JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.228.19.2

42.228.19.2 was found in our database!

This IP was reported 222 times. Confidence of Abuse is 100%: ?

100%

ISP	China Unicom Henan province network
Usage Type	Fixed Line ISP
ASN	AS4837
Hostname(s)	hn.kd.ny.adsl
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Zhengzhou, Henan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.228.19.2

Whois 42.228.19.2

IP Abuse Reports for 42.228.19.2:

This IP address has been reported a total of 222 times from 129 distinct sources. 42.228.19.2 was first reported on May 23rd 2025, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇹 alph44	2026-05-26 05:18:05 (2 weeks ago)	SSH brute force attack detected: 5 failed attempts	Brute-Force
🇺🇸 bigscoots.com	2026-05-26 03:56:30 (2 weeks ago)	42.228.19.2 (CN/China/hn.kd.ny.adsl), 5 distributed sshd attacks on account [root] in the last 3600 ... show more 42.228.19.2 (CN/China/hn.kd.ny.adsl), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 26 03:52:59 22498 sshd[10062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.69.96.120 user=root May 26 03:53:01 22498 sshd[10062]: Failed password for root from 103.69.96.120 port 41632 ssh2 May 26 03:56:11 22498 sshd[10487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.228.19.2 user=root May 26 03:56:13 22498 sshd[10487]: Failed password for root from 42.228.19.2 port 58248 ssh2 May 26 03:56:15 22498 sshd[10489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.228.19.2 user=root IP Addresses Blocked: 103.69.96.120 (VN/Vietnam/-) show less	Brute-Force SSH
🇷🇺 StalKlim	2026-05-26 00:27:39 (2 weeks ago)	SSH brute-force attempt	SSH Brute-Force
🇺🇸 amit177	2026-05-25 22:54:56 (2 weeks ago)		Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-25 21:59:18 (2 weeks ago)	(sshd) Failed SSH login from 42.228.19.2 (CN/China/hn.kd.ny.adsl): 5 in the last 3600 secs; Ports: * ... show more (sshd) Failed SSH login from 42.228.19.2 (CN/China/hn.kd.ny.adsl): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 25 16:59:08 15252 sshd[22700]: Did not receive identification string from 42.228.19.2 port 54455 May 25 16:59:09 15252 sshd[22702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.228.19.2 user=root May 25 16:59:11 15252 sshd[22702]: Failed password for root from 42.228.19.2 port 54463 ssh2 May 25 16:59:13 15252 sshd[22704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.228.19.2 user=root May 25 16:59:14 15252 sshd[22704]: Failed password for root from 42.228.19.2 port 54492 ssh2 show less	Brute-Force SSH
🇺🇸 r	2026-05-25 14:49:34 (2 weeks ago)	May 25 14:49:34 panel sshd[21640]: Failed password for root from 42.228.19.2 port 38256 ssh2	Brute-Force SSH
Anonymous	2026-05-25 13:45:45 (2 weeks ago)	SSH Brute Force (3 attempts). Evidence: sshd-session[210112]: Connection closed by authenticating us ... show more SSH Brute Force (3 attempts). Evidence: sshd-session[210112]: Connection closed by authenticating user root 42.228.19.2 port 46455 [preauth];sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.228.19.2 user=root show less	Brute-Force SSH
🇬🇧 PeravixGroup	2026-05-25 08:31:46 (2 weeks ago)	Honeypot detection: SSH brute-force authentication attempt on port 22. Severity: MEDIUM. Aaran.cloud	SSH Brute-Force
