212.42.99.61 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kyrgyzstan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
212.42.99.176	attackspam	Unauthorized connection attempt from IP address 212.42.99.176 on Port 445(SMB)	2020-07-18 07:34:13
212.42.99.176	attackspambots	Unauthorised access (Mar 18) SRC=212.42.99.176 LEN=52 TTL=119 ID=31965 DF TCP DPT=445 WINDOW=8192 SYN	2020-03-19 02:11:35
212.42.99.22	attack	email spam	2019-12-19 16:30:05
212.42.99.32	attackbots	email spam	2019-12-17 18:13:00
212.42.99.22	attackspambots	Sending SPAM email	2019-11-28 03:30:05
212.42.99.22	attackspambots	Mail sent to address obtained from MySpace hack	2019-07-17 15:24:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.42.99.61
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5161
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;212.42.99.61.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 15:26:42 CST 2022
;; MSG SIZE  rcvd: 105

Host info

61.99.42.212.in-addr.arpa domain name pointer 212-42-99-61.elcat.kg.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
61.99.42.212.in-addr.arpa	name = 212-42-99-61.elcat.kg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.180.113	attack	Tried sshing with brute force.	2019-12-24 01:42:33
129.211.45.88	attackspambots	Dec 7 06:58:43 yesfletchmain sshd\[27555\]: Invalid user named from 129.211.45.88 port 58448 Dec 7 06:58:43 yesfletchmain sshd\[27555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.45.88 Dec 7 06:58:45 yesfletchmain sshd\[27555\]: Failed password for invalid user named from 129.211.45.88 port 58448 ssh2 Dec 7 07:05:39 yesfletchmain sshd\[27624\]: Invalid user schaeffner from 129.211.45.88 port 38642 Dec 7 07:05:39 yesfletchmain sshd\[27624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.45.88 ...	2019-12-24 01:56:15
106.13.173.141	attack	Oct 25 07:05:58 vtv3 sshd[22582]: Failed password for invalid user USA@2018 from 106.13.173.141 port 46688 ssh2 Oct 25 07:11:09 vtv3 sshd[25189]: Invalid user ntdx654321 from 106.13.173.141 port 55280 Oct 25 07:11:09 vtv3 sshd[25189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.141 Oct 25 07:21:36 vtv3 sshd[30283]: Invalid user 123456 from 106.13.173.141 port 44238 Oct 25 07:21:36 vtv3 sshd[30283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.141 Oct 25 07:21:38 vtv3 sshd[30283]: Failed password for invalid user 123456 from 106.13.173.141 port 44238 ssh2 Oct 25 07:26:49 vtv3 sshd[336]: Invalid user 123123 from 106.13.173.141 port 52868 Oct 25 07:26:49 vtv3 sshd[336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.141 Dec 23 14:15:25 vtv3 sshd[28356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.141	2019-12-24 01:14:51
129.211.76.101	attackbotsspam	Sep 13 05:41:46 yesfletchmain sshd\[3092\]: Invalid user tom from 129.211.76.101 port 54876 Sep 13 05:41:46 yesfletchmain sshd\[3092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.76.101 Sep 13 05:41:48 yesfletchmain sshd\[3092\]: Failed password for invalid user tom from 129.211.76.101 port 54876 ssh2 Sep 13 05:46:43 yesfletchmain sshd\[3261\]: Invalid user node from 129.211.76.101 port 41398 Sep 13 05:46:43 yesfletchmain sshd\[3261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.76.101 ...	2019-12-24 01:50:35
46.229.168.134	attackbots	Automated report (2019-12-23T17:51:01+00:00). Scraper detected at this address.	2019-12-24 01:54:41
121.66.252.158	attack	Dec 23 17:03:48 MK-Soft-Root1 sshd[11770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.66.252.158 Dec 23 17:03:51 MK-Soft-Root1 sshd[11770]: Failed password for invalid user biyangka from 121.66.252.158 port 39664 ssh2 ...	2019-12-24 01:40:00
