JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 43.128.81.242

43.128.81.242 was found in our database!

This IP was reported 3,098 times. Confidence of Abuse is 100%: ?

100%

ISP	Asia Pacific Network Information Center, Pty. Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS132203
Domain Name	apnic.net
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 43.128.81.242

Whois 43.128.81.242

IP Abuse Reports for 43.128.81.242:

This IP address has been reported a total of 3,098 times from 885 distinct sources. 43.128.81.242 was first reported on January 22nd 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-05 03:14:53 (1 hour ago)	tcp ports: 22,23 (8 or more attempts)	Port Scan
🇺🇸 drewf.ink	2026-06-05 02:37:23 (1 hour ago)	[02:37] Port scanning. Port(s) scanned: TCP/2375	Port Scan
🇫🇷 Vaction	2026-06-05 01:19:23 (2 hours ago)	43.128.81.242 - - [05/Jun/2026:03:19:22 +0200] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2 ... show more 43.128.81.242 - - [05/Jun/2026:03:19:22 +0200] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 400 432 "-" "libredtail-http" show less	Hacking Bad Web Bot Web App Attack
🇨🇭 Modules	2026-06-04 22:00:00 (6 hours ago)	Cowrie: cowrie.session.connect proto=telnet \| Cowrie: cowrie.telnet.option proto=telnet \| Cowrie: co ... show more Cowrie: cowrie.session.connect proto=telnet \| Cowrie: cowrie.telnet.option proto=telnet \| Cowrie: cowrie.login.success user=admin pwd=admin proto=telnet \| Cowrie: cowrie.session.params proto=telnet (5 events, first: 2026-06-04T21:22:16.637Z, last: 2026-06-04T21:24:06.823Z) show less	Port Scan SSH
🇳🇱 soverin	2026-06-04 21:57:48 (6 hours ago)	Network scan on port 23	Email Spam
🇸🇬 serverutama	2026-06-04 21:00:24 (7 hours ago)	Nginx scanner: 43.128.81.242 - - [05/Jun/2026:03:44:24 +0700] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2 ... show more Nginx scanner: 43.128.81.242 - - [05/Jun/2026:03:44:24 +0700] "POST /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh HTTP/1.1" 400 150 "-" "-" "-" 43.128.81.242 - - [05/Jun/2026:03:44:26 +0700] "POST /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh HTTP/1.1" 400 150 "-" "-" "-" show less	Web App Attack Bad Web Bot
🇩🇪 NetEye	2026-06-04 18:17:16 (10 hours ago)	SSH brute force login attempt	Brute-Force SSH
🇺🇸 yzfdude1	2026-06-04 18:15:04 (10 hours ago)	Jun 4 12:14:23 kappa sshd[456297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid ... show more Jun 4 12:14:23 kappa sshd[456297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.128.81.242 user=admin Jun 4 12:14:25 kappa sshd[456297]: Failed password for invalid user admin from 43.128.81.242 port 33762 ssh2 Jun 4 12:15:04 kappa sshd[456302]: Invalid user orangepi from 43.128.81.242 port 62072 ... show less	Brute-Force SSH
🇺🇸 RAP	2026-06-04 13:23:31 (14 hours ago)	2026-06-04 13:23:31 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇫🇮 FlamingMojo	2026-06-04 11:01:09 (17 hours ago)	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "admin" at 2026-06-04T11:01:09Z	Brute-Force SSH
Anonymous	2026-06-04 06:30:57 (21 hours ago)	[Firewall] SSH Brute-Force \| Proto: TCP (NEW) \| Src port: 53165 \| Dst port: 22 (SSH) \| Pkt len: 40 \| ... show more [Firewall] SSH Brute-Force \| Proto: TCP (NEW) \| Src port: 53165 \| Dst port: 22 (SSH) \| Pkt len: 40 \| Attempts logged: 2 \| ISP: Shenzhen Tencent Computer Systems Company Limited \| Origin: Singapore, Singapore \| Prior AbuseIPDB score: 100% (1821 reports) \| Detected: 2026-06-04 01:20 CST \| Promoted to blacklist after repeated attempts \| Banned: 6d23h50m32s show less	Brute-Force
🇺🇸 RAP	2026-06-04 04:47:44 (23 hours ago)	2026-06-04 04:47:44 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇬🇧 andypiper	2026-06-04 01:02:41 (1 day ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇧🇪 sid3windr	2026-06-04 00:33:51 (1 day ago)	SSH port scan (Tarpitted for 1m50s, wasted 200B)	Port Scan SSH
🇺🇸 COMPLEX	2026-06-04 00:10:59 (1 day ago)	SSH brute force attack detected by fail2ban - attempted unauthorized access	Brute-Force SSH

Showing 1 to 15 of 3098 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 160.250.5.205

🇩🇪 157.230.18.133

🇳🇱 78.142.18.172

🇱🇹 77.90.185.230

🇭🇰 45.78.21.156

🇷🇴 2.57.121.112

🇩🇪 2a02:4780:3f:1799:0:ad9:29bb:1

🇯🇵 207.56.225.202

🇺🇸 167.71.88.63

🇭🇰 156.238.246.197

🇸🇪 155.4.244.179

🇺🇸 154.83.197.176

🇫🇮 147.185.133.174

🇫🇷 85.69.240.210

🇳🇱 77.83.39.198

🇳🇱 77.83.39.197

🇳🇱 45.148.10.151

🇸🇬 43.160.250.64

🇧🇪 34.53.139.90

🇳🇱 213.177.179.80