城市(city): unknown
省份(region): unknown
国家(country): China
运营商(isp): China Unicom
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 42.239.181.211 | attack | firewall-block, port(s): 26/tcp |
2019-12-04 02:36:26 |
| 42.239.181.19 | attack | SSH authentication failure x 6 reported by Fail2Ban ... |
2019-07-08 10:04:06 |
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '42.224.0.0 - 42.239.255.255'
% Abuse contact for '42.224.0.0 - 42.239.255.255' is 'zhaoyz3@chinaunicom.cn'
inetnum: 42.224.0.0 - 42.239.255.255
netname: UNICOM-HA
descr: China Unicom Henan province network
descr: China Unicom
descr: No.21,JiN-Rong Street,
descr: Beijing 100033
country: CN
admin-c: CH1302-AP
tech-c: WW444-AP
abuse-c: AC1718-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-HA
mnt-routes: MAINT-CNCGROUP-RR
mnt-irt: IRT-CU-CN
last-modified: 2025-01-22T13:12:22Z
source: APNIC
irt: IRT-CU-CN
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
e-mail: zhaoyz3@chinaunicom.cn
abuse-mailbox: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
remarks: zhaoyz3@chinaunicom.cn was validated on 2025-10-17
mnt-by: MAINT-CNCGROUP
last-modified: 2025-10-17T02:26:26Z
source: APNIC
role: ABUSE CUCN
country: ZZ
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
phone: +000000000
e-mail: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
nic-hdl: AC1718-AP
remarks: Generated from irt object IRT-CU-CN
remarks: zhaoyz3@chinaunicom.cn was validated on 2025-10-17
abuse-mailbox: zhaoyz3@chinaunicom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-10-17T02:26:56Z
source: APNIC
person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: hqs-ipabuse@chinaunicom.cn
address: No.21,Jin-Rong Street
address: Beijing,100033
address: P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
mnt-by: MAINT-CNCGROUP
last-modified: 2017-08-17T06:13:16Z
source: APNIC
person: Wei Wang
nic-hdl: WW444-AP
e-mail: abuse@public.zz.ha.cn
address: #55 San Quan Road, Zhengzhou, Henan Provice
phone: +86-371-65952358
fax-no: +86-371-65968952
country: CN
mnt-by: MAINT-CNCGROUP-HA
last-modified: 2010-03-05T08:20:01Z
source: APNIC
% Information related to '42.224.0.0/12AS4837'
route: 42.224.0.0/12
descr: China Unicom Henan Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
last-modified: 2011-03-02T05:24:03Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.239.181.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63749
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;42.239.181.72. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025102401 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 25 12:00:47 CST 2025
;; MSG SIZE rcvd: 10672.181.239.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
72.181.239.42.in-addr.arpa name = hn.kd.ny.adsl.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 172.105.225.204 | attackbots | " " |
2019-10-14 21:17:43 |
| 119.29.170.202 | attackspambots | Oct 14 14:58:19 MK-Soft-VM3 sshd[4461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.170.202 Oct 14 14:58:20 MK-Soft-VM3 sshd[4461]: Failed password for invalid user Wachtwoord!qaz from 119.29.170.202 port 55522 ssh2 ... |
2019-10-14 21:02:32 |
| 177.33.246.207 | attack | Unauthorised access (Oct 14) SRC=177.33.246.207 LEN=44 TTL=50 ID=44422 TCP DPT=23 WINDOW=35483 SYN |
2019-10-14 21:32:54 |
| 106.12.195.224 | attack | Oct 14 01:49:06 kapalua sshd\[16110\]: Invalid user glace from 106.12.195.224 Oct 14 01:49:06 kapalua sshd\[16110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.195.224 Oct 14 01:49:08 kapalua sshd\[16110\]: Failed password for invalid user glace from 106.12.195.224 port 36848 ssh2 Oct 14 01:54:29 kapalua sshd\[16539\]: Invalid user test_user from 106.12.195.224 Oct 14 01:54:29 kapalua sshd\[16539\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.195.224 |
2019-10-14 21:01:37 |
| 124.19.8.14 | attackbots | RDP-Bruteforce | Cancer2Ban-Autoban for Windows (see: https://github.com/Zeziroth/Cancer2Ban) |
2019-10-14 21:13:45 |
| 123.125.71.97 | attackbots | Bad bot/spoofed identity |
2019-10-14 21:34:27 |
| 182.191.113.94 | attack | Looking for resource vulnerabilities |
2019-10-14 21:23:07 |
| 185.90.116.20 | attackspambots | 10/14/2019-09:17:48.416020 185.90.116.20 Protocol: 6 ET SCAN Potential SSH Scan |
2019-10-14 21:23:59 |
| 213.251.35.49 | attack | Oct 14 13:18:01 hcbbdb sshd\[13712\]: Invalid user Contrasena!234 from 213.251.35.49 Oct 14 13:18:01 hcbbdb sshd\[13712\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.251.35.49 Oct 14 13:18:03 hcbbdb sshd\[13712\]: Failed password for invalid user Contrasena!234 from 213.251.35.49 port 45642 ssh2 Oct 14 13:21:51 hcbbdb sshd\[14073\]: Invalid user Hotdog@2017 from 213.251.35.49 Oct 14 13:21:51 hcbbdb sshd\[14073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.251.35.49 |
2019-10-14 21:36:34 |
| 190.146.32.200 | attackspam | Oct 14 01:44:01 sachi sshd\[2002\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.146.32.200 user=root Oct 14 01:44:02 sachi sshd\[2002\]: Failed password for root from 190.146.32.200 port 54044 ssh2 Oct 14 01:48:38 sachi sshd\[2394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.146.32.200 user=root Oct 14 01:48:40 sachi sshd\[2394\]: Failed password for root from 190.146.32.200 port 36688 ssh2 Oct 14 01:53:17 sachi sshd\[2746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.146.32.200 user=root |
2019-10-14 21:32:18 |
| 201.32.178.190 | attackbotsspam | Unauthorized SSH login attempts |
2019-10-14 21:15:52 |
| 218.22.148.105 | attack | B: Magento admin pass test (wrong country) |
2019-10-14 21:06:17 |
| 176.107.133.97 | attackspam | Oct 14 15:18:06 vps691689 sshd[24536]: Failed password for root from 176.107.133.97 port 33450 ssh2 Oct 14 15:22:42 vps691689 sshd[24571]: Failed password for root from 176.107.133.97 port 45242 ssh2 ... |
2019-10-14 21:33:17 |
| 217.112.128.168 | attackspambots | Postfix DNSBL listed. Trying to send SPAM. |
2019-10-14 21:36:07 |
| 49.234.3.90 | attack | Oct 14 14:24:09 meumeu sshd[26975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.3.90 Oct 14 14:24:12 meumeu sshd[26975]: Failed password for invalid user backup2 from 49.234.3.90 port 48764 ssh2 Oct 14 14:29:12 meumeu sshd[27595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.3.90 ... |
2019-10-14 21:14:50 |