12.207.49.94 - IPInfo

Basic Info

City: Miami

Region: Florida

Country: United States

Internet Service Provider: AT&T

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.207.49.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58782
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;12.207.49.94.			IN	A

;; AUTHORITY SECTION:
.			540	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052102 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 22 06:13:05 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 94.49.207.12.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.49.207.12.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
42.113.99.241	attackspam	Sep 7 23:26:12 h2034429 sshd[2595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.113.99.241 user=r.r Sep 7 23:26:14 h2034429 sshd[2595]: Failed password for r.r from 42.113.99.241 port 44588 ssh2 Sep 7 23:26:16 h2034429 sshd[2595]: Failed password for r.r from 42.113.99.241 port 44588 ssh2 Sep 7 23:26:18 h2034429 sshd[2595]: Failed password for r.r from 42.113.99.241 port 44588 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.113.99.241	2019-09-08 14:20:01
193.32.160.135	attackbots	Sep 8 07:02:54 relay postfix/smtpd\[3014\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.135\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.142\]\> Sep 8 07:02:54 relay postfix/smtpd\[3014\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.135\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.142\]\> Sep 8 07:02:54 relay postfix/smtpd\[3014\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.135\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.142\]\> Sep 8 07:02:54 relay postfix/smtpd\[3014\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.135\]: 554 5.7.1 \: Relay access denied\; from=\	2019-09-08 14:15:39
139.199.122.96	attackbots	Sep 8 07:41:40 s64-1 sshd[7545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.122.96 Sep 8 07:41:43 s64-1 sshd[7545]: Failed password for invalid user guest from 139.199.122.96 port 61143 ssh2 Sep 8 07:47:48 s64-1 sshd[7623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.122.96 ...	2019-09-08 14:02:34
177.11.42.25	attack	Sep 7 23:23:08 ghostname-secure sshd[10509]: reveeclipse mapping checking getaddrinfo for 177-11-42-25.virt.com.br [177.11.42.25] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 7 23:23:08 ghostname-secure sshd[10509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.11.42.25 user=r.r Sep 7 23:23:11 ghostname-secure sshd[10509]: Failed password for r.r from 177.11.42.25 port 56579 ssh2 Sep 7 23:23:13 ghostname-secure sshd[10509]: Failed password for r.r from 177.11.42.25 port 56579 ssh2 Sep 7 23:23:16 ghostname-secure sshd[10509]: Failed password for r.r from 177.11.42.25 port 56579 ssh2 Sep 7 23:23:18 ghostname-secure sshd[10509]: Failed password for r.r from 177.11.42.25 port 56579 ssh2 Sep 7 23:23:21 ghostname-secure sshd[10509]: Failed password for r.r from 177.11.42.25 port 56579 ssh2 Sep 7 23:23:22 ghostname-secure sshd[10509]: Failed password for r.r from 177.11.42.25 port 56579 ssh2 Sep 7 23:23:22 ghostname-secure ssh........ -------------------------------	2019-09-08 14:29:17
185.239.237.216	attackbotsspam	Port Scan: TCP/443	2019-09-08 14:22:54
167.99.89.67	attack	Sep 8 01:14:07 vmd17057 sshd\[25240\]: Invalid user username from 167.99.89.67 port 52920 Sep 8 01:14:07 vmd17057 sshd\[25240\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.89.67 Sep 8 01:14:08 vmd17057 sshd\[25240\]: Failed password for invalid user username from 167.99.89.67 port 52920 ssh2 ...	2019-09-08 13:46:33
98.253.233.55	attackspam	Sep 8 07:15:13 amit sshd\[11202\]: Invalid user alex from 98.253.233.55 Sep 8 07:15:13 amit sshd\[11202\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.253.233.55 Sep 8 07:15:15 amit sshd\[11202\]: Failed password for invalid user alex from 98.253.233.55 port 55949 ssh2 ...	2019-09-08 14:03:05
211.24.103.165	attackbots	Automatic report - Banned IP Access	2019-09-08 14:24:35
104.248.191.159	attackspambots	Sep 8 08:00:38 OPSO sshd\[1086\]: Invalid user musikbot from 104.248.191.159 port 48078 Sep 8 08:00:38 OPSO sshd\[1086\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.191.159 Sep 8 08:00:40 OPSO sshd\[1086\]: Failed password for invalid user musikbot from 104.248.191.159 port 48078 ssh2 Sep 8 08:05:20 OPSO sshd\[1931\]: Invalid user test from 104.248.191.159 port 35182 Sep 8 08:05:20 OPSO sshd\[1931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.191.159	2019-09-08 14:10:40
149.202.214.11	attackbotsspam	Sep 7 21:42:51 vm-dfa0dd01 sshd[53529]: Invalid user ubuntu from 149.202.214.11 port 51476 ...	2019-09-08 14:08:18
190.96.49.189	attackbots	Sep 7 16:39:38 sachi sshd\[20985\]: Invalid user test from 190.96.49.189 Sep 7 16:39:38 sachi sshd\[20985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.96.49.189 Sep 7 16:39:40 sachi sshd\[20985\]: Failed password for invalid user test from 190.96.49.189 port 44742 ssh2 Sep 7 16:45:27 sachi sshd\[21463\]: Invalid user scpuser from 190.96.49.189 Sep 7 16:45:27 sachi sshd\[21463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.96.49.189	2019-09-08 14:35:08
35.204.222.34	attackbotsspam	Sep 8 01:57:16 icinga sshd[3341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.204.222.34 Sep 8 01:57:19 icinga sshd[3341]: Failed password for invalid user teamspeak from 35.204.222.34 port 39772 ssh2 ...	2019-09-08 13:44:14
5.248.165.110	attack	Blocked range because of multiple attacks in the past. @ 2019-09-03T17:33:34+02:00.	2019-09-08 14:02:03
188.16.150.175	attackbots	[Sat Sep 07 18:42:22.911053 2019] [:error] [pid 218415] [client 188.16.150.175:53334] [client 188.16.150.175] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 18)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "127.0.0.1"] [uri "/cgi-bin/ViewLog.asp"] [unique_id "XXQkPhaqpcIxu6MeQAnItwAAAAQ"] ...	2019-09-08 14:31:34
139.59.85.59	attack	Sep 8 05:08:32 lnxweb61 sshd[5294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.85.59	2019-09-08 13:46:50

Recently Reported IPs

37.175.48.185	79.120.19.115	145.118.81.185	205.162.109.255
194.248.83.120	84.197.86.64	54.38.196.4	138.207.153.247
78.217.132.196	123.66.56.225	198.232.120.131	36.110.199.160
141.30.91.101	195.219.116.156	175.98.62.155	202.181.254.69
128.211.185.215	125.174.228.63	122.252.222.95	74.65.101.27