43.247.4.40 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
43.247.41.81	attackbots	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-08 03:18:53
43.247.40.142	attackbots	Email rejected due to spam filtering	2020-03-04 20:49:44
43.247.40.254	attackspambots	firewall-block, port(s): 2332/tcp	2020-01-02 05:28:16
43.247.40.254	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-28 19:49:02
43.247.40.254	attackspam	Port scan: Attack repeated for 24 hours	2019-12-26 09:12:57
43.247.40.254	attack	Caught in portsentry honeypot	2019-12-25 21:48:49
43.247.4.52	attack	Dec 12 21:29:42 lnxded64 sshd[17641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.247.4.52	2019-12-13 04:32:20
43.247.4.50	attack	Dec 2 14:36:45 MK-Soft-Root2 sshd[25510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.247.4.50 Dec 2 14:36:47 MK-Soft-Root2 sshd[25510]: Failed password for invalid user varisco from 43.247.4.50 port 2479 ssh2 ...	2019-12-02 22:19:45
43.247.4.50	attackbots	2019-11-27T07:50:07.496699abusebot-7.cloudsearch.cf sshd\[26782\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.247.4.50 user=root	2019-11-27 16:18:38
43.247.4.52	attackbots	Lines containing failures of 43.247.4.52 Nov 24 07:36:34 shared09 sshd[15556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.247.4.52 user=r.r Nov 24 07:36:36 shared09 sshd[15556]: Failed password for r.r from 43.247.4.52 port 2773 ssh2 Nov 24 07:36:36 shared09 sshd[15556]: Received disconnect from 43.247.4.52 port 2773:11: Bye Bye [preauth] Nov 24 07:36:36 shared09 sshd[15556]: Disconnected from authenticating user r.r 43.247.4.52 port 2773 [preauth] Nov 24 08:08:07 shared09 sshd[24775]: Connection closed by 43.247.4.52 port 2774 [preauth] Nov 24 08:32:59 shared09 sshd[32301]: Invalid user costin from 43.247.4.52 port 2776 Nov 24 08:32:59 shared09 sshd[32301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.247.4.52 Nov 24 08:33:01 shared09 sshd[32301]: Failed password for invalid user costin from 43.247.4.52 port 2776 ssh2 Nov 24 08:33:01 shared09 sshd[32301]: Received disconnect f........ ------------------------------	2019-11-25 05:16:53
43.247.4.50	attackbots	Nov 24 11:51:11 vps647732 sshd[1741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.247.4.50 Nov 24 11:51:13 vps647732 sshd[1741]: Failed password for invalid user darbee from 43.247.4.50 port 2671 ssh2 ...	2019-11-24 19:13:54
43.247.40.254	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-11-22 04:22:04

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '43.247.4.0 - 43.247.4.255'

% Abuse contact for '43.247.4.0 - 43.247.4.255' is 'ipas@cnnic.cn'

inetnum:        43.247.4.0 - 43.247.4.255
netname:        TJDGTKJYXGS
descr:          Tianjin Dianguangtong Technology Co.,Ltd
country:        CN
admin-c:        YW7449-AP
tech-c:         YW7449-AP
abuse-c:        AC1601-AP
status:         ALLOCATED PORTABLE
mnt-by:         MAINT-CNNIC-AP
mnt-irt:        IRT-CNNIC-CN
last-modified:  2026-01-23T02:46:04Z
source:         APNIC

irt:            IRT-CNNIC-CN
address:        Beijing, China
e-mail:         ipas@cnnic.cn
abuse-mailbox:  ipas@cnnic.cn
admin-c:        IP50-AP
tech-c:         IP50-AP
auth:           # Filtered
remarks:        Please note that CNNIC is not an ISP and is not
remarks:        empowered to investigate complaints of network abuse.
remarks:        Please contact the tech-c or admin-c of the network.
remarks:        ipas@cnnic.cn is invalid
mnt-by:         MAINT-CNNIC-AP
last-modified:  2025-11-17T23:08:37Z
source:         APNIC

role:           ABUSE CNNICCN
country:        ZZ
address:        Beijing, China
phone:          +000000000
e-mail:         ipas@cnnic.cn
admin-c:        IP50-AP
tech-c:         IP50-AP
nic-hdl:        AC1601-AP
remarks:        Generated from irt object IRT-CNNIC-CN
remarks:        ipas@cnnic.cn is invalid
abuse-mailbox:  ipas@cnnic.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-09-19T17:20:32Z
source:         APNIC

person:         Ling Zhi
address:        Tianjin city Heping District Siping West Road No.11 Fuxing Building B-402
country:        CN
phone:          +86-22-27811987
e-mail:         88@netlinkcn.com
nic-hdl:        YW7449-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2026-01-19T07:40:12Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 43.247.4.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4850
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;43.247.4.40.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026042102 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 22 11:30:14 CST 2026
;; MSG SIZE  rcvd: 104

