112.97.193.142

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '112.96.0.0 - 112.97.255.255'

% Abuse contact for '112.96.0.0 - 112.97.255.255' is 'zhaoyz3@chinaunicom.cn'

inetnum:        112.96.0.0 - 112.97.255.255
netname:        UNICOM-GD
descr:          China Unicom Guangdong province network
descr:          China Unicom
country:        CN
admin-c:        CH1302-AP
tech-c:         RP181-AP
abuse-c:        AC1718-AP
status:         ALLOCATED PORTABLE
remarks:        service provider
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CNCGROUP-GD
mnt-routes:     MAINT-CNCGROUP-RR
mnt-irt:        IRT-CU-CN
last-modified:  2023-10-21T03:41:52Z
source:         APNIC

irt:            IRT-CU-CN
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
e-mail:         zhaoyz3@chinaunicom.cn
abuse-mailbox:  zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
auth:           # Filtered
remarks:        zhaoyz3@chinaunicom.cn was validated on 2025-10-17
mnt-by:         MAINT-CNCGROUP
last-modified:  2025-10-17T02:26:26Z
source:         APNIC

role:           ABUSE CUCN
country:        ZZ
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
phone:          +000000000
e-mail:         zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
nic-hdl:        AC1718-AP
remarks:        Generated from irt object IRT-CU-CN
remarks:        zhaoyz3@chinaunicom.cn was validated on 2025-10-17
abuse-mailbox:  zhaoyz3@chinaunicom.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-10-17T02:26:56Z
source:         APNIC

person:         ChinaUnicom Hostmaster
nic-hdl:        CH1302-AP
e-mail:         hqs-ipabuse@chinaunicom.cn
address:        No.21,Jin-Rong Street
address:        Beijing,100033
address:        P.R.China
phone:          +86-10-66259764
fax-no:         +86-10-66259764
country:        CN
mnt-by:         MAINT-CNCGROUP
last-modified:  2017-08-17T06:13:16Z
source:         APNIC

person:         runkeng pan
nic-hdl:        RP181-AP
e-mail:         gdipnoc@chinaunicom.cn
address:        XinShiKong Plaza,No 666 Huangpu Rd. Guangzhou 510627,China
phone:          +86-20-22214174
fax-no:         +86-20-22212266-4174
country:        CN
mnt-by:         MAINT-CNCGROUP-GD
last-modified:  2015-12-16T03:32:02Z
source:         APNIC

% Information related to '112.97.193.0/24AS134543'

