42.228.233.97 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '42.224.0.0 - 42.239.255.255'

% Abuse contact for '42.224.0.0 - 42.239.255.255' is 'zhaoyz3@chinaunicom.cn'

inetnum:        42.224.0.0 - 42.239.255.255
netname:        UNICOM-HA
descr:          China Unicom Henan province network
descr:          China Unicom
descr:          No.21,JiN-Rong Street,
descr:          Beijing 100033
country:        CN
admin-c:        CH1302-AP
tech-c:         WW444-AP
abuse-c:        AC1718-AP
status:         ALLOCATED PORTABLE
remarks:        service provider
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CNCGROUP-HA
mnt-routes:     MAINT-CNCGROUP-RR
mnt-irt:        IRT-CU-CN
last-modified:  2025-01-22T13:12:22Z
source:         APNIC

irt:            IRT-CU-CN
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
e-mail:         zhaoyz3@chinaunicom.cn
abuse-mailbox:  zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
auth:           # Filtered
remarks:        zhaoyz3@chinaunicom.cn was validated on 2026-05-08
mnt-by:         MAINT-CNCGROUP
last-modified:  2026-05-09T04:50:16Z
source:         APNIC

role:           ABUSE CUCN
country:        ZZ
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
phone:          +000000000
e-mail:         zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
nic-hdl:        AC1718-AP
remarks:        Generated from irt object IRT-CU-CN
remarks:        zhaoyz3@chinaunicom.cn was validated on 2026-05-08
abuse-mailbox:  zhaoyz3@chinaunicom.cn
mnt-by:         APNIC-ABUSE
last-modified:  2026-05-08T01:31:32Z
source:         APNIC

person:         ChinaUnicom Hostmaster
nic-hdl:        CH1302-AP
e-mail:         hqs-ipabuse@chinaunicom.cn
address:        No.21,Jin-Rong Street
address:        Beijing,100033
address:        P.R.China
phone:          +86-10-66259764
fax-no:         +86-10-66259764
country:        CN
mnt-by:         MAINT-CNCGROUP
last-modified:  2017-08-17T06:13:16Z
source:         APNIC

person:         Wei Wang
nic-hdl:        WW444-AP
e-mail:         abuse@public.zz.ha.cn
address:        #55 San Quan Road, Zhengzhou, Henan Provice
phone:          +86-371-65952358
fax-no:         +86-371-65968952
country:        CN
mnt-by:         MAINT-CNCGROUP-HA
last-modified:  2010-03-05T08:20:01Z
source:         APNIC

% Information related to '42.224.0.0/12AS4837'

route:          42.224.0.0/12
descr:          China Unicom Henan Province Network
country:        CN
origin:         AS4837
mnt-by:         MAINT-CNCGROUP-RR
last-modified:  2011-03-02T05:24:03Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.228.233.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56888
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.228.233.97.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026062801 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 29 11:41:01 CST 2026
;; MSG SIZE  rcvd: 106