Host info

Host 40.4.247.43.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 40.4.247.43.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.0.208.9	attackbotsspam	Email rejected due to spam filtering	2020-06-07 07:47:14
140.143.2.108	attackbotsspam	Jun 7 04:50:10 webhost01 sshd[1179]: Failed password for root from 140.143.2.108 port 53530 ssh2 ...	2020-06-07 07:24:33
189.51.103.74	attack	Brute force attempt	2020-06-07 07:16:29
150.95.31.150	attackbots	Jun 7 01:08:26 server sshd[7812]: Failed password for root from 150.95.31.150 port 32972 ssh2 Jun 7 01:11:45 server sshd[8353]: Failed password for root from 150.95.31.150 port 55808 ssh2 ...	2020-06-07 07:21:37
192.144.230.158	attack	Jun 6 22:50:08 marvibiene sshd[14069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.230.158 user=root Jun 6 22:50:10 marvibiene sshd[14069]: Failed password for root from 192.144.230.158 port 35820 ssh2 Jun 6 22:58:47 marvibiene sshd[14122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.230.158 user=root Jun 6 22:58:49 marvibiene sshd[14122]: Failed password for root from 192.144.230.158 port 36536 ssh2 ...	2020-06-07 07:30:21
190.79.176.232	attackspambots	Unauthorised access (Jun 6) SRC=190.79.176.232 LEN=48 TTL=116 ID=13165 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-07 07:20:01
118.27.37.223	attackbotsspam	Bruteforce detected by fail2ban	2020-06-07 07:45:02
223.247.223.194	attack	Jun 6 22:31:17 ns382633 sshd\[31941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.223.194 user=root Jun 6 22:31:19 ns382633 sshd\[31941\]: Failed password for root from 223.247.223.194 port 34214 ssh2 Jun 6 22:39:50 ns382633 sshd\[727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.223.194 user=root Jun 6 22:39:52 ns382633 sshd\[727\]: Failed password for root from 223.247.223.194 port 35026 ssh2 Jun 6 22:43:09 ns382633 sshd\[1487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.223.194 user=root	2020-06-07 07:42:06
117.50.20.11	attack	Jun 7 00:33:29 server sshd[3968]: Failed password for root from 117.50.20.11 port 37144 ssh2 Jun 7 00:36:48 server sshd[4264]: Failed password for root from 117.50.20.11 port 32882 ssh2 ...	2020-06-07 07:14:23
77.42.84.226	attack	Automatic report - Port Scan Attack	2020-06-07 07:40:38
133.242.155.85	attackspambots	Jun 6 23:03:09 vps333114 sshd[13677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=www.fm-net.ne.jp user=root Jun 6 23:03:11 vps333114 sshd[13677]: Failed password for root from 133.242.155.85 port 39654 ssh2 ...	2020-06-07 07:11:47
192.99.36.177	attack	192.99.36.177 - - [07/Jun/2020:01:14:07 +0200] "POST /wp-login.php HTTP/1.1" 200 4592 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.99.36.177 - - [07/Jun/2020:01:14:08 +0200] "POST /wp-login.php HTTP/1.1" 200 4592 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.99.36.177 - - [07/Jun/2020:01:14:08 +0200] "POST /wp-login.php HTTP/1.1" 200 4592 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.99.36.177 - - [07/Jun/2020:01:14:09 +0200] "POST /wp-login.php HTTP/1.1" 200 4592 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.99.36.177 - - [07/Jun/2020:01:14:09 +0200] "POST /wp-login.php HTTP/1.1" 200 4592 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safar ...	2020-06-07 07:43:32
192.99.54.117	attack	k+ssh-bruteforce	2020-06-07 07:28:05
222.186.175.215	attackbotsspam	Jun 7 01:14:07 mail sshd\[9060\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Jun 7 01:14:09 mail sshd\[9060\]: Failed password for root from 222.186.175.215 port 39580 ssh2 Jun 7 01:14:25 mail sshd\[9063\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root ...	2020-06-07 07:19:31
106.12.126.114	attack	Jun 5 19:42:06 UTC__SANYALnet-Labs__cac14 sshd[12601]: Connection from 106.12.126.114 port 48810 on 64.137.176.112 port 22 Jun 5 19:42:08 UTC__SANYALnet-Labs__cac14 sshd[12601]: User r.r from 106.12.126.114 not allowed because not listed in AllowUsers Jun 5 19:42:08 UTC__SANYALnet-Labs__cac14 sshd[12601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.126.114 user=r.r Jun 5 19:42:11 UTC__SANYALnet-Labs__cac14 sshd[12601]: Failed password for invalid user r.r from 106.12.126.114 port 48810 ssh2 Jun 5 19:42:11 UTC__SANYALnet-Labs__cac14 sshd[12601]: Received disconnect from 106.12.126.114: 11: Bye Bye [preauth] Jun 5 19:52:19 UTC__SANYALnet-Labs__cac14 sshd[10556]: Connection from 106.12.126.114 port 42532 on 64.137.176.112 port 22 Jun 5 19:52:22 UTC__SANYALnet-Labs__cac14 sshd[10556]: User r.r from 106.12.126.114 not allowed because not listed in AllowUsers Jun 5 19:52:22 UTC__SANYALnet-Labs__cac14 sshd[10556]: pam........ -------------------------------	2020-06-07 07:35:11

Recently Reported IPs

178.57.118.48	2606:4700:10::ac43:2808	219.140.5.111	113.213.4.84
36.101.150.151	2606:4700:10::6816:1406	121.237.149.167	2606:4700:10::6814:8384
2606:4700:10::6814:4750	2606:4700:10::6814:7363	2606:4700:10::6816:2511	103.82.228.55
240e:454:412c:1355:2c44:c2ff:fe1d:4e6f	66.132.195.92	178.128.114.205	45.207.221.17
111.33.154.219	103.152.175.227	2606:4700:10::ac43:2566	2606:4700:10::ac43:1684