City: unknown
Region: unknown
Country: Kyrgyzstan
Internet Service Provider: ElCat Ltd.
Hostname: unknown
Organization: unknown
Usage Type: Fixed Line ISP
| Type | Details | Datetime |
|---|---|---|
| attackbotsspam | Unauthorized connection attempt detected from IP address 212.42.104.101 to port 445 [T] |
2020-08-14 04:32:27 |
| attackspambots | Port scan: Attack repeated for 24 hours |
2020-08-02 19:33:01 |
| attack | Honeypot attack, port: 445, PTR: kabul.static.elcat.kg. |
2020-02-28 06:37:42 |
| attack | Unauthorized connection attempt detected from IP address 212.42.104.101 to port 1433 [J] |
2020-01-21 13:42:06 |
| attackbotsspam | Unauthorized connection attempt detected from IP address 212.42.104.101 to port 445 [T] |
2020-01-15 22:32:55 |
| attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/212.42.104.101/ KG - 1H : (2) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KG NAME ASN : ASN8449 IP : 212.42.104.101 CIDR : 212.42.104.0/24 PREFIX COUNT : 65 UNIQUE IP COUNT : 17408 WYKRYTE ATAKI Z ASN8449 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-18 14:17:38 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery |
2019-10-18 20:56:36 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 212.42.104.18 | attackbotsspam | Unauthorized connection attempt detected from IP address 212.42.104.18 to port 1433 [T] |
2020-06-14 03:41:06 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.42.104.101
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 574
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.42.104.101. IN A
;; AUTHORITY SECTION:
. 599 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019101800 1800 900 604800 86400
;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 18 20:56:31 CST 2019
;; MSG SIZE rcvd: 118101.104.42.212.in-addr.arpa domain name pointer kabul.static.elcat.kg.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
101.104.42.212.in-addr.arpa name = kabul.static.elcat.kg.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 162.247.74.200 | attackbots | Jul 20 02:07:34 vtv3 sshd\[14667\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.200 user=root Jul 20 02:07:37 vtv3 sshd\[14667\]: Failed password for root from 162.247.74.200 port 35618 ssh2 Jul 20 02:07:40 vtv3 sshd\[14667\]: Failed password for root from 162.247.74.200 port 35618 ssh2 Jul 20 02:07:43 vtv3 sshd\[14667\]: Failed password for root from 162.247.74.200 port 35618 ssh2 Jul 20 02:07:45 vtv3 sshd\[14667\]: Failed password for root from 162.247.74.200 port 35618 ssh2 |
2019-07-20 07:18:18 |
| 104.206.128.22 | attackbotsspam | 20.07.2019 00:33:06 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter |
2019-07-20 07:25:55 |
| 209.85.210.44 | attack | Spam from the domain berkeley-berg.com |
2019-07-20 06:49:54 |
| 92.85.1.207 | attack | 2019-07-19T18:37:02.119834mail01 postfix/smtpd[4304]: NOQUEUE: reject: RCPT from unknown[92.85.1.207]: 550 |
2019-07-20 07:12:08 |
| 118.24.74.84 | attack | 19.07.2019 19:04:39 SSH access blocked by firewall |
2019-07-20 07:29:07 |
| 66.206.246.82 | attack | 23/tcp [2019-07-19]1pkt |
2019-07-20 07:03:07 |
| 51.68.44.13 | attackbots | Jul 19 19:26:59 TORMINT sshd\[14961\]: Invalid user hw from 51.68.44.13 Jul 19 19:26:59 TORMINT sshd\[14961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.44.13 Jul 19 19:27:00 TORMINT sshd\[14961\]: Failed password for invalid user hw from 51.68.44.13 port 58026 ssh2 ... |
2019-07-20 07:33:11 |
| 121.121.78.67 | attack | DATE:2019-07-19 18:36:53, IP:121.121.78.67, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc) |
2019-07-20 07:19:44 |
| 185.220.101.7 | attack | Automatic report - Banned IP Access |
2019-07-20 07:14:03 |
| 2001:41d0:8:697b:: | attack | WordPress wp-login brute force :: 2001:41d0:8:697b:: 0.068 BYPASS [20/Jul/2019:02:37:18 1000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 4214 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2019-07-20 07:08:16 |
| 52.67.71.131 | attackspam | www.geburtshaus-fulda.de 52.67.71.131 \[19/Jul/2019:18:48:23 +0200\] "POST /wp-login.php HTTP/1.1" 200 5786 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.geburtshaus-fulda.de 52.67.71.131 \[19/Jul/2019:18:48:25 +0200\] "POST /wp-login.php HTTP/1.1" 200 5790 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-07-20 06:53:33 |
| 23.236.233.95 | attackbotsspam | (From shortraquel040@gmail.com) Have you tried searching on Google for the products/services your website offers? Does your business site appear on the first page? I'm an expert Online marketing analyst, and I know exactly how to improve your website's rank in search engines. If you're not appearing on the top of search results, you're inevitably missing out on a lot of opportunities. This is because your potential clients are having a difficult time finding you online since they can't find you on the first page of search results. I've been in the field of SEO for over a decade now and I can help you fix that. Using the right information and right tools, it's easy to achieve, and I can do it for an affordable price even small businesses consider truly affordable. This is an opportunity for your business to outshine its competitors. If this is something you're interested on, please reply to inform me, and I will provide you a free consultation to share some expert advice and show you a few case studies |
2019-07-20 06:52:14 |
| 109.104.207.102 | attackbotsspam | Automatic report - Banned IP Access |
2019-07-20 07:33:45 |
| 99.43.104.206 | attack | DATE:2019-07-19_18:37:50, IP:99.43.104.206, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc) |
2019-07-20 06:54:55 |
| 140.143.236.227 | attackspam | Tried sshing with brute force. |
2019-07-20 07:13:39 |