City: Zhengzhou
Region: Henan
Country: China
Internet Service Provider: China Unicom
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '221.13.128.0 - 221.15.255.255'
% Abuse contact for '221.13.128.0 - 221.15.255.255' is 'zhaoyz3@chinaunicom.cn'
inetnum: 221.13.128.0 - 221.15.255.255
netname: UNICOM-HA
descr: China Unicom Henan Province Network
descr: China Unicom
country: CN
admin-c: CH1302-AP
tech-c: WW444-AP
abuse-c: AC1718-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: This object can only be modified by APNIC hostmaster
remarks: If you wish to modify this object details please
remarks: send email to hostmaster@apnic.net with your organisation
remarks: account name in the subject line.
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-HA
mnt-routes: MAINT-CNCGROUP-RR
mnt-irt: IRT-CU-CN
last-modified: 2023-10-21T03:35:17Z
source: APNIC
irt: IRT-CU-CN
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
e-mail: zhaoyz3@chinaunicom.cn
abuse-mailbox: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
remarks: zhaoyz3@chinaunicom.cn was validated on 2025-10-17
mnt-by: MAINT-CNCGROUP
last-modified: 2025-11-18T00:26:20Z
source: APNIC
role: ABUSE CUCN
country: ZZ
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
phone: +000000000
e-mail: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
nic-hdl: AC1718-AP
remarks: Generated from irt object IRT-CU-CN
remarks: zhaoyz3@chinaunicom.cn was validated on 2025-10-17
abuse-mailbox: zhaoyz3@chinaunicom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-10-17T02:26:56Z
source: APNIC
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: hqs-ipabuse@chinaunicom.cn
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
mnt-by: MAINT-CNCGROUP
last-modified: 2017-08-17T06:13:16Z
source: APNIC
person: Wei Wang
nic-hdl: WW444-AP
e-mail: abuse@public.zz.ha.cn
address: #55 San Quan Road, Zhengzhou, Henan Provice
phone: +86-371-65952358
fax-no: +86-371-65968952
country: CN
mnt-by: MAINT-CNCGROUP-HA
last-modified: 2010-03-05T08:20:01Z
source: APNIC
% Information related to '221.14.0.0/15AS4837'
route: 221.14.0.0/15
descr: CNC Group CHINA169 Henan Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
last-modified: 2008-09-04T07:54:44Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.34 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.15.179.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35295
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;221.15.179.142. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026012401 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 25 13:30:52 CST 2026
;; MSG SIZE rcvd: 107142.179.15.221.in-addr.arpa domain name pointer hn.kd.jz.adsl.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
142.179.15.221.in-addr.arpa name = hn.kd.jz.adsl.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 1.4.135.197 | attack | Port Scan |
2019-10-21 21:10:06 |
| 185.234.218.96 | attack | RDP_Brute_Force |
2019-10-21 21:34:50 |
| 49.88.112.68 | attack | Oct 12 08:46:35 mail sshd[25418]: Failed password for root from 49.88.112.68 port 39190 ssh2 Oct 12 08:46:38 mail sshd[25418]: Failed password for root from 49.88.112.68 port 39190 ssh2 Oct 12 08:46:41 mail sshd[25418]: Failed password for root from 49.88.112.68 port 39190 ssh2 |
2019-10-21 21:28:58 |
| 121.162.131.223 | attackspam | Oct 21 13:46:53 microserver sshd[606]: Invalid user lc from 121.162.131.223 port 44877 Oct 21 13:46:53 microserver sshd[606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.162.131.223 Oct 21 13:46:55 microserver sshd[606]: Failed password for invalid user lc from 121.162.131.223 port 44877 ssh2 Oct 21 13:51:07 microserver sshd[1255]: Invalid user frodo from 121.162.131.223 port 36218 Oct 21 13:51:07 microserver sshd[1255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.162.131.223 Oct 21 14:03:23 microserver sshd[2775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.162.131.223 user=root Oct 21 14:03:25 microserver sshd[2775]: Failed password for root from 121.162.131.223 port 38483 ssh2 Oct 21 14:07:38 microserver sshd[3427]: Invalid user ts3bot2 from 121.162.131.223 port 58060 Oct 21 14:07:38 microserver sshd[3427]: pam_unix(sshd:auth): authentication failure; logname= uid |
2019-10-21 21:05:59 |
| 113.181.87.121 | attackspambots | 2019-10-21 x@x 2019-10-21 12:56:10 unexpected disconnection while reading SMTP command from (static.vnpt.vn) [113.181.87.121]:12597 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.181.87.121 |
2019-10-21 21:47:34 |
| 180.167.155.201 | attackspambots | fail2ban honeypot |
2019-10-21 21:35:09 |
| 31.167.204.127 | attackspam | 2019-10-21 x@x 2019-10-21 11:37:01 unexpected disconnection while reading SMTP command from ([31.167.204.127]) [31.167.204.127]:10530 I=[10.100.18.21]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=31.167.204.127 |
2019-10-21 21:45:15 |
| 177.128.109.218 | attack | 2019-10-21 x@x 2019-10-21 12:54:29 unexpected disconnection while reading SMTP command from (177-128-109-218.supercabotv.com.br) [177.128.109.218]:20131 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=177.128.109.218 |
2019-10-21 21:39:13 |
| 107.6.183.230 | attackspambots | Port Scan |
2019-10-21 21:44:17 |
| 146.185.25.181 | attack | Port Scan |
2019-10-21 21:40:27 |
| 52.65.23.5 | attackspam | Automatic report - XMLRPC Attack |
2019-10-21 21:09:44 |
| 41.214.20.60 | attackbotsspam | 2019-10-21T15:05:24.255997scmdmz1 sshd\[12894\]: Invalid user lisa from 41.214.20.60 port 33923 2019-10-21T15:05:24.258599scmdmz1 sshd\[12894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.214.20.60 2019-10-21T15:05:25.713293scmdmz1 sshd\[12894\]: Failed password for invalid user lisa from 41.214.20.60 port 33923 ssh2 ... |
2019-10-21 21:18:13 |
| 177.126.237.207 | attackbots | 2019-10-21 x@x 2019-10-21 13:07:02 unexpected disconnection while reading SMTP command from (177-126-237-207.chostnamey10.com.br) [177.126.237.207]:17875 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=177.126.237.207 |
2019-10-21 21:37:04 |
| 34.97.216.211 | attack | Oct 21 08:04:47 askasleikir sshd[899015]: Failed password for invalid user ethos from 34.97.216.211 port 35842 ssh2 |
2019-10-21 21:49:55 |
| 146.185.25.183 | attackbots | Port Scan |
2019-10-21 21:49:26 |