42.236.101.228

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
42.236.101.234	attackspam	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	2019-07-05 09:31:59
42.236.101.194	attack	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	2019-07-01 10:24:29

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '42.224.0.0 - 42.239.255.255'

% Abuse contact for '42.224.0.0 - 42.239.255.255' is 'zhaoyz3@chinaunicom.cn'

inetnum:        42.224.0.0 - 42.239.255.255
netname:        UNICOM-HA
descr:          China Unicom Henan province network
descr:          China Unicom
descr:          No.21,JiN-Rong Street,
descr:          Beijing 100033
country:        CN
admin-c:        CH1302-AP
tech-c:         WW444-AP
abuse-c:        AC1718-AP
status:         ALLOCATED PORTABLE
remarks:        service provider
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CNCGROUP-HA
mnt-routes:     MAINT-CNCGROUP-RR
mnt-irt:        IRT-CU-CN
last-modified:  2025-01-22T13:12:22Z
source:         APNIC

irt:            IRT-CU-CN
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
e-mail:         zhaoyz3@chinaunicom.cn
abuse-mailbox:  zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
auth:           # Filtered
remarks:        zhaoyz3@chinaunicom.cn is invalid
mnt-by:         MAINT-CNCGROUP
last-modified:  2025-10-03T06:12:01Z
source:         APNIC

role:           ABUSE CUCN
country:        ZZ
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
phone:          +000000000
e-mail:         zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
nic-hdl:        AC1718-AP
remarks:        Generated from irt object IRT-CU-CN
remarks:        zhaoyz3@chinaunicom.cn is invalid
abuse-mailbox:  zhaoyz3@chinaunicom.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-09-10T13:08:11Z
source:         APNIC

person:         ChinaUnicom Hostmaster
nic-hdl:        CH1302-AP
e-mail:         hqs-ipabuse@chinaunicom.cn
address:        No.21,Jin-Rong Street
address:        Beijing,100033
address:        P.R.China
phone:          +86-10-66259764
fax-no:         +86-10-66259764
country:        CN
mnt-by:         MAINT-CNCGROUP
last-modified:  2017-08-17T06:13:16Z
source:         APNIC

person:         Wei Wang
nic-hdl:        WW444-AP
e-mail:         abuse@public.zz.ha.cn
address:        #55 San Quan Road, Zhengzhou, Henan Provice
phone:          +86-371-65952358
fax-no:         +86-371-65968952
country:        CN
mnt-by:         MAINT-CNCGROUP-HA
last-modified:  2010-03-05T08:20:01Z
source:         APNIC

% Information related to '42.224.0.0/12AS4837'

route:          42.224.0.0/12
descr:          China Unicom Henan Province Network
country:        CN
origin:         AS4837
mnt-by:         MAINT-CNCGROUP-RR
last-modified:  2011-03-02T05:24:03Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.34 (WHOIS-AU4)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.236.101.228
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26423
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.236.101.228.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025100601 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 07 03:00:13 CST 2025
;; MSG SIZE  rcvd: 107

