JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 212.119.42.251

212.119.42.251 was found in our database!

This IP was reported 4 times. Confidence of Abuse is 0%: ?

ISP	Citytelecom LLC
Usage Type	Fixed Line ISP
ASN	AS33842
Domain Name	crosstelecom.ru
Country	🇷🇺 Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 212.119.42.251

Whois 212.119.42.251

IP Abuse Reports for 212.119.42.251:

This IP address has been reported a total of 4 times from 3 distinct sources. 212.119.42.251 was first reported on September 28th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Drall	2025-06-12 12:08:00 (1 year ago)	unauthorized sslvpn login attempt remip=212.119.42.251 user="guest" date=2025-06-11 time=20:01:40	Hacking Brute-Force Bad Web Bot Exploited Host
🇺🇸 TPI-Abuse	2025-03-10 13:57:48 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 212.119.42.251 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 212.119.42.251 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 10 09:57:40.031362 2025] [security2:error] [pid 2435666:tid 2435666] [client 212.119.42.251:41265] [client 212.119.42.251] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "myvdi.autobee.biz"] [uri "/.env"] [unique_id "Z87v1Mk7exNjwPFKtm1FawAAAAY"], referer: https://tasamm.com/about/mmm217.html show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-02-17 22:50:58 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 212.119.42.251 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 212.119.42.251 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Feb 17 17:50:52.401922 2025] [security2:error] [pid 1151744:tid 1151744] [client 212.119.42.251:38417] [client 212.119.42.251] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cathrynn.com"] [uri "/.env"] [unique_id "Z7O9TDbtJanaiYpRQTaSAAAAAB0"], referer: https://tasamm.com/about/ccc20.html show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 sms.ru	2024-09-28 09:05:05 (1 year ago)	SMS pumping attack from foreign country	DDoS Attack

Showing 1 to 4 of 4 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 122.168.123.73

🇯🇵 43.128.232.117

🇹🇼 198.235.24.124

🇲🇽 187.191.48.23

🇧🇷 179.189.70.144

🇺🇸 174.35.25.177

🇩🇪 164.92.161.148

🇨🇳 106.75.101.112

🇮🇩 103.98.176.164

🇺🇸 100.50.17.159

🇷🇴 85.121.208.95

🇩🇪 81.88.36.25

🇳🇱 45.153.34.71

🇷🇴 2.57.121.25

🇨🇭 209.99.190.113

🇪🇸 185.174.182.226

🇨🇴 181.50.52.168

🇳🇱 176.65.148.29

🇳🇱 176.65.139.219

🇫🇷 85.217.140.19