd\[9996\]: Address 72.142.126.27 maps to unallocated-static.rogers.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Nov 3 09:36:28 raspberrypi sshd\[9996\]: Invalid user admin from 72.142.126.27Nov 3 09:36:39 raspberrypi sshd\[9996\]: Failed password for invalid user admin from 72.142.126.27 port 36314 ssh2 ...	2019-11-03 19:04:00

Type

Details

Datetime

72.142.126.27

attackspambots

SSH Bruteforce

2019-11-17 20:12:12

72.142.126.27

attackspam

'Fail2Ban'

2019-11-12 08:25:03

72.142.126.27

attackspam

Nov  3 09:36:28 raspberrypi sshd\[9996\]: Address 72.142.126.27 maps to unallocated-static.rogers.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Nov  3 09:36:28 raspberrypi sshd\[9996\]: Invalid user admin from 72.142.126.27Nov  3 09:36:39 raspberrypi sshd\[9996\]: Failed password for invalid user admin from 72.142.126.27 port 36314 ssh2
...

2019-11-03 19:04:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 72.142.12.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21717
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;72.142.12.130.			IN	A

;; AUTHORITY SECTION:
.			370	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081701 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 18 08:12:01 CST 2020
;; MSG SIZE  rcvd: 117

Host info

130.12.142.72.in-addr.arpa domain name pointer unallocated-static.rogers.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.12.142.72.in-addr.arpa	name = unallocated-static.rogers.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.224	attackspam	Multiple SSH login attempts.	2020-08-13 05:56:58
190.15.198.192	attack	20/8/12@17:03:52: FAIL: Alarm-Network address from=190.15.198.192 ...	2020-08-13 05:31:15
222.186.30.35	attackspambots	2020-08-12T23:29:36.765835centos sshd[24234]: Failed password for root from 222.186.30.35 port 29253 ssh2 2020-08-12T23:29:38.113827centos sshd[24234]: Failed password for root from 222.186.30.35 port 29253 ssh2 2020-08-12T23:29:41.343493centos sshd[24234]: Failed password for root from 222.186.30.35 port 29253 ssh2 ...	2020-08-13 05:30:47
34.211.51.245	attackbotsspam	port scan and connect, tcp 443 (https)	2020-08-13 05:52:18
45.6.100.234	attackbotsspam	Aug 12 21:46:06 django-0 sshd[15926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.6.100.234 user=root Aug 12 21:46:08 django-0 sshd[15926]: Failed password for root from 45.6.100.234 port 42400 ssh2 ...	2020-08-13 05:47:44
124.234.200.49	attack	SMB Server BruteForce Attack	2020-08-13 05:32:58
106.12.209.57	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-08-13 06:06:54
159.89.115.126	attack	(sshd) Failed SSH login from 159.89.115.126 (CA/Canada/-): 5 in the last 3600 secs	2020-08-13 05:40:47
218.92.0.248	attack	2020-08-12T21:51:31.255759shield sshd\[23006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.248 user=root 2020-08-12T21:51:33.013919shield sshd\[23006\]: Failed password for root from 218.92.0.248 port 25208 ssh2 2020-08-12T21:51:36.079817shield sshd\[23006\]: Failed password for root from 218.92.0.248 port 25208 ssh2 2020-08-12T21:51:39.558590shield sshd\[23006\]: Failed password for root from 218.92.0.248 port 25208 ssh2 2020-08-12T21:51:42.783772shield sshd\[23006\]: Failed password for root from 218.92.0.248 port 25208 ssh2	2020-08-13 05:59:17
152.136.112.251	attackspambots	SSH Brute-Forcing (server1)	2020-08-13 05:58:20
61.178.58.15	attackbotsspam	Email rejected due to spam filtering	2020-08-13 06:07:12
192.141.107.58	attackspam	Aug 12 23:03:16 cosmoit sshd[22381]: Failed password for root from 192.141.107.58 port 48344 ssh2	2020-08-13 05:55:28
94.23.222.130	attackspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-13 06:04:38
217.182.68.93	attackspam	Aug 12 22:59:51 vps639187 sshd\[11525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.68.93 user=root Aug 12 22:59:53 vps639187 sshd\[11525\]: Failed password for root from 217.182.68.93 port 35416 ssh2 Aug 12 23:03:50 vps639187 sshd\[11609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.68.93 user=root ...	2020-08-13 05:31:57
61.177.172.128	attack	2020-08-12T21:31:23.411310vps1033 sshd[2502]: Failed password for root from 61.177.172.128 port 56168 ssh2 2020-08-12T21:31:27.038363vps1033 sshd[2502]: Failed password for root from 61.177.172.128 port 56168 ssh2 2020-08-12T21:31:29.877186vps1033 sshd[2502]: Failed password for root from 61.177.172.128 port 56168 ssh2 2020-08-12T21:31:33.127282vps1033 sshd[2502]: Failed password for root from 61.177.172.128 port 56168 ssh2 2020-08-12T21:31:36.457147vps1033 sshd[2502]: Failed password for root from 61.177.172.128 port 56168 ssh2 ...	2020-08-13 05:43:16

Recently Reported IPs

164.156.108.167	212.149.77.15	178.56.77.59	89.180.108.129
121.206.26.180	103.140.136.212	211.20.235.125	52.238.128.12
103.133.104.222	110.204.163.27	95.50.154.129	113.183.9.241
37.238.87.53	79.219.56.145	40.129.51.132	93.152.112.135
151.139.70.6	42.230.110.47	207.140.50.93	125.78.52.20