Host info

228.101.236.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
228.101.236.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.208.162.115	attack	Oct 28 07:03:23 firewall sshd[30452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.208.162.115 Oct 28 07:03:23 firewall sshd[30452]: Invalid user dzhu from 82.208.162.115 Oct 28 07:03:25 firewall sshd[30452]: Failed password for invalid user dzhu from 82.208.162.115 port 60698 ssh2 ...	2019-10-28 18:18:45
3.19.28.165	attackspambots	SSH/22 MH Probe, BF, Hack -	2019-10-28 18:28:26
144.217.234.174	attackspam	2019-10-28T09:52:54.653065abusebot-4.cloudsearch.cf sshd\[20708\]: Invalid user idc from 144.217.234.174 port 40221	2019-10-28 18:19:16
221.228.111.131	attack	Oct 28 05:46:55 www4 sshd\[30605\]: Invalid user user from 221.228.111.131 Oct 28 05:46:55 www4 sshd\[30605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.228.111.131 Oct 28 05:46:57 www4 sshd\[30605\]: Failed password for invalid user user from 221.228.111.131 port 59766 ssh2 ...	2019-10-28 18:35:21
45.141.84.28	attackspambots	Oct 28 10:43:37 h2177944 kernel: \[5131594.626449\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.141.84.28 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=35355 PROTO=TCP SPT=58513 DPT=8010 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 28 10:43:51 h2177944 kernel: \[5131608.794300\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.141.84.28 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=795 PROTO=TCP SPT=58513 DPT=3124 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 28 10:45:39 h2177944 kernel: \[5131716.903648\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.141.84.28 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=57823 PROTO=TCP SPT=58513 DPT=4856 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 28 10:47:22 h2177944 kernel: \[5131819.165834\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.141.84.28 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=39536 PROTO=TCP SPT=58513 DPT=9188 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 28 10:54:04 h2177944 kernel: \[5132220.919555\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.141.84.28 DST=85.214.117.9 LEN=40	2019-10-28 18:38:13
140.249.196.49	attackspam	Oct 28 10:25:17 sshgateway sshd\[29297\]: Invalid user user from 140.249.196.49 Oct 28 10:25:17 sshgateway sshd\[29297\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.196.49 Oct 28 10:25:19 sshgateway sshd\[29297\]: Failed password for invalid user user from 140.249.196.49 port 42736 ssh2	2019-10-28 18:34:19
106.13.147.123	attackspambots	Oct 27 20:27:25 friendsofhawaii sshd\[920\]: Invalid user aleon from 106.13.147.123 Oct 27 20:27:25 friendsofhawaii sshd\[920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.123 Oct 27 20:27:27 friendsofhawaii sshd\[920\]: Failed password for invalid user aleon from 106.13.147.123 port 40462 ssh2 Oct 27 20:35:18 friendsofhawaii sshd\[1586\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.123 user=root Oct 27 20:35:20 friendsofhawaii sshd\[1586\]: Failed password for root from 106.13.147.123 port 49992 ssh2	2019-10-28 18:44:17
49.88.112.65	attack	2019-10-28T09:35:06.770074shield sshd\[6258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root 2019-10-28T09:35:09.166030shield sshd\[6258\]: Failed password for root from 49.88.112.65 port 53018 ssh2 2019-10-28T09:35:11.542606shield sshd\[6258\]: Failed password for root from 49.88.112.65 port 53018 ssh2 2019-10-28T09:35:13.859480shield sshd\[6258\]: Failed password for root from 49.88.112.65 port 53018 ssh2 2019-10-28T09:35:38.057833shield sshd\[6384\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root	2019-10-28 18:26:34
202.75.62.141	attackbotsspam	2019-10-28T07:09:29.647455tmaserv sshd\[10378\]: Failed password for root from 202.75.62.141 port 42674 ssh2 2019-10-28T08:12:45.163440tmaserv sshd\[13407\]: Invalid user usuario from 202.75.62.141 port 35872 2019-10-28T08:12:45.167068tmaserv sshd\[13407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.75.62.141 2019-10-28T08:12:47.147946tmaserv sshd\[13407\]: Failed password for invalid user usuario from 202.75.62.141 port 35872 ssh2 2019-10-28T08:17:06.307093tmaserv sshd\[13758\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.75.62.141 user=root 2019-10-28T08:17:08.448634tmaserv sshd\[13758\]: Failed password for root from 202.75.62.141 port 44826 ssh2 ...	2019-10-28 18:35:33
