City: unknown
Region: unknown
Country: China
Internet Service Provider: China Unicom
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '42.224.0.0 - 42.239.255.255'
% Abuse contact for '42.224.0.0 - 42.239.255.255' is 'zhaoyz3@chinaunicom.cn'
inetnum: 42.224.0.0 - 42.239.255.255
netname: UNICOM-HA
descr: China Unicom Henan province network
descr: China Unicom
descr: No.21,JiN-Rong Street,
descr: Beijing 100033
country: CN
admin-c: CH1302-AP
tech-c: WW444-AP
abuse-c: AC1718-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-HA
mnt-routes: MAINT-CNCGROUP-RR
mnt-irt: IRT-CU-CN
last-modified: 2025-01-22T13:12:22Z
source: APNIC
irt: IRT-CU-CN
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
e-mail: zhaoyz3@chinaunicom.cn
abuse-mailbox: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
remarks: zhaoyz3@chinaunicom.cn was validated on 2025-10-17
mnt-by: MAINT-CNCGROUP
last-modified: 2025-11-18T00:26:20Z
source: APNIC
role: ABUSE CUCN
country: ZZ
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
phone: +000000000
e-mail: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
nic-hdl: AC1718-AP
remarks: Generated from irt object IRT-CU-CN
remarks: zhaoyz3@chinaunicom.cn was validated on 2025-10-17
abuse-mailbox: zhaoyz3@chinaunicom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-10-17T02:26:56Z
source: APNIC
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: hqs-ipabuse@chinaunicom.cn
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
mnt-by: MAINT-CNCGROUP
last-modified: 2017-08-17T06:13:16Z
source: APNIC
person: Wei Wang
nic-hdl: WW444-AP
e-mail: abuse@public.zz.ha.cn
address: #55 San Quan Road, Zhengzhou, Henan Provice
phone: +86-371-65952358
fax-no: +86-371-65968952
country: CN
mnt-by: MAINT-CNCGROUP-HA
last-modified: 2010-03-05T08:20:01Z
source: APNIC
% Information related to '42.224.0.0/12AS4837'
route: 42.224.0.0/12
descr: China Unicom Henan Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
last-modified: 2011-03-02T05:24:03Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.232.207.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33351
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;42.232.207.134. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026033103 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 01 13:31:00 CST 2026
;; MSG SIZE rcvd: 107134.207.232.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
134.207.232.42.in-addr.arpa name = hn.kd.ny.adsl.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 164.132.98.75 | attackspam | Sep 30 23:59:23 game-panel sshd[30689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.98.75 Sep 30 23:59:25 game-panel sshd[30689]: Failed password for invalid user wayne from 164.132.98.75 port 48740 ssh2 Oct 1 00:03:00 game-panel sshd[30848]: Failed password for root from 164.132.98.75 port 50967 ssh2 |
2020-10-01 08:05:24 |
| 106.13.101.232 | attackbots | Invalid user stats from 106.13.101.232 port 59078 |
2020-10-01 07:38:38 |
| 45.129.33.49 | attackbots | Excessive Port-Scanning |
2020-10-01 07:52:29 |
| 106.13.189.172 | attack | Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-10-01 07:38:11 |
| 46.101.156.213 | attackbotsspam | 46.101.156.213 - - [30/Sep/2020:23:28:05 +0200] "POST /wp-login.php HTTP/1.1" 200 4481 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.156.213 - - [30/Sep/2020:23:28:05 +0200] "POST /wp-login.php HTTP/1.1" 200 4481 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.156.213 - - [30/Sep/2020:23:28:06 +0200] "POST /wp-login.php HTTP/1.1" 200 4481 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.156.213 - - [30/Sep/2020:23:28:06 +0200] "POST /wp-login.php HTTP/1.1" 200 4481 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-10-01 08:11:55 |
| 60.191.29.210 | attackspam | Oct 1 01:49:33 vpn01 sshd[24710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.191.29.210 Oct 1 01:49:35 vpn01 sshd[24710]: Failed password for invalid user db2fenc1 from 60.191.29.210 port 9356 ssh2 ... |
2020-10-01 08:05:59 |
| 49.232.148.100 | attackspam | 2020-09-30T22:53:17.239676correo.[domain] sshd[20615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.148.100 user=root 2020-09-30T22:53:19.537892correo.[domain] sshd[20615]: Failed password for root from 49.232.148.100 port 40338 ssh2 2020-09-30T22:57:33.799617correo.[domain] sshd[21017]: Invalid user testmail from 49.232.148.100 port 40636 ... |
2020-10-01 07:49:43 |
| 111.229.167.10 | attackspam | malicious Brute-Force reported by https://www.patrick-binder.de ... |
2020-10-01 08:07:06 |
| 66.68.187.140 | attackbots | SSH login attempts. |
2020-10-01 07:47:51 |
| 80.82.65.90 | attackspambots | scans once in preceeding hours on the ports (in chronological order) 1900 resulting in total of 275 scans from 80.82.64.0/20 block. |
2020-10-01 07:44:48 |
| 104.206.128.74 | attackspambots |
|
2020-10-01 07:39:03 |
| 159.65.144.102 | attack | SSH / Telnet Brute Force Attempts on Honeypot |
2020-10-01 07:57:50 |
| 51.38.37.89 | attack | SSH Brute-Force reported by Fail2Ban |
2020-10-01 07:48:56 |
| 94.102.51.28 | attackbotsspam | Port scan: Attack repeated for 24 hours |
2020-10-01 07:40:34 |
| 115.56.182.221 | attack | Telnet Honeypot -> Telnet Bruteforce / Login |
2020-10-01 08:12:50 |