🇨🇳 さいとうあすか	2026-05-25 03:30:08 (2 weeks ago)	2026-05-25T11:30:04.955764+08:00 pbs sshd[2086185]: pam_unix(sshd:auth): authentication failure; log ... show more 2026-05-25T11:30:04.955764+08:00 pbs sshd[2086185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.228.19.2 user=root 2026-05-25T11:30:06.945942+08:00 pbs sshd[2086185]: Failed password for root from 42.228.19.2 port 35926 ssh2 ... show less	Brute-Force SSH
🇨🇦 d-eath.ca	2026-05-24 23:51:38 (2 weeks ago)	2026-05-24T19:51:27.010945-04:00 oinkvps sshd[231743]: Failed password for root from 42.228.19.2 por ... show more 2026-05-24T19:51:27.010945-04:00 oinkvps sshd[231743]: Failed password for root from 42.228.19.2 port 51268 ssh2 2026-05-24T19:51:30.608830-04:00 oinkvps sshd[231745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.228.19.2 user=root 2026-05-24T19:51:32.943365-04:00 oinkvps sshd[231745]: Failed password for root from 42.228.19.2 port 51300 ssh2 2026-05-24T19:51:36.380269-04:00 oinkvps sshd[231747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.228.19.2 user=root 2026-05-24T19:51:38.539426-04:00 oinkvps sshd[231747]: Failed password for root from 42.228.19.2 port 51330 ssh2 ... show less	Brute-Force SSH
🇫🇮 ValtonTahiri	2026-05-24 16:43:59 (2 weeks ago)	Windows IPBan blocked brute-force / failed login activity. Source=SSH; Username=root; Count=6	Brute-Force SSH
🇺🇸 fazar	2026-05-24 15:25:55 (2 weeks ago)	crowdsecurity/ssh-bf on node: us01	SSH Brute-Force
🇩🇪 sh97	2026-05-24 11:33:48 (2 weeks ago)	DE902-V6-FFM: SSH Brute Force from 42.228.19.2 at 2026-05-24 17:03:48 IST	Brute-Force SSH
🇿🇦 updown.io	2026-05-23 12:54:25 (2 weeks ago)	2026-05-23T12:53:58.569805+00:00 cap.updn.io sshd[853211]: Failed password for root from 42.228.19.2 ... show more 2026-05-23T12:53:58.569805+00:00 cap.updn.io sshd[853211]: Failed password for root from 42.228.19.2 port 50646 ssh2 2026-05-23T12:54:14.175437+00:00 cap.updn.io sshd[853658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.228.19.2 user=root 2026-05-23T12:54:16.082483+00:00 cap.updn.io sshd[853658]: Failed password for root from 42.228.19.2 port 50660 ssh2 2026-05-23T12:54:22.458331+00:00 cap.updn.io sshd[854235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.228.19.2 user=root 2026-05-23T12:54:24.796188+00:00 cap.updn.io sshd[854235]: Failed password for root from 42.228.19.2 port 50675 ssh2 ... show less	Brute-Force SSH
🇳🇱 Futunk	2026-05-23 11:51:16 (2 weeks ago)	2026-05-23T13:51:12.893516+02:00 ezri sshd[925046]: error: kex_exchange_identification: Connection c ... show more 2026-05-23T13:51:12.893516+02:00 ezri sshd[925046]: error: kex_exchange_identification: Connection closed by remote host 2026-05-23T13:51:12.893553+02:00 ezri sshd[925046]: Connection closed by 42.228.19.2 port 56508 2026-05-23T13:51:15.229603+02:00 ezri sshd[925050]: User root from 42.228.19.2 not allowed because not listed in AllowUsers 2026-05-23T13:51:15.472179+02:00 ezri sshd[925050]: Connection closed by invalid user root 42.228.19.2 port 56511 [preauth] ... show less	Brute-Force SSH

Showing 1 to 15 of 222 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇩 163.61.213.24

🇨🇳 101.96.203.31

🇬🇧 35.203.211.235

🇩🇪 167.94.146.36

🇱🇾 154.73.53.21

🇫🇮 147.185.133.237

🇸🇬 47.237.205.127

🇳🇱 45.156.128.66

🇸🇬 45.82.78.107

🇺🇸 34.174.167.182

🇺🇸 34.174.70.38

🇺🇸 20.228.89.44

🇺🇸 20.65.193.159

🇺🇸 142.93.55.15

🇩🇪 91.196.34.20

🇹🇭 45.194.70.249

🇳🇱 45.148.10.183

🇲🇽 187.136.39.253

🇧🇷 181.214.221.184

🇺🇸 162.217.164.14