route:          112.97.193.0/24
origin:         AS134543
descr:          China Unicom
                B811&A1218, China Unicom
                No.21, Jin-Rong Street
mnt-by:         MAINT-CNCGROUP-RR
last-modified:  2023-06-08T06:10:56Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.34 (WHOIS-AU4)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.97.193.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42161
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.97.193.142.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025110800 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 08 20:28:34 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 142.193.97.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.193.97.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.197.86.155	attackspambots	8545/tcp 8545/tcp 8545/tcp... [2019-06-19/07-04]178pkt,1pt.(tcp)	2019-07-05 01:25:18
132.148.105.132	attack	jannisjulius.de 132.148.105.132 \[04/Jul/2019:18:47:58 +0200\] "POST /wp-login.php HTTP/1.1" 200 6117 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" jannisjulius.de 132.148.105.132 \[04/Jul/2019:18:47:59 +0200\] "POST /wp-login.php HTTP/1.1" 200 6119 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-05 01:26:10
188.254.0.197	attack	Jul 4 14:52:46 myhostname sshd[29989]: Invalid user technicom from 188.254.0.197 Jul 4 14:52:46 myhostname sshd[29989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.197 Jul 4 14:52:48 myhostname sshd[29989]: Failed password for invalid user technicom from 188.254.0.197 port 45306 ssh2 Jul 4 14:52:48 myhostname sshd[29989]: Received disconnect from 188.254.0.197 port 45306:11: Normal Shutdown, Thank you for playing [preauth] Jul 4 14:52:48 myhostname sshd[29989]: Disconnected from 188.254.0.197 port 45306 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=188.254.0.197	2019-07-05 01:57:36
121.15.140.178	attackspambots	Jul 4 13:26:50 localhost sshd\[76647\]: Invalid user cms from 121.15.140.178 port 43212 Jul 4 13:26:50 localhost sshd\[76647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.15.140.178 Jul 4 13:26:52 localhost sshd\[76647\]: Failed password for invalid user cms from 121.15.140.178 port 43212 ssh2 Jul 4 13:29:30 localhost sshd\[76687\]: Invalid user dockeruser from 121.15.140.178 port 37174 Jul 4 13:29:30 localhost sshd\[76687\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.15.140.178 ...	2019-07-05 01:40:26
188.117.151.197	attackspambots	Jul 4 17:52:21 hosting sshd[1116]: Invalid user yao from 188.117.151.197 port 27372 ...	2019-07-05 02:03:12
190.244.61.203	attack	2019-07-04 15:01:20 unexpected disconnection while reading SMTP command from (203-61-244-190.fibertel.com.ar) [190.244.61.203]:9787 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-07-04 15:02:05 unexpected disconnection while reading SMTP command from (203-61-244-190.fibertel.com.ar) [190.244.61.203]:52074 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-07-04 15:02:24 unexpected disconnection while reading SMTP command from (203-61-244-190.fibertel.com.ar) [190.244.61.203]:16106 I=[10.100.18.20]:25 (error: Connection reset by peer) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=190.244.61.203	2019-07-05 02:13:10
190.10.10.123	attackspam	445/tcp 445/tcp 445/tcp... [2019-06-28/07-04]5pkt,1pt.(tcp)	2019-07-05 01:21:44
193.124.129.130	attackbots	firewall-block, port(s): 445/tcp	2019-07-05 02:06:14
138.197.146.200	attackspambots	Jul 4 16:33:07 s1 wordpress\(www.dance-corner.de\)\[8494\]: Authentication attempt for unknown user fehst from 138.197.146.200 ...	2019-07-05 01:52:28
185.65.206.244	attack	Criminal mass email fraud. Block 185.65.204.0/22	2019-07-05 01:41:27
51.68.81.112	attack	Jul 4 18:58:41 srv03 sshd\[30909\]: Invalid user info from 51.68.81.112 port 44976 Jul 4 18:58:41 srv03 sshd\[30909\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.81.112 Jul 4 18:58:43 srv03 sshd\[30909\]: Failed password for invalid user info from 51.68.81.112 port 44976 ssh2	2019-07-05 01:40:58
128.199.182.235	attackspam	Jul 4 19:46:55 ncomp sshd[24614]: Invalid user muki from 128.199.182.235 Jul 4 19:46:55 ncomp sshd[24614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.182.235 Jul 4 19:46:55 ncomp sshd[24614]: Invalid user muki from 128.199.182.235 Jul 4 19:46:57 ncomp sshd[24614]: Failed password for invalid user muki from 128.199.182.235 port 15072 ssh2	2019-07-05 02:00:06
216.57.226.2	attack	blogonese.net 216.57.226.2 \[04/Jul/2019:15:10:46 +0200\] "POST /wp-login.php HTTP/1.1" 200 5772 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" blogonese.net 216.57.226.2 \[04/Jul/2019:15:10:47 +0200\] "POST /wp-login.php HTTP/1.1" 200 5771 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-05 01:44:44
113.183.67.144	attackspam	Jul 4 14:52:50 lvps92-51-164-246 sshd[2861]: Address 113.183.67.144 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 4 14:52:50 lvps92-51-164-246 sshd[2861]: Invalid user admin from 113.183.67.144 Jul 4 14:52:50 lvps92-51-164-246 sshd[2861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.183.67.144 Jul 4 14:52:52 lvps92-51-164-246 sshd[2861]: Failed password for invalid user admin from 113.183.67.144 port 50537 ssh2 Jul 4 14:52:52 lvps92-51-164-246 sshd[2861]: Connection closed by 113.183.67.144 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.183.67.144	2019-07-05 02:04:52
185.254.120.6	attackspambots	Jul 4 19:19:11 dev sshd\[14035\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.254.120.6 user=root Jul 4 19:19:13 dev sshd\[14035\]: Failed password for root from 185.254.120.6 port 20385 ssh2 ...	2019-07-05 01:38:32

Recently Reported IPs

167.71.236.81	35.236.51.192	119.185.175.112	61.243.126.183
111.43.173.110	75.127.79.235	223.160.172.205	120.229.157.78
34.118.14.29	199.195.253.206	111.22.251.242	82.165.93.36
104.248.142.207	195.78.54.77	147.185.133.111	45.142.193.171
120.239.11.85	147.185.133.188	2001:1600:aaaf:102:f816:3eff:fe39:bd0	20.163.10.187