183.83.87.62	attackbotsspam	1577113078 - 12/23/2019 15:57:58 Host: 183.83.87.62/183.83.87.62 Port: 445 TCP Blocked	2019-12-24 01:28:59
122.49.216.108	attackspambots	Dec 23 15:52:57 relay postfix/smtpd\[8633\]: warning: unknown\[122.49.216.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 15:54:04 relay postfix/smtpd\[8627\]: warning: unknown\[122.49.216.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 15:54:09 relay postfix/smtpd\[8633\]: warning: unknown\[122.49.216.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 15:57:13 relay postfix/smtpd\[7563\]: warning: unknown\[122.49.216.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 15:57:33 relay postfix/smtpd\[8628\]: warning: unknown\[122.49.216.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-24 01:54:04
212.156.132.182	attack	Dec 23 15:26:36 pi sshd\[18529\]: Failed password for invalid user ident from 212.156.132.182 port 49773 ssh2 Dec 23 15:32:19 pi sshd\[18786\]: Invalid user giacomelli from 212.156.132.182 port 51819 Dec 23 15:32:19 pi sshd\[18786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.132.182 Dec 23 15:32:21 pi sshd\[18786\]: Failed password for invalid user giacomelli from 212.156.132.182 port 51819 ssh2 Dec 23 15:38:05 pi sshd\[19029\]: Invalid user uftp from 212.156.132.182 port 53880 Dec 23 15:38:05 pi sshd\[19029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.132.182 Dec 23 15:38:06 pi sshd\[19029\]: Failed password for invalid user uftp from 212.156.132.182 port 53880 ssh2 Dec 23 15:43:57 pi sshd\[19257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.132.182 user=root Dec 23 15:43:59 pi sshd\[19257\]: Failed password for root ...	2019-12-24 01:36:12
123.24.242.6	attackbotsspam	1577113087 - 12/23/2019 15:58:07 Host: 123.24.242.6/123.24.242.6 Port: 445 TCP Blocked	2019-12-24 01:18:48
51.83.33.156	attackspambots	Dec 23 16:52:49 vps691689 sshd[30090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.33.156 Dec 23 16:52:51 vps691689 sshd[30090]: Failed password for invalid user webapp from 51.83.33.156 port 37632 ssh2 Dec 23 16:57:55 vps691689 sshd[30182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.33.156 ...	2019-12-24 01:15:20
180.180.152.75	attackbotsspam	180.180.152.75 - - [23/Dec/2019:09:57:56 -0500] "GET /index.cfm?page=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00&manufacturerID=15&collectionID=161 HTTP/1.1" 200 19267 "https:// /index.cfm?page=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00&manufacturerID=15&collectionID=161" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-12-24 01:31:17
184.105.139.103	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-24 01:35:08
103.74.123.38	attack	Dec 23 17:36:09 MainVPS sshd[3840]: Invalid user riggsbee from 103.74.123.38 port 47224 Dec 23 17:36:10 MainVPS sshd[3840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.74.123.38 Dec 23 17:36:09 MainVPS sshd[3840]: Invalid user riggsbee from 103.74.123.38 port 47224 Dec 23 17:36:12 MainVPS sshd[3840]: Failed password for invalid user riggsbee from 103.74.123.38 port 47224 ssh2 Dec 23 17:42:17 MainVPS sshd[15668]: Invalid user harnek from 103.74.123.38 port 59600 ...	2019-12-24 01:17:06
124.156.50.191	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-24 01:45:43

Recently Reported IPs

165.232.177.211	39.114.134.70	187.162.139.218	54.184.191.209
85.208.98.30	144.0.45.213	2.92.244.84	115.58.66.59
197.1.69.172	188.149.183.196	78.87.183.129	61.52.87.238
175.158.218.22	189.208.93.181	151.235.223.134	189.210.135.220
122.191.204.182	109.237.96.128	82.214.165.254	45.158.185.209