206.214.12.112

Basic Info

City: unknown

Region: unknown

Country: Antigua and Barbuda

Internet Service Provider: Cable & Wireless Antigua and Barbuda Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	(pop3d) Failed POP3 login from 206.214.12.112 (AG/Antigua and Barbuda/206-214-12-112.candw.ag): 1 in the last 3600 secs	2019-07-20 10:31:32

Comments on same subnet:

IP	Type	Details	Datetime
206.214.12.43	attackspambots	(eximsyntax) Exim syntax errors from 206.214.12.43 (AG/Antigua and Barbuda/206-214-12-43.candw.ag): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-04-10 16:37:17 SMTP call from [206.214.12.43] dropped: too many syntax or protocol errors (last command was "?\034?\032?\027?\031?\034?\033?\030?\032?\026?\016?\r?\v?\f? ?")	2020-04-11 00:54:01
206.214.12.30	attackspambots	Invalid user admin from 206.214.12.30 port 34098	2020-01-19 02:58:11
206.214.12.30	attackspam	Unauthorized connection attempt detected from IP address 206.214.12.30 to port 22 [J]	2020-01-18 04:52:55
206.214.12.43	attack	Jan 1 07:18:27 pl2server sshd[29283]: reveeclipse mapping checking getaddrinfo for 206-214-12-43.candw.ag [206.214.12.43] failed - POSSIBLE BREAK-IN ATTEMPT! Jan 1 07:18:27 pl2server sshd[29283]: Invalid user admin from 206.214.12.43 Jan 1 07:18:30 pl2server sshd[29283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.214.12.43 Jan 1 07:18:32 pl2server sshd[29283]: Failed password for invalid user admin from 206.214.12.43 port 60553 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=206.214.12.43	2020-01-01 22:51:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 206.214.12.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30973
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;206.214.12.112.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071902 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 20 10:31:25 CST 2019
;; MSG SIZE  rcvd: 118

