109.205.213.12

Basic Info

City: unknown

Region: unknown

Country: Azerbaijan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
109.205.213.99	spambotsattack	Apache attacker IP	2025-06-04 12:48:31
109.205.213.238	attack	Scan ports, hacking.	2024-06-24 01:25:23
109.205.213.246	attack	Scan port	2024-02-01 13:37:26
109.205.213.30	proxy	VPN fraud	2023-06-07 12:49:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.205.213.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53995
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.205.213.12.			IN	A

;; AUTHORITY SECTION:
.			560	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100801 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 09 02:36:22 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 12.213.205.109.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.213.205.109.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.169	attackbotsspam	2020-04-25T18:28:13.174507xentho-1 sshd[163403]: Failed password for root from 222.186.175.169 port 35488 ssh2 2020-04-25T18:28:07.107506xentho-1 sshd[163403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root 2020-04-25T18:28:09.209134xentho-1 sshd[163403]: Failed password for root from 222.186.175.169 port 35488 ssh2 2020-04-25T18:28:13.174507xentho-1 sshd[163403]: Failed password for root from 222.186.175.169 port 35488 ssh2 2020-04-25T18:28:17.138571xentho-1 sshd[163403]: Failed password for root from 222.186.175.169 port 35488 ssh2 2020-04-25T18:28:07.107506xentho-1 sshd[163403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root 2020-04-25T18:28:09.209134xentho-1 sshd[163403]: Failed password for root from 222.186.175.169 port 35488 ssh2 2020-04-25T18:28:13.174507xentho-1 sshd[163403]: Failed password for root from 222.186.175.169 port 35488 ssh2 2020-0 ...	2020-04-26 06:39:32
185.81.99.198	attackbotsspam	2020-04-25T22:36:38.263765randservbullet-proofcloud-66.localdomain sshd[14814]: Invalid user sonar from 185.81.99.198 port 53622 2020-04-25T22:36:38.268280randservbullet-proofcloud-66.localdomain sshd[14814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.81.99.198 2020-04-25T22:36:38.263765randservbullet-proofcloud-66.localdomain sshd[14814]: Invalid user sonar from 185.81.99.198 port 53622 2020-04-25T22:36:40.519162randservbullet-proofcloud-66.localdomain sshd[14814]: Failed password for invalid user sonar from 185.81.99.198 port 53622 ssh2 ...	2020-04-26 06:56:20
109.169.20.189	attack	Invalid user be from 109.169.20.189 port 54692	2020-04-26 07:14:07
125.124.40.19	attackspam	Invalid user zg from 125.124.40.19 port 51792	2020-04-26 07:11:45
218.201.62.71	attackbots	WordPress login Brute force / Web App Attack on client site.	2020-04-26 07:12:29
77.40.2.19	attack	warning: unknown[77.40.2.19]: SASL PLAIN authentication failed	2020-04-26 07:09:59
49.235.69.80	attack	Apr 26 00:37:39 eventyay sshd[2120]: Failed password for root from 49.235.69.80 port 40956 ssh2 Apr 26 00:42:51 eventyay sshd[2363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.69.80 Apr 26 00:42:53 eventyay sshd[2363]: Failed password for invalid user hanna from 49.235.69.80 port 45948 ssh2 ...	2020-04-26 06:51:23
114.67.123.3	attackbotsspam	Invalid user vy from 114.67.123.3 port 2898	2020-04-26 06:47:20
77.247.181.162	attackspam	[Sun Apr 26 04:00:42.536691 2020] [:error] [pid 5670:tid 140006048405248] [client 77.247.181.162:56642] [client 77.247.181.162] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_HEADERS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1224"] [id "920320"] [msg "Missing User Agent Header"] [severity "NOTICE"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/MISSING_HEADER_UA"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Indeks_Presipitasi_Terstandarisasi_SPI_3_Bulanan-Update-1_Bulan_Sekali/Prakiraan_Indeks_Presipitasi_Terstandarisasi_SPI_3_Bulanan_di_Provinsi_Jawa_Timur/2019/12/Prakiraan_Bulanan_Indeks_Kekeringan_dan_Keab ...	2020-04-26 06:49:31
51.83.77.224	attackbotsspam	$f2bV_matches	2020-04-26 06:50:55
118.100.116.155	attack	Invalid user admin from 118.100.116.155 port 34282	2020-04-26 07:02:25
47.100.240.129	attack	47.100.240.129 - - \[25/Apr/2020:22:25:06 +0200\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 47.100.240.129 - - \[25/Apr/2020:22:25:08 +0200\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 47.100.240.129 - - \[25/Apr/2020:22:25:09 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-04-26 06:57:30
178.16.175.146	attackbots	Apr 26 05:16:30 itv-usvr-02 sshd[13160]: Invalid user admin from 178.16.175.146 port 58510	2020-04-26 06:52:00
43.248.127.244	attack	Apr 24 20:17:39 clarabelen sshd[3344]: Invalid user sc from 43.248.127.244 Apr 24 20:17:39 clarabelen sshd[3344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.248.127.244 Apr 24 20:17:41 clarabelen sshd[3344]: Failed password for invalid user sc from 43.248.127.244 port 51460 ssh2 Apr 24 20:17:41 clarabelen sshd[3344]: Received disconnect from 43.248.127.244: 11: Bye Bye [preauth] Apr 24 20:33:36 clarabelen sshd[4352]: Invalid user bmakwembere from 43.248.127.244 Apr 24 20:33:36 clarabelen sshd[4352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.248.127.244 Apr 24 20:33:38 clarabelen sshd[4352]: Failed password for invalid user bmakwembere from 43.248.127.244 port 57570 ssh2 Apr 24 20:33:38 clarabelen sshd[4352]: Received disconnect from 43.248.127.244: 11: Bye Bye [preauth] Apr 24 20:37:27 clarabelen sshd[4598]: Invalid user web from 43.248.127.244 Apr 24 20:37:27 clarabelen s........ -------------------------------	2020-04-26 07:11:25
51.137.145.183	attack	Invalid user z from 51.137.145.183 port 44040	2020-04-26 06:50:09

Recently Reported IPs

79.62.158.206	12.83.139.127	229.246.28.60	236.151.138.141
35.92.0.209	235.83.72.112	29.99.165.98	139.117.150.247
94.136.89.41	18.38.10.254	186.33.163.14	43.181.99.32
255.134.188.37	229.248.142.31	158.169.228.153	213.217.73.101
118.88.218.174	246.82.30.185	129.210.9.16	174.88.7.77