12.219.242.162

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Advance Capital Services

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port Scan: UDP/137	2019-09-20 22:31:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.219.242.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53258
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;12.219.242.162.			IN	A

;; AUTHORITY SECTION:
.			380	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092000 1800 900 604800 86400

;; Query time: 305 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 20 22:31:08 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 162.242.219.12.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 162.242.219.12.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.133.1.16	attackspam	Triggered by Fail2Ban at Ares web server	2020-04-18 08:09:48
139.59.146.28	attackspam	139.59.146.28 - - [17/Apr/2020:21:20:18 +0200] "GET /wp-login.php HTTP/1.1" 200 5998 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [17/Apr/2020:21:20:19 +0200] "POST /wp-login.php HTTP/1.1" 200 6778 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [17/Apr/2020:21:20:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-18 07:49:06
162.243.131.78	attack	Port Scan: Events[1] countPorts[1]: 27017 ..	2020-04-18 08:09:24
121.54.161.111	attack	Invalid user ip from 121.54.161.111 port 44610	2020-04-18 07:40:09
87.251.74.248	attack	Multiport scan : 30 ports scanned 4018 4054 4084 4085 4091 4102 4161 4181 4301 4320 4352 4456 4494 4560 4604 4606 4676 4702 4718 4721 4786 4841 4842 4859 4877 4922 4936 4949 4973 4981	2020-04-18 08:10:48
156.96.118.133	attackspam	[2020-04-17 15:53:30] NOTICE[1170][C-000016ff] chan_sip.c: Call from '' (156.96.118.133:60069) to extension '011442037695879' rejected because extension not found in context 'public'. [2020-04-17 15:53:30] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-17T15:53:30.630-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442037695879",SessionID="0x7f6c082b17a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.118.133/60069",ACLName="no_extension_match" [2020-04-17 16:02:58] NOTICE[1170][C-00001706] chan_sip.c: Call from '' (156.96.118.133:54090) to extension '9011442037695879' rejected because extension not found in context 'public'. [2020-04-17 16:02:58] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-17T16:02:58.951-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442037695879",SessionID="0x7f6c082b17a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4 ...	2020-04-18 07:48:38
122.114.240.11	attackbots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-04-18 07:49:37
106.75.67.48	attackbotsspam	Apr 18 00:08:23 l03 sshd[9334]: Invalid user ubuntu from 106.75.67.48 port 36394 ...	2020-04-18 08:10:36
138.197.195.52	attackbotsspam	Invalid user sheller from 138.197.195.52 port 36050	2020-04-18 07:57:09
218.106.244.72	attack	[MK-VM6] Blocked by UFW	2020-04-18 08:04:55
106.12.90.45	attackspambots	2020-04-17T23:20:36.904355ns386461 sshd\[4192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.90.45 user=root 2020-04-17T23:20:38.818597ns386461 sshd\[4192\]: Failed password for root from 106.12.90.45 port 38848 ssh2 2020-04-17T23:33:50.806078ns386461 sshd\[15986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.90.45 user=root 2020-04-17T23:33:53.054475ns386461 sshd\[15986\]: Failed password for root from 106.12.90.45 port 41546 ssh2 2020-04-17T23:36:53.214425ns386461 sshd\[18896\]: Invalid user postgres from 106.12.90.45 port 51130 ...	2020-04-18 07:57:27
138.197.179.111	attackspambots	Apr 17 19:07:34 ny01 sshd[9936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.179.111 Apr 17 19:07:36 ny01 sshd[9936]: Failed password for invalid user test2 from 138.197.179.111 port 51870 ssh2 Apr 17 19:10:55 ny01 sshd[10377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.179.111	2020-04-18 07:37:00
186.109.88.187	attackspambots	5x Failed Password	2020-04-18 07:41:06
129.211.17.22	attackbots	Apr 18 01:11:23 haigwepa sshd[13121]: Failed password for backup from 129.211.17.22 port 52002 ssh2 Apr 18 01:15:37 haigwepa sshd[13541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.17.22 ...	2020-04-18 07:35:40
5.104.41.121	attackbots	SMB Server BruteForce Attack	2020-04-18 07:46:45

Recently Reported IPs

172.98.203.164	137.119.113.23	126.68.255.87	124.235.190.57
117.50.126.45	57.235.125.121	90.248.17.202	114.42.68.248
104.46.4.112	96.10.18.18	81.213.193.2	78.128.60.42
72.196.173.194	72.27.10.53	163.121.17.129	70.35.194.177
69.27.130.215	119.196.35.122	115.131.200.159	67.225.220.153