212.42.117.207

Basic Info

City: unknown

Region: unknown

Country: Kyrgyzstan

Internet Service Provider: ElCat Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	email spam	2019-12-19 18:17:31

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.42.117.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46742
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.42.117.207.			IN	A

;; AUTHORITY SECTION:
.			499	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121900 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 19 18:17:28 CST 2019
;; MSG SIZE  rcvd: 118

Host info

207.117.42.212.in-addr.arpa domain name pointer 212-42-117-207.elcat.kg.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
207.117.42.212.in-addr.arpa	name = 212-42-117-207.elcat.kg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
43.239.220.52	attack	Aug 29 04:33:48 NPSTNNYC01T sshd[9811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.239.220.52 Aug 29 04:33:50 NPSTNNYC01T sshd[9811]: Failed password for invalid user kermit from 43.239.220.52 port 60373 ssh2 Aug 29 04:37:23 NPSTNNYC01T sshd[10599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.239.220.52 ...	2020-08-29 16:56:55
220.231.127.6	attack	Unauthorized IMAP connection attempt	2020-08-29 16:30:33
112.238.191.154	attackbotsspam	23/tcp 37215/tcp... [2020-08-17/28]9pkt,2pt.(tcp)	2020-08-29 16:35:04
218.58.163.152	attack	Unauthorised access (Aug 29) SRC=218.58.163.152 LEN=40 TTL=46 ID=43623 TCP DPT=8080 WINDOW=11120 SYN Unauthorised access (Aug 27) SRC=218.58.163.152 LEN=40 TTL=46 ID=3043 TCP DPT=8080 WINDOW=11120 SYN Unauthorised access (Aug 26) SRC=218.58.163.152 LEN=40 TTL=45 ID=35382 TCP DPT=8080 WINDOW=11120 SYN	2020-08-29 16:48:09
220.134.89.118	attackbots	23/tcp 23/tcp 23/tcp [2020-08-03/29]3pkt	2020-08-29 16:41:22
118.89.231.109	attackbotsspam	Input Traffic from this IP, but critial abuseconfidencescore	2020-08-29 16:54:41
114.41.227.19	attack	Brute forcing RDP port 3389	2020-08-29 16:21:05
194.29.63.96	attack	Aug 29 10:31:16 abendstille sshd\[15687\]: Invalid user admin from 194.29.63.96 Aug 29 10:31:16 abendstille sshd\[15687\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.29.63.96 Aug 29 10:31:18 abendstille sshd\[15687\]: Failed password for invalid user admin from 194.29.63.96 port 33252 ssh2 Aug 29 10:35:04 abendstille sshd\[19265\]: Invalid user xzh from 194.29.63.96 Aug 29 10:35:04 abendstille sshd\[19265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.29.63.96 ...	2020-08-29 16:36:09
183.88.225.4	attackbotsspam	Unauthorized connection attempt from IP address 183.88.225.4 on Port 445(SMB)	2020-08-29 16:19:33
190.181.4.2	attackspam	Unauthorized connection attempt from IP address 190.181.4.2 on Port 445(SMB)	2020-08-29 16:26:23
42.6.223.3	attackbotsspam	TCP Port Scanning	2020-08-29 16:29:19
183.89.212.228	attack	Dovecot Invalid User Login Attempt.	2020-08-29 16:51:17
119.29.65.240	attack	Aug 28 19:58:59 tdfoods sshd\[30413\]: Invalid user fenix from 119.29.65.240 Aug 28 19:58:59 tdfoods sshd\[30413\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.65.240 Aug 28 19:59:00 tdfoods sshd\[30413\]: Failed password for invalid user fenix from 119.29.65.240 port 46412 ssh2 Aug 28 20:02:53 tdfoods sshd\[30741\]: Invalid user Linux from 119.29.65.240 Aug 28 20:02:53 tdfoods sshd\[30741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.65.240	2020-08-29 16:47:10
103.231.45.234	attackbots	Unauthorized connection attempt from IP address 103.231.45.234 on Port 445(SMB)	2020-08-29 16:25:05
45.142.120.183	attackbots	2020-08-29 10:24:55 dovecot_login authenticator failed for \(User\) \[45.142.120.183\]: 535 Incorrect authentication data \(set_id=shimoyama@no-server.de\) 2020-08-29 10:24:56 dovecot_login authenticator failed for \(User\) \[45.142.120.183\]: 535 Incorrect authentication data \(set_id=shimoyama@no-server.de\) 2020-08-29 10:24:57 dovecot_login authenticator failed for \(User\) \[45.142.120.183\]: 535 Incorrect authentication data \(set_id=shimoyama@no-server.de\) 2020-08-29 10:25:11 dovecot_login authenticator failed for \(User\) \[45.142.120.183\]: 535 Incorrect authentication data \(set_id=sochi@no-server.de\) 2020-08-29 10:25:31 dovecot_login authenticator failed for \(User\) \[45.142.120.183\]: 535 Incorrect authentication data \(set_id=sochi@no-server.de\) 2020-08-29 10:25:36 dovecot_login authenticator failed for \(User\) \[45.142.120.183\]: 535 Incorrect authentication data \(set_id=sochi@no-server.de\) 2020-08-29 10:25:37 dovecot_login authenticator failed for \(User\) \[45.142 ...	2020-08-29 16:45:38

Recently Reported IPs

213.136.69.52	212.129.24.206	202.150.148.218	201.148.122.232
197.3.226.58	195.29.75.8	188.212.159.97	185.186.143.174
146.185.219.34	134.73.51.112	134.73.51.22	134.73.31.152
103.224.88.28	93.159.213.30	69.94.131.123	63.83.78.163
45.165.68.2	45.146.203.170	45.143.98.188	45.143.98.182