43.242.247.212

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Micronova Network Solutions Pvt. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt from IP address 43.242.247.212 on Port 445(SMB)	2019-07-17 12:18:37

Comments on same subnet:

IP	Type	Details	Datetime
43.242.247.74	attack	SSH Invalid Login	2020-05-06 05:46:22
43.242.247.74	attackbotsspam	Invalid user gch from 43.242.247.74 port 56199	2020-05-01 17:31:52
43.242.247.74	attackspam	Apr 3 02:19:20 *** sshd[13809]: User root from 43.242.247.74 not allowed because not listed in AllowUsers	2020-04-03 11:02:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 43.242.247.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18710
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;43.242.247.212.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 17 12:18:23 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 212.247.242.43.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 212.247.242.43.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.104.199.131	attackspam	Aug 29 02:00:30 mail sshd\[16688\]: Failed password for root from 218.104.199.131 port 54319 ssh2 Aug 29 02:03:37 mail sshd\[17119\]: Invalid user micha from 218.104.199.131 port 39732 Aug 29 02:03:37 mail sshd\[17119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.104.199.131 Aug 29 02:03:38 mail sshd\[17119\]: Failed password for invalid user micha from 218.104.199.131 port 39732 ssh2 Aug 29 02:06:44 mail sshd\[17503\]: Invalid user nadir from 218.104.199.131 port 53372	2019-08-29 08:22:30
167.71.203.150	attackspam	Aug 28 23:54:02 sshgateway sshd\[714\]: Invalid user openkm from 167.71.203.150 Aug 28 23:54:02 sshgateway sshd\[714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.203.150 Aug 28 23:54:04 sshgateway sshd\[714\]: Failed password for invalid user openkm from 167.71.203.150 port 36266 ssh2	2019-08-29 08:43:51
124.43.130.47	attackspam	Aug 28 14:25:25 friendsofhawaii sshd\[29134\]: Invalid user carson from 124.43.130.47 Aug 28 14:25:25 friendsofhawaii sshd\[29134\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.43.130.47 Aug 28 14:25:28 friendsofhawaii sshd\[29134\]: Failed password for invalid user carson from 124.43.130.47 port 30728 ssh2 Aug 28 14:30:02 friendsofhawaii sshd\[29613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.43.130.47 user=root Aug 28 14:30:04 friendsofhawaii sshd\[29613\]: Failed password for root from 124.43.130.47 port 19436 ssh2	2019-08-29 08:37:15
129.226.56.24	attack	129.226.56.24 - - [29/Aug/2019:01:54:05 +0200] "GET /webdav/ HTTP/1.1" 301 178 "-" "Mozilla/5.0" 129.226.56.24 - - [29/Aug/2019:01:54:06 +0200] "GET /help.php HTTP/1.1" 301 178 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0)" ...	2019-08-29 08:42:48
159.65.182.7	attackspam	2019-08-28T23:54:07.718225abusebot-3.cloudsearch.cf sshd\[635\]: Invalid user git from 159.65.182.7 port 35980	2019-08-29 08:40:46
121.42.154.116	attackspambots	Brute forcing Wordpress login	2019-08-29 08:29:03
218.219.246.124	attackbots	Aug 28 20:44:21 plusreed sshd[19948]: Invalid user dwdev from 218.219.246.124 ...	2019-08-29 08:45:49
81.169.245.163	attack	2019-08-29 02:53:33 dovecot_login authenticator failed for h2845182.stratoserver.net (127.0.0.1) [81.169.245.163]: 535 Incorrect authentication data (set_id=root) 2019-08-29 02:53:39 dovecot_login authenticator failed for h2845182.stratoserver.net (127.0.0.1) [81.169.245.163]: 535 Incorrect authentication data (set_id=root) 2019-08-29 02:53:49 dovecot_login authenticator failed for h2845182.stratoserver.net (127.0.0.1) [81.169.245.163]: 535 Incorrect authentication data (set_id=root) ...	2019-08-29 08:57:47
167.71.215.139	attackbots	Aug 28 14:26:13 lcdev sshd\[2029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.215.139 user=root Aug 28 14:26:15 lcdev sshd\[2029\]: Failed password for root from 167.71.215.139 port 55412 ssh2 Aug 28 14:32:18 lcdev sshd\[2624\]: Invalid user shl from 167.71.215.139 Aug 28 14:32:18 lcdev sshd\[2624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.215.139 Aug 28 14:32:20 lcdev sshd\[2624\]: Failed password for invalid user shl from 167.71.215.139 port 46152 ssh2	2019-08-29 08:43:35
124.134.186.27	attackspam	Unauthorised access (Aug 29) SRC=124.134.186.27 LEN=40 TTL=49 ID=28244 TCP DPT=8080 WINDOW=18658 SYN	2019-08-29 08:18:40
185.216.140.27	attack	08/28/2019-19:53:58.438657 185.216.140.27 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-08-29 08:52:17
54.37.14.3	attackspambots	2019-08-28T23:54:30.659624abusebot-6.cloudsearch.cf sshd\[3640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.ip-54-37-14.eu user=root	2019-08-29 08:19:00
176.207.15.2	attackspambots	Unauthorised access (Aug 29) SRC=176.207.15.2 LEN=44 TTL=53 ID=53186 TCP DPT=8080 WINDOW=24222 SYN Unauthorised access (Aug 27) SRC=176.207.15.2 LEN=44 TTL=53 ID=43010 TCP DPT=8080 WINDOW=24222 SYN Unauthorised access (Aug 25) SRC=176.207.15.2 LEN=44 TTL=53 ID=45092 TCP DPT=8080 WINDOW=24222 SYN	2019-08-29 08:38:28
182.61.53.171	attackbots	Aug 29 00:35:27 localhost sshd\[89187\]: Invalid user openerp from 182.61.53.171 port 39492 Aug 29 00:35:27 localhost sshd\[89187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.53.171 Aug 29 00:35:28 localhost sshd\[89187\]: Failed password for invalid user openerp from 182.61.53.171 port 39492 ssh2 Aug 29 00:40:14 localhost sshd\[89369\]: Invalid user hero from 182.61.53.171 port 56040 Aug 29 00:40:14 localhost sshd\[89369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.53.171 ...	2019-08-29 08:57:29
115.162.36.106	attackspam	Aug 28 13:47:17 auw2 sshd\[5721\]: Invalid user test from 115.162.36.106 Aug 28 13:47:17 auw2 sshd\[5721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pa2246a.sitmnt01.ap.so-net.ne.jp Aug 28 13:47:18 auw2 sshd\[5721\]: Failed password for invalid user test from 115.162.36.106 port 10545 ssh2 Aug 28 13:53:54 auw2 sshd\[6339\]: Invalid user phpmy from 115.162.36.106 Aug 28 13:53:54 auw2 sshd\[6339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pa2246a.sitmnt01.ap.so-net.ne.jp	2019-08-29 08:55:15

Recently Reported IPs

103.186.144.103	173.193.138.19	99.111.230.117	90.145.132.152
211.47.228.115	45.251.218.210	150.40.250.118	149.15.131.77
108.181.235.146	209.124.238.218	195.180.61.27	255.130.122.8
98.137.119.169	2.134.199.188	143.208.249.96	60.21.65.4
103.111.226.113	191.53.198.180	151.51.245.48	125.74.8.151