42.230.216.180

China

0

Resolved hostnames

0

Contacting malwares

0

Online malicious URLs allocated

0

Offline malicious URLs allocated

Blacklist timeline

Malicious Host

HoneyDB

First seen: Sat Oct 17 2020 23:00:00 GMT+0000
Last seen: Sun Oct 18 2020 00:00:00 GMT+0000
Period: an hour

Whois information

Autonomous System
AS Name:
AS4837 CNCGROUP China169 Backbone
AS Country Code:
CN (China)
AS Registry:
apnic
AS Date:
Thu Feb 17 2011 00:00:00 GMT+0000
AS CIDR:
42.224.0.0/12

Registrant information
Registrant name:
China Unicom Henan province network China Unicom No.21,JiN-Rong Street, Beijing 100033
Address:
No.21,Financial Street Beijing,100033 P.R.China
Country Code:
CN (China)
City:
Xinyang

Emails
Emails:
  • hqs-ipabuse@chinaunicom.cn
  • abuse@public.zz.ha.cn
    • Dates
    Indexed:
    Mon Oct 19 2020 03:33:20 GMT+0000
    Last modified:
    Tue May 09 2023 04:50:22 GMT+0000
    AS Date:
    Thu Feb 17 2011 00:00:00 GMT+0000

    Location - Xinyang - China

    Tags

    Developers can check API Specification here:

    API Specification

    Request:

              
curl -H "Authorization: Bearer <API_KEY>" https://api.maltiverse.com/ip/42.230.216.180

    Request:

    Alternatively you can use Maltiverse Python3 Library: 
              
import requests
import json

url = 'https://api.maltiverse.com/ip/42.230.216.180'
response = requests.get(url)
print(json.dumps(response.json(), indent=4, sort_keys=True))

    Request:

              
$url = 'https://api.maltiverse.com/ip/42.230.216.180'
$headers =  @{Authorization=("Bearer {0}" -f "<API_KEY>")}
$response = Invoke-RestMethod $url -Headers $headers
Write-Output $response

    Response:

          
{
    "address": "No.21,Financial Street\nBeijing,100033\nP.R.China",
    "as_name": "AS4837 CNCGROUP China169 Backbone",
    "as_number": "4837",
    "asn_cidr": "42.224.0.0/12",
    "asn_country_code": "CN",
    "asn_date": "2011-02-17 00:00:00",
    "asn_registry": "apnic",
    "blacklist": [
        {
            "count": 1,
            "description": "Malicious Host",
            "first_seen": "2020-10-18 00:00:00",
            "last_seen": "2020-10-18 00:00:00",
            "source": "HoneyDB"
        },
        {
            "count": 1,
            "description": "SSH Attacker",
            "first_seen": "2023-05-08 04:48:42",
            "labels": [
                "malicious-activity"
            ],
            "last_seen": "2023-05-09 04:50:22",
            "source": "Blocklist.de"
        }
    ],
    "cidr": [
        "42.224.0.0/12"
    ],
    "city": "Xinyang",
    "classification": "suspicious",
    "country_code": "CN",
    "creation_time": "2020-10-19 03:33:20",
    "email": [
        "hqs-ipabuse@chinaunicom.cn",
        "abuse@public.zz.ha.cn"
    ],
    "ip_addr": "42.230.216.180",
    "ip_version": 4,
    "is_cdn": false,
    "is_cnc": false,
    "is_distributing_malware": false,
    "is_hosting": false,
    "is_iot_threat": false,
    "is_known_attacker": false,
    "is_known_scanner": false,
    "is_mining_pool": false,
    "is_open_proxy": false,
    "is_sinkhole": false,
    "is_tor_node": false,
    "is_vpn_node": false,
    "location": {
        "lat": 32.1228,
        "lon": 114.0656
    },
    "modification_time": "2023-05-09 04:50:22",
    "number_of_blacklisted_domains_resolving": 0,
    "number_of_domains_resolving": 0,
    "number_of_offline_malicious_urls_allocated": 0,
    "number_of_online_malicious_urls_allocated": 0,
    "number_of_whitelisted_domains_resolving": 0,
    "registrant_name": "China Unicom Henan province network\nChina Unicom\nNo.21,JiN-Rong Street,\nBeijing 100033",
    "tag": [
        "ssh",
        "bruteforce",
        "bot"
    ],
    "type": "ip"
}