Host info

112.12.214.206.in-addr.arpa domain name pointer 206-214-12-112.candw.ag.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
112.12.214.206.in-addr.arpa	name = 206-214-12-112.candw.ag.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.75.19.175	attackspam	Oct 1 03:05:42 SilenceServices sshd[20845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.19.175 Oct 1 03:05:43 SilenceServices sshd[20845]: Failed password for invalid user po from 51.75.19.175 port 56980 ssh2 Oct 1 03:09:52 SilenceServices sshd[22051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.19.175	2019-10-01 09:20:39
223.100.63.187	attack	Sep 30 22:53:47 v22018076622670303 sshd\[22820\]: Invalid user admin from 223.100.63.187 port 9478 Sep 30 22:53:47 v22018076622670303 sshd\[22820\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.100.63.187 Sep 30 22:53:49 v22018076622670303 sshd\[22820\]: Failed password for invalid user admin from 223.100.63.187 port 9478 ssh2 ...	2019-10-01 09:11:31
188.163.170.130	attack	postfix	2019-10-01 08:55:53
80.79.179.2	attackspam	Oct 1 03:47:55 ip-172-31-62-245 sshd\[680\]: Invalid user cafea from 80.79.179.2\ Oct 1 03:47:57 ip-172-31-62-245 sshd\[680\]: Failed password for invalid user cafea from 80.79.179.2 port 43344 ssh2\ Oct 1 03:51:43 ip-172-31-62-245 sshd\[701\]: Invalid user achilles from 80.79.179.2\ Oct 1 03:51:45 ip-172-31-62-245 sshd\[701\]: Failed password for invalid user achilles from 80.79.179.2 port 55530 ssh2\ Oct 1 03:55:35 ip-172-31-62-245 sshd\[737\]: Invalid user admin from 80.79.179.2\	2019-10-01 12:06:42
186.91.242.168	attackbotsspam	19/9/30@16:53:57: FAIL: Alarm-Intrusion address from=186.91.242.168 ...	2019-10-01 09:06:44
179.61.158.102	attackspam	Looking for resource vulnerabilities	2019-10-01 09:15:49
154.66.113.78	attack	Sep 30 23:55:43 core sshd[32744]: Invalid user natasa from 154.66.113.78 port 43250 Sep 30 23:55:46 core sshd[32744]: Failed password for invalid user natasa from 154.66.113.78 port 43250 ssh2 ...	2019-10-01 09:04:14
51.68.220.249	attackspambots	Sep 30 17:49:22 friendsofhawaii sshd\[2381\]: Invalid user david from 51.68.220.249 Sep 30 17:49:22 friendsofhawaii sshd\[2381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=249.ip-51-68-220.eu Sep 30 17:49:24 friendsofhawaii sshd\[2381\]: Failed password for invalid user david from 51.68.220.249 port 50962 ssh2 Sep 30 17:55:30 friendsofhawaii sshd\[2898\]: Invalid user design from 51.68.220.249 Sep 30 17:55:30 friendsofhawaii sshd\[2898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=249.ip-51-68-220.eu	2019-10-01 12:09:45
211.141.124.24	attackbotsspam	SSH brutforce	2019-10-01 09:00:53
165.227.53.38	attackbots	[Aegis] @ 2019-10-01 04:55:25 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-10-01 12:02:37
82.165.35.17	attackbots	Oct 1 02:33:30 nextcloud sshd\[10697\]: Invalid user ftp from 82.165.35.17 Oct 1 02:33:30 nextcloud sshd\[10697\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.165.35.17 Oct 1 02:33:32 nextcloud sshd\[10697\]: Failed password for invalid user ftp from 82.165.35.17 port 58464 ssh2 ...	2019-10-01 08:54:45
207.244.70.35	attack	Oct 1 05:55:14 rotator sshd\[23238\]: Failed password for root from 207.244.70.35 port 45545 ssh2Oct 1 05:55:17 rotator sshd\[23238\]: Failed password for root from 207.244.70.35 port 45545 ssh2Oct 1 05:55:20 rotator sshd\[23238\]: Failed password for root from 207.244.70.35 port 45545 ssh2Oct 1 05:55:23 rotator sshd\[23238\]: Failed password for root from 207.244.70.35 port 45545 ssh2Oct 1 05:55:26 rotator sshd\[23238\]: Failed password for root from 207.244.70.35 port 45545 ssh2Oct 1 05:55:28 rotator sshd\[23238\]: Failed password for root from 207.244.70.35 port 45545 ssh2 ...	2019-10-01 12:08:57
54.39.151.22	attackbotsspam	Oct 1 02:05:16 MK-Soft-Root1 sshd[24970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.151.22 Oct 1 02:05:18 MK-Soft-Root1 sshd[24970]: Failed password for invalid user on from 54.39.151.22 port 43232 ssh2 ...	2019-10-01 09:01:42
123.24.118.114	attackspambots	Sep 30 22:54:18 dev sshd\[6123\]: Invalid user admin from 123.24.118.114 port 60659 Sep 30 22:54:18 dev sshd\[6123\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.24.118.114 Sep 30 22:54:20 dev sshd\[6123\]: Failed password for invalid user admin from 123.24.118.114 port 60659 ssh2	2019-10-01 08:55:39
51.68.230.54	attackbotsspam	Oct 1 00:57:30 anodpoucpklekan sshd[54689]: Invalid user zimbra from 51.68.230.54 port 35176 Oct 1 00:57:31 anodpoucpklekan sshd[54689]: Failed password for invalid user zimbra from 51.68.230.54 port 35176 ssh2 ...	2019-10-01 09:04:53

Recently Reported IPs

136.60.94.102	126.82.97.113	58.186.177.96	92.11.85.58
15.158.138.97	37.187.74.146	87.31.134.115	95.79.81.206
221.173.26.166	34.141.54.184	123.253.143.106	228.213.17.9
98.255.18.1	202.71.92.146	25.139.32.61	106.19.98.164
201.77.138.198	134.209.20.2	104.254.90.251	185.143.221.55