43.242.34.38 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: SonderCloudLimited HK

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 43.242.34.38 to port 6379	2020-04-10 05:27:08

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 43.242.34.38
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9016
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;43.242.34.38.			IN	A

;; AUTHORITY SECTION:
.			504	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040902 1800 900 604800 86400

;; Query time: 828 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 10 05:27:05 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 38.34.242.43.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 38.34.242.43.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.89.222.16	attackspam	[portscan] tcp/1433 [MsSQL] in blocklist.de:'listed [ssh]' *(RWIN=1024)(10061547)	2020-10-07 17:55:45
123.19.167.54	attackbotsspam	SMB Server BruteForce Attack	2020-10-07 17:28:17
112.85.42.230	attack	SSH brutforce	2020-10-07 17:44:43
81.68.129.2	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-07 17:39:32
78.47.0.124	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-07 17:40:07
43.246.242.2	attackspam	TCP (SYN) 43.246.242.2:62991 -> port 23, len 44	2020-10-07 18:03:56
83.139.129.12	attackspam	xmlrpc attack	2020-10-07 17:55:14
61.174.243.9	attackspam	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-07 17:56:09
167.114.155.2	attackbots	Oct 6 20:03:31 sachi sshd\[20649\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.155.2 user=root Oct 6 20:03:32 sachi sshd\[20649\]: Failed password for root from 167.114.155.2 port 52630 ssh2 Oct 6 20:07:46 sachi sshd\[20948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.155.2 user=root Oct 6 20:07:49 sachi sshd\[20948\]: Failed password for root from 167.114.155.2 port 58948 ssh2 Oct 6 20:12:00 sachi sshd\[21330\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.155.2 user=root	2020-10-07 17:34:12
113.214.25.170	attackbotsspam	113.214.25.170 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 7 02:58:23 server2 sshd[14498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.214.25.170 user=root Oct 7 02:57:49 server2 sshd[13896]: Failed password for root from 221.156.126.1 port 44308 ssh2 Oct 7 02:58:14 server2 sshd[14449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.56.99.130 user=root Oct 7 02:58:15 server2 sshd[14449]: Failed password for root from 59.56.99.130 port 47212 ssh2 Oct 7 02:58:01 server2 sshd[14032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.37.78 user=root Oct 7 02:58:02 server2 sshd[14032]: Failed password for root from 178.62.37.78 port 36518 ssh2 IP Addresses Blocked:	2020-10-07 17:54:45
142.11.227.94	attackbotsspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: hwsrv-478380.hostwindsdns.com.	2020-10-07 17:47:26
122.51.199.173	attack	Oct 7 09:06:30 xeon sshd[8048]: Failed password for root from 122.51.199.173 port 37022 ssh2	2020-10-07 17:53:04
207.154.194.3	attackbotsspam	207.154.194.3 (DE/Germany/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 7 05:13:34 jbs1 sshd[873]: Failed password for root from 207.154.194.3 port 59088 ssh2 Oct 7 05:17:25 jbs1 sshd[2395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.185.170.126 user=root Oct 7 05:12:59 jbs1 sshd[572]: Failed password for root from 119.45.130.71 port 40008 ssh2 Oct 7 05:13:09 jbs1 sshd[681]: Failed password for root from 165.227.182.136 port 41210 ssh2 Oct 7 05:13:07 jbs1 sshd[681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.182.136 user=root Oct 7 05:13:32 jbs1 sshd[873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.194.3 user=root IP Addresses Blocked:	2020-10-07 17:48:37
183.16.101.199	attackspambots	ICMP MH Probe, Scan /Distributed -	2020-10-07 17:42:27
106.12.214.128	attackspam	Found on CINS badguys / proto=6 . srcport=54139 . dstport=13186 . (866)	2020-10-07 17:23:53

Recently Reported IPs

120.18.16.31	85.229.81.245	125.212.192.54	18.39.3.155
223.64.235.243	75.142.222.190	204.254.171.162	117.208.92.76
31.38.166.150	2.4.137.98	87.208.248.87	228.243.187.170
129.24.172.128	167.172.165.83	156.3.238.22	75.32.165.165
125.187.64.44	3.11.227.229	79.194.62.71	208.18.171.2