Host info

97.233.228.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
97.233.228.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
223.17.135.251	attackbotsspam	SSH bruteforce	2020-09-03 04:46:36
93.156.81.245	attackbotsspam	SSH bruteforce	2020-09-03 04:39:40
91.192.10.53	attack	2020-09-02T21:04:12+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-09-03 05:08:56
142.4.213.28	attackspambots	142.4.213.28 - - [02/Sep/2020:22:25:28 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [02/Sep/2020:22:25:29 +0200] "POST /wp-login.php HTTP/1.1" 200 1819 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [02/Sep/2020:22:25:30 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [02/Sep/2020:22:25:31 +0200] "POST /wp-login.php HTTP/1.1" 200 1796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [02/Sep/2020:22:25:31 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.4.213.28 - - [02/Sep/2020:22:25:32 +0200] "POST /wp-login.php HTTP/1.1" 200 1797 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-09-03 04:39:06
212.156.115.58	attack	Dovecot Invalid User Login Attempt.	2020-09-03 04:43:22
165.22.113.66	attackspam	Sep 2 20:13:56 hidden sshd[39389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.113.66 Sep 2 20:13:58 hidden sshd[39389]: Failed password for invalid user rajesh from 165.22.113.66 port 40326 ssh2 Sep 2 20:21:25 hidden sshd[39601]: Invalid user zt from 165.22.113.66 port 33464	2020-09-03 04:43:03
80.211.139.7	attackbotsspam	(sshd) Failed SSH login from 80.211.139.7 (IT/Italy/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 2 12:35:15 server4 sshd[19853]: Invalid user tzq from 80.211.139.7 Sep 2 12:35:15 server4 sshd[19853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.139.7 Sep 2 12:35:18 server4 sshd[19853]: Failed password for invalid user tzq from 80.211.139.7 port 35404 ssh2 Sep 2 12:49:35 server4 sshd[27648]: Invalid user sofia from 80.211.139.7 Sep 2 12:49:35 server4 sshd[27648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.139.7	2020-09-03 04:37:40
88.214.26.90	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-02T20:01:26Z	2020-09-03 04:37:17
51.210.111.223	attackspambots	Sep 2 20:58:24 electroncash sshd[49263]: Failed password for invalid user raspberry from 51.210.111.223 port 48788 ssh2 Sep 2 21:02:06 electroncash sshd[50911]: Invalid user leon from 51.210.111.223 port 56356 Sep 2 21:02:06 electroncash sshd[50911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.210.111.223 Sep 2 21:02:06 electroncash sshd[50911]: Invalid user leon from 51.210.111.223 port 56356 Sep 2 21:02:09 electroncash sshd[50911]: Failed password for invalid user leon from 51.210.111.223 port 56356 ssh2 ...	2020-09-03 04:55:46
104.248.114.67	attackspambots	2020-09-02T22:04:40.586385paragon sshd[16470]: Invalid user bruna from 104.248.114.67 port 42176 2020-09-02T22:04:40.589576paragon sshd[16470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.114.67 2020-09-02T22:04:40.586385paragon sshd[16470]: Invalid user bruna from 104.248.114.67 port 42176 2020-09-02T22:04:43.308337paragon sshd[16470]: Failed password for invalid user bruna from 104.248.114.67 port 42176 ssh2 2020-09-02T22:06:54.612715paragon sshd[16497]: Invalid user ftp-user from 104.248.114.67 port 50356 ...	2020-09-03 04:45:21
129.204.208.34	attack	Sep 2 18:43:58 abendstille sshd\[13870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.208.34 user=root Sep 2 18:44:00 abendstille sshd\[13870\]: Failed password for root from 129.204.208.34 port 35484 ssh2 Sep 2 18:49:05 abendstille sshd\[19198\]: Invalid user andres from 129.204.208.34 Sep 2 18:49:05 abendstille sshd\[19198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.208.34 Sep 2 18:49:08 abendstille sshd\[19198\]: Failed password for invalid user andres from 129.204.208.34 port 34840 ssh2 ...	2020-09-03 05:02:16
167.248.133.29	attackspambots	TCP (SYN) 167.248.133.29:59651 -> port 5900, len 44	2020-09-03 04:57:38
41.76.8.16	attackspambots	Sep 2 21:48:19 host postfix/smtpd[20826]: warning: unknown[41.76.8.16]: SASL LOGIN authentication failed: authentication failure Sep 2 21:48:20 host postfix/smtpd[20826]: warning: unknown[41.76.8.16]: SASL LOGIN authentication failed: authentication failure ...	2020-09-03 04:44:06
188.166.5.84	attackspam	Sep 2 21:06:09 minden010 sshd[27435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.5.84 Sep 2 21:06:11 minden010 sshd[27435]: Failed password for invalid user ventas from 188.166.5.84 port 33324 ssh2 Sep 2 21:14:03 minden010 sshd[29131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.5.84 ...	2020-09-03 04:38:48
124.87.80.125	attackspam	Automatic report - Port Scan Attack	2020-09-03 04:44:30

Recently Reported IPs

94.154.43.87	45.130.203.152	45.130.203.131	117.150.181.114
34.244.137.252	14.212.61.255	34.19.127.203	42.247.76.70
171.222.182.15	2606:4700:10::ac43:2100	34.38.10.50	2606:4700:10::6816:3729
34.156.24.156	111.61.246.242	20.240.51.74	34.21.172.25
216.180.246.42	69.5.169.190	69.5.169.177	69.5.169.176