AbuseIPDB » 210.12.68.242

210.12.68.242 was found in our database!

This IP was reported 4,770 times. Confidence of Abuse is 100%: ?

100%

ISP	Tianjin Broadcat&TV Network Co.,Ltd
Usage Type	Fixed Line ISP
ASN	AS4808
Domain Name	gb.com.cn
Country	China
City	Tianjin, Tianjin

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 210.12.68.242

Whois 210.12.68.242

IP Abuse Reports for 210.12.68.242:

This IP address has been reported a total of 4,770 times from 417 distinct sources. 210.12.68.242 was first reported on July 10th 2023, and the most recent report was 21 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
kreativstrecke	2025-04-18 20:08:49 (22 minutes ago)	2025-04-18T22:08:47.222877+02:00 srv03 postfix/smtpd[3759566]: warning: unknown[210.12.68.242]: SASL ... show more2025-04-18T22:08:47.222877+02:00 srv03 postfix/smtpd[3759566]: warning: unknown[210.12.68.242]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=ehel.reitz 2025-04-18T22:08:48.321081+02:00 srv03 postfix/smtpd[3759566]: lost connection after AUTH from unknown[210.12.68.242] 2025-04-18T22:08:48.321140+02:00 srv03 postfix/smtpd[3759566]: disconnect from unknown[210.12.68.242] ehlo=1 auth=0/1 commands=1/2 ... show less	Brute-Force
rtbh.com.tr	2025-04-18 20:06:10 (24 minutes ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
Landon Veitch	2025-04-18 18:40:18 (1 hour ago)	Blocked by Fail2Ban - Exim DDoS Attempt ...	Brute-Force
Swiptly	2025-04-18 17:18:08 (3 hours ago)	Exim Login attempts ...	Email Spam Brute-Force
shimizu	2025-04-18 15:00:01 (5 hours ago)	1 times SMTP brute-force	Hacking Brute-Force
vbios.com	2025-04-18 13:36:47 (6 hours ago)	MAIL_Brute-Force	Brute-Force
Eurofluid	2025-04-18 12:04:43 (8 hours ago)	You shall not pass ! Abusive behavior blocked by EF firewall.	Port Scan Hacking Brute-Force
Anonymous	2025-04-18 08:54:00 (11 hours ago)	Ports: 25,2525,465,587,2525; Direction: 0; Trigger: LF_DISTATTACK	Brute-Force SSH
cticom.ms	2025-04-18 07:09:35 (13 hours ago)	Email Auth Brute force attack 4/3 in last day	Brute-Force
HighSports	2025-04-18 03:46:05 (16 hours ago)	Email Auth Brute force attack 3/3 in last day	Brute-Force
securemailen.nl	2025-04-18 03:06:14 (17 hours ago)	SMTP Brute Force	Brute-Force
MSchienle	2025-04-18 02:48:03 (17 hours ago)	Apr 17 21:43:38 customvisuals postfix/smtpd[63589]: warning: unknown[210.12.68.242]: SASL LOGIN auth ... show moreApr 17 21:43:38 customvisuals postfix/smtpd[63589]: warning: unknown[210.12.68.242]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 show less	Email Spam
TheWojtek	2025-04-18 00:30:51 (20 hours ago)	Apr 18 02:30:50 hq postfix/smtpd[3767125]: warning: unknown[210.12.68.242]: SASL LOGIN authenticatio ... show moreApr 18 02:30:50 hq postfix/smtpd[3767125]: warning: unknown[210.12.68.242]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... show less	Brute-Force
Brian Minton	2025-04-18 00:03:47 (20 hours ago)	2025-04-13 11:39:08 no host name found for IP address 210.12.68.242 2025-04-17 19:03:42 no hos ... show more2025-04-13 11:39:08 no host name found for IP address 210.12.68.242 2025-04-17 19:03:42 no host name found for IP address 210.12.68.242 2025-04-17 19:03:46 H=([210.12.68.242]) [210.12.68.242] F=<[email protected]> rejected RCPT <[email protected]>: Unrouteable address ... show less	Brute-Force
agentics	2025-04-17 21:15:16 (23 hours ago)	210.12.68.242 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale ... show more210.12.68.242 is one of many (potentially hijacked) hosts in a botnet. This attack is a large scale industrial operation attempting unrelenting brute-force login attempts for months on end - between all CIDR ranges in the botnet, our servers receive over 800 authentication attempts per minute on smtp, imap and relative mail ports, as well as ssh, and other protocols. IP INFO: - IP 210.12.68.242 - Anycast false - City N/A - Region N/A - Region Code N/A - Country N/A (N/A) - Continent N/A (N/A) - Range N/A - Provider N/A - Organisation N/A - Proxy N/A - Type N/A show less	DDoS Attack FTP Brute-Force Port Scan Hacking Spoofing Brute-Force Exploited Host

Showing 1 to 15 of 4770 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

120.34.86.88

196.251.93.7

47.128.33.156

80.94.95.189

51.81.215.69

167.71.141.21

198.235.24.200

147.185.132.31

198.235.24.235

152.32.235.36

135.181.156.88

49.124.203.50

61.184.176.231

193.163.125.56

185.93.89.118

209.97.173.167

3.22.97.70

39.155.10.225

193.176.23.6

107.170.228.16