City: Jiaozuo
Region: Henan
Country: China
Internet Service Provider: China Unicom
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 42.232.216.39 | attackspambots | firewall-block, port(s): 23/tcp |
2019-11-19 02:51:25 |
| 42.232.216.160 | attack | Fail2Ban Ban Triggered |
2019-11-12 13:44:56 |
| 42.232.216.66 | attack | Fail2Ban Ban Triggered |
2019-11-12 13:34:33 |
| 42.232.218.230 | attackbots | TCP port 23 (Telnet) attempt blocked by firewall. [2019-07-05 10:02:36] |
2019-07-05 17:43:36 |
| 42.232.218.228 | attackbotsspam | Jun 30 03:36:31 *** sshd[23719]: User root from 42.232.218.228 not allowed because not listed in AllowUsers |
2019-06-30 17:56:22 |
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '42.224.0.0 - 42.239.255.255'
% Abuse contact for '42.224.0.0 - 42.239.255.255' is 'zhaoyz3@chinaunicom.cn'
inetnum: 42.224.0.0 - 42.239.255.255
netname: UNICOM-HA
descr: China Unicom Henan province network
descr: China Unicom
descr: No.21,JiN-Rong Street,
descr: Beijing 100033
country: CN
admin-c: CH1302-AP
tech-c: WW444-AP
abuse-c: AC1718-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-HA
mnt-routes: MAINT-CNCGROUP-RR
mnt-irt: IRT-CU-CN
last-modified: 2025-01-22T13:12:22Z
source: APNIC
irt: IRT-CU-CN
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
e-mail: zhaoyz3@chinaunicom.cn
abuse-mailbox: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
remarks: zhaoyz3@chinaunicom.cn is invalid
mnt-by: MAINT-CNCGROUP
last-modified: 2025-10-03T06:12:01Z
source: APNIC
role: ABUSE CUCN
country: ZZ
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
phone: +000000000
e-mail: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
nic-hdl: AC1718-AP
remarks: Generated from irt object IRT-CU-CN
remarks: zhaoyz3@chinaunicom.cn is invalid
abuse-mailbox: zhaoyz3@chinaunicom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-10T13:08:11Z
source: APNIC
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: hqs-ipabuse@chinaunicom.cn
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
mnt-by: MAINT-CNCGROUP
last-modified: 2017-08-17T06:13:16Z
source: APNIC
person: Wei Wang
nic-hdl: WW444-AP
e-mail: abuse@public.zz.ha.cn
address: #55 San Quan Road, Zhengzhou, Henan Provice
phone: +86-371-65952358
fax-no: +86-371-65968952
country: CN
mnt-by: MAINT-CNCGROUP-HA
last-modified: 2010-03-05T08:20:01Z
source: APNIC
% Information related to '42.224.0.0/12AS4837'
route: 42.224.0.0/12
descr: China Unicom Henan Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
last-modified: 2011-03-02T05:24:03Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.34 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.232.21.217
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29886
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;42.232.21.217. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025100401 1800 900 604800 86400
;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 05 09:00:32 CST 2025
;; MSG SIZE rcvd: 106217.21.232.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
217.21.232.42.in-addr.arpa name = hn.kd.ny.adsl.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 181.48.116.50 | attackbots | Aug 8 08:37:36 vps200512 sshd\[4039\]: Invalid user dpn from 181.48.116.50 Aug 8 08:37:36 vps200512 sshd\[4039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.116.50 Aug 8 08:37:38 vps200512 sshd\[4039\]: Failed password for invalid user dpn from 181.48.116.50 port 48038 ssh2 Aug 8 08:41:41 vps200512 sshd\[4170\]: Invalid user download from 181.48.116.50 Aug 8 08:41:41 vps200512 sshd\[4170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.116.50 |
2019-08-08 20:53:02 |
| 167.99.126.218 | attack | firewall-block, port(s): 22/tcp |
2019-08-08 20:32:18 |
| 138.197.70.44 | attack | Aug 8 14:10:06 MK-Soft-Root1 sshd\[6777\]: Invalid user git from 138.197.70.44 port 41202 Aug 8 14:10:06 MK-Soft-Root1 sshd\[6777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.70.44 Aug 8 14:10:08 MK-Soft-Root1 sshd\[6777\]: Failed password for invalid user git from 138.197.70.44 port 41202 ssh2 ... |
2019-08-08 20:38:53 |
| 77.117.189.243 | attack | Aug 8 15:09:39 tuotantolaitos sshd[333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.117.189.243 Aug 8 15:09:41 tuotantolaitos sshd[333]: Failed password for invalid user ftp from 77.117.189.243 port 40844 ssh2 ... |
2019-08-08 20:59:02 |
| 82.119.100.182 | attack | Aug 8 12:30:24 db sshd\[10881\]: Invalid user sebastien from 82.119.100.182 Aug 8 12:30:24 db sshd\[10881\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82-119-100-182.static.chello.sk Aug 8 12:30:27 db sshd\[10881\]: Failed password for invalid user sebastien from 82.119.100.182 port 39809 ssh2 Aug 8 12:35:07 db sshd\[10921\]: Invalid user tomcat5 from 82.119.100.182 Aug 8 12:35:07 db sshd\[10921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82-119-100-182.static.chello.sk ... |
2019-08-08 21:02:28 |
| 175.211.116.230 | attackspambots | SSH invalid-user multiple login try |
2019-08-08 20:47:10 |
| 163.172.111.59 | attack | port scan and connect, tcp 3306 (mysql) |
2019-08-08 20:21:38 |
| 52.67.75.188 | attack | Unauthorised access (Aug 8) SRC=52.67.75.188 LEN=40 TTL=238 ID=59233 TCP DPT=445 WINDOW=1024 SYN |
2019-08-08 20:13:20 |
| 207.46.13.6 | attack | Automatic report - Banned IP Access |
2019-08-08 20:15:54 |
| 58.221.151.226 | attackspam | 3389BruteforceFW23 |
2019-08-08 20:53:29 |
| 220.128.115.205 | attackspambots | Aug 8 11:55:52 master sshd[2740]: Failed password for root from 220.128.115.205 port 44507 ssh2 Aug 8 11:55:57 master sshd[2740]: Failed password for root from 220.128.115.205 port 44507 ssh2 Aug 8 11:56:02 master sshd[2740]: Failed password for root from 220.128.115.205 port 44507 ssh2 |
2019-08-08 20:27:11 |
| 111.6.79.176 | attackbots | 2019-08-08T12:19:16.555389Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 111.6.79.176:32005 \(107.175.91.48:22\) \[session: 58bd29da8f99\] 2019-08-08T12:29:31.123296Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 111.6.79.176:46011 \(107.175.91.48:22\) \[session: 3bb4054c5e5d\] ... |
2019-08-08 20:56:18 |
| 103.254.13.160 | attackspam | xmlrpc attack |
2019-08-08 20:55:45 |
| 210.212.233.43 | attackbots | Automatic report - Banned IP Access |
2019-08-08 20:36:35 |
| 27.254.90.106 | attackbotsspam | Aug 8 14:09:58 vpn01 sshd\[14991\]: Invalid user yoko from 27.254.90.106 Aug 8 14:09:58 vpn01 sshd\[14991\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.90.106 Aug 8 14:10:00 vpn01 sshd\[14991\]: Failed password for invalid user yoko from 27.254.90.106 port 42840 ssh2 |
2019-08-08 20:49:11 |