159.203.139.128	attack	Oct 27 23:56:52 kapalua sshd\[21210\]: Invalid user \* from 159.203.139.128 Oct 27 23:56:52 kapalua sshd\[21210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.139.128 Oct 27 23:56:54 kapalua sshd\[21210\]: Failed password for invalid user \* from 159.203.139.128 port 34530 ssh2 Oct 28 00:01:03 kapalua sshd\[21554\]: Invalid user tf2mgeserver from 159.203.139.128 Oct 28 00:01:03 kapalua sshd\[21554\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.139.128	2019-10-28 18:17:43
106.12.208.27	attackbots	2019-10-18T01:34:34.546412ns525875 sshd\[19263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.208.27 user=root 2019-10-18T01:34:36.528347ns525875 sshd\[19263\]: Failed password for root from 106.12.208.27 port 57951 ssh2 2019-10-18T01:39:17.663784ns525875 sshd\[24924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.208.27 user=root 2019-10-18T01:39:20.162622ns525875 sshd\[24924\]: Failed password for root from 106.12.208.27 port 47570 ssh2 2019-10-18T01:44:06.208082ns525875 sshd\[30647\]: Invalid user tq from 106.12.208.27 port 37191 2019-10-18T01:44:06.211664ns525875 sshd\[30647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.208.27 2019-10-18T01:44:08.720100ns525875 sshd\[30647\]: Failed password for invalid user tq from 106.12.208.27 port 37191 ssh2 2019-10-18T01:48:53.424863ns525875 sshd\[4013\]: pam_unix\(sshd:auth\): auth ...	2019-10-28 18:51:22
61.76.175.195	attackbots	2019-10-21T14:11:12.343893ns525875 sshd\[9827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.175.195 user=root 2019-10-21T14:11:13.992154ns525875 sshd\[9827\]: Failed password for root from 61.76.175.195 port 41638 ssh2 2019-10-21T14:15:27.760788ns525875 sshd\[15172\]: Invalid user samhain from 61.76.175.195 port 55600 2019-10-21T14:15:27.767283ns525875 sshd\[15172\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.175.195 2019-10-21T14:15:30.088388ns525875 sshd\[15172\]: Failed password for invalid user samhain from 61.76.175.195 port 55600 ssh2 2019-10-21T14:19:39.887064ns525875 sshd\[20232\]: Invalid user xguest from 61.76.175.195 port 41306 2019-10-21T14:19:39.893312ns525875 sshd\[20232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.76.175.195 2019-10-21T14:19:42.142591ns525875 sshd\[20232\]: Failed password for invalid user xguest ...	2019-10-28 18:41:42
115.94.140.243	attack	Oct 28 05:05:30 DNS-2 sshd[5760]: Invalid user otto from 115.94.140.243 port 39430 Oct 28 05:05:30 DNS-2 sshd[5760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.94.140.243 Oct 28 05:05:32 DNS-2 sshd[5760]: Failed password for invalid user otto from 115.94.140.243 port 39430 ssh2 Oct 28 05:05:33 DNS-2 sshd[5760]: Received disconnect from 115.94.140.243 port 39430:11: Bye Bye [preauth] Oct 28 05:05:33 DNS-2 sshd[5760]: Disconnected from invalid user otto 115.94.140.243 port 39430 [preauth] Oct 28 05:27:56 DNS-2 sshd[6948]: User r.r from 115.94.140.243 not allowed because not listed in AllowUsers Oct 28 05:27:56 DNS-2 sshd[6948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.94.140.243 user=r.r Oct 28 05:27:58 DNS-2 sshd[6948]: Failed password for invalid user r.r from 115.94.140.243 port 42954 ssh2 Oct 28 05:27:58 DNS-2 sshd[6948]: Received disconnect from 115.94.140.243 port 4........ -------------------------------	2019-10-28 18:25:00
82.223.2.51	attack	SSH bruteforce	2019-10-28 18:44:36
112.64.34.165	attackspambots	2019-10-28T05:49:47.837032 sshd[23411]: Invalid user password from 112.64.34.165 port 39156 2019-10-28T05:49:47.851127 sshd[23411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.34.165 2019-10-28T05:49:47.837032 sshd[23411]: Invalid user password from 112.64.34.165 port 39156 2019-10-28T05:49:50.104496 sshd[23411]: Failed password for invalid user password from 112.64.34.165 port 39156 ssh2 2019-10-28T05:55:02.763240 sshd[23452]: Invalid user ultimate1 from 112.64.34.165 port 56975 ...	2019-10-28 18:39:39

Recently Reported IPs

195.245.229.149	165.154.11.52	156.245.145.10	154.216.177.108
54.167.17.103	23.218.62.190	34.105.187.163	59.34.28.215
89.187.187.72	27.207.46.241	23.94.20.102	141.145.148.117
183.7.17.206	175.27.164.113	185.189.225.158	128.203.200.49
199.167.138.119	104.225.154.157	188.177.8.184	178.246.1.99