212.42.99.22 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kyrgyzstan

Internet Service Provider: ElCat Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	email spam	2019-12-19 16:30:05
attackspambots	Sending SPAM email	2019-11-28 03:30:05
attackspambots	Mail sent to address obtained from MySpace hack	2019-07-17 15:24:20

Comments on same subnet:

IP	Type	Details	Datetime
212.42.99.176	attackspam	Unauthorized connection attempt from IP address 212.42.99.176 on Port 445(SMB)	2020-07-18 07:34:13
212.42.99.176	attackspambots	Unauthorised access (Mar 18) SRC=212.42.99.176 LEN=52 TTL=119 ID=31965 DF TCP DPT=445 WINDOW=8192 SYN	2020-03-19 02:11:35
212.42.99.32	attackbots	email spam	2019-12-17 18:13:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.42.99.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48257
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.42.99.22.			IN	A

;; AUTHORITY SECTION:
.			3154	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071700 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 17 15:24:09 CST 2019
;; MSG SIZE  rcvd: 116

Host info

22.99.42.212.in-addr.arpa domain name pointer 212-42-99-22.elcat.kg.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
22.99.42.212.in-addr.arpa	name = 212-42-99-22.elcat.kg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.28.108.237	attackbotsspam	Nov 6 07:18:17 srv01 sshd[8994]: Invalid user spamfilter from 218.28.108.237 Nov 6 07:18:17 srv01 sshd[8994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.28.108.237 Nov 6 07:18:17 srv01 sshd[8994]: Invalid user spamfilter from 218.28.108.237 Nov 6 07:18:19 srv01 sshd[8994]: Failed password for invalid user spamfilter from 218.28.108.237 port 3064 ssh2 Nov 6 07:25:25 srv01 sshd[9558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.28.108.237 user=root Nov 6 07:25:27 srv01 sshd[9558]: Failed password for root from 218.28.108.237 port 3066 ssh2 ...	2019-11-06 18:37:48
149.56.23.154	attack	Nov 5 22:33:54 eddieflores sshd\[2985\]: Invalid user piper from 149.56.23.154 Nov 5 22:33:54 eddieflores sshd\[2985\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns529890.ip-149-56-23.net Nov 5 22:33:56 eddieflores sshd\[2985\]: Failed password for invalid user piper from 149.56.23.154 port 36132 ssh2 Nov 5 22:38:04 eddieflores sshd\[3276\]: Invalid user spd from 149.56.23.154 Nov 5 22:38:04 eddieflores sshd\[3276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns529890.ip-149-56-23.net	2019-11-06 18:47:36
123.30.169.85	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-06 18:42:42
202.151.30.141	attackspam	Nov 6 09:03:56 srv01 sshd[14582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.151.30.141 user=root Nov 6 09:03:58 srv01 sshd[14582]: Failed password for root from 202.151.30.141 port 43502 ssh2 Nov 6 09:08:08 srv01 sshd[14830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.151.30.141 user=root Nov 6 09:08:10 srv01 sshd[14830]: Failed password for root from 202.151.30.141 port 50772 ssh2 Nov 6 09:12:19 srv01 sshd[15101]: Invalid user user from 202.151.30.141 ...	2019-11-06 18:40:20
112.85.42.232	attackbotsspam	2019-11-06T10:12:03.348950abusebot-2.cloudsearch.cf sshd\[29729\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.232 user=root	2019-11-06 18:26:04
139.199.193.202	attackspam	Nov 6 12:58:50 server sshd\[13957\]: Invalid user gretchen from 139.199.193.202 Nov 6 12:58:50 server sshd\[13957\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.193.202 Nov 6 12:58:51 server sshd\[13957\]: Failed password for invalid user gretchen from 139.199.193.202 port 50076 ssh2 Nov 6 13:06:27 server sshd\[16109\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.193.202 user=root Nov 6 13:06:29 server sshd\[16109\]: Failed password for root from 139.199.193.202 port 44888 ssh2 ...	2019-11-06 18:36:58
106.13.101.220	attackbots	Nov 6 11:18:13 Ubuntu-1404-trusty-64-minimal sshd\[29415\]: Invalid user system from 106.13.101.220 Nov 6 11:18:13 Ubuntu-1404-trusty-64-minimal sshd\[29415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.220 Nov 6 11:18:15 Ubuntu-1404-trusty-64-minimal sshd\[29415\]: Failed password for invalid user system from 106.13.101.220 port 49830 ssh2 Nov 6 11:22:53 Ubuntu-1404-trusty-64-minimal sshd\[4193\]: Invalid user system from 106.13.101.220 Nov 6 11:22:53 Ubuntu-1404-trusty-64-minimal sshd\[4193\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.220	2019-11-06 18:35:42
101.249.83.94	attack	DATE:2019-11-06 07:12:13, IP:101.249.83.94, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc-bis)	2019-11-06 18:48:00
37.187.100.54	attack	Nov 6 03:36:17 web1 postfix/smtpd[2833]: warning: ks3363565.kimsufi.com[37.187.100.54]: SASL LOGIN authentication failed: authentication failure ...	2019-11-06 18:18:21
222.186.190.2	attack	$f2bV_matches	2019-11-06 18:28:09
217.61.2.167	attackbotsspam	CloudCIX Reconnaissance Scan Detected, PTR: host167-2-61-217.static.arubacloud.de.	2019-11-06 18:12:21
80.211.251.135	attackspambots	" "	2019-11-06 18:16:38
217.61.17.7	attackbots	Nov 5 23:20:57 tdfoods sshd\[16784\]: Invalid user mike from 217.61.17.7 Nov 5 23:20:57 tdfoods sshd\[16784\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.17.7 Nov 5 23:21:00 tdfoods sshd\[16784\]: Failed password for invalid user mike from 217.61.17.7 port 46932 ssh2 Nov 5 23:24:51 tdfoods sshd\[17069\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.17.7 user=root Nov 5 23:24:53 tdfoods sshd\[17069\]: Failed password for root from 217.61.17.7 port 56606 ssh2	2019-11-06 18:32:26
176.125.63.31	attackspambots	Portscan or hack attempt detected by psad/fwsnort	2019-11-06 18:11:55
138.118.103.172	attack	Automatic report - Port Scan Attack	2019-11-06 18:49:43

Recently Reported IPs

62.241.137.119	190.73.31.24	3.108.85.195	173.212.236.223
66.249.79.18	45.5.203.83	14.207.193.10	81.170.171.10
144.217.254.216	77.174.181.45	203.58.84.46	185.126.197.40
10.239.155.239	62.84.19.199	217.220.184.197	242.110.130.173
132.206.103.59	247.39.148.170	47.59.67.186	213.222.161.69