42.236.17.45 - IPInfo

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '42.224.0.0 - 42.239.255.255'

% Abuse contact for '42.224.0.0 - 42.239.255.255' is 'zhaoyz3@chinaunicom.cn'

inetnum:        42.224.0.0 - 42.239.255.255
netname:        UNICOM-HA
descr:          China Unicom Henan province network
descr:          China Unicom
descr:          No.21,JiN-Rong Street,
descr:          Beijing 100033
country:        CN
admin-c:        CH1302-AP
tech-c:         WW444-AP
abuse-c:        AC1718-AP
status:         ALLOCATED PORTABLE
remarks:        service provider
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CNCGROUP-HA
mnt-routes:     MAINT-CNCGROUP-RR
mnt-irt:        IRT-CU-CN
last-modified:  2025-01-22T13:12:22Z
source:         APNIC

irt:            IRT-CU-CN
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
e-mail:         zhaoyz3@chinaunicom.cn
abuse-mailbox:  zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
auth:           # Filtered
remarks:        zhaoyz3@chinaunicom.cn is invalid
mnt-by:         MAINT-CNCGROUP
last-modified:  2025-09-10T13:07:04Z
source:         APNIC

role:           ABUSE CUCN
country:        ZZ
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
phone:          +000000000
e-mail:         zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
nic-hdl:        AC1718-AP
remarks:        Generated from irt object IRT-CU-CN
remarks:        zhaoyz3@chinaunicom.cn is invalid
abuse-mailbox:  zhaoyz3@chinaunicom.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-09-10T13:08:11Z
source:         APNIC

person:         ChinaUnicom Hostmaster
nic-hdl:        CH1302-AP
e-mail:         hqs-ipabuse@chinaunicom.cn
address:        No.21,Jin-Rong Street
address:        Beijing,100033
address:        P.R.China
phone:          +86-10-66259764
fax-no:         +86-10-66259764
country:        CN
mnt-by:         MAINT-CNCGROUP
last-modified:  2017-08-17T06:13:16Z
source:         APNIC

person:         Wei Wang
nic-hdl:        WW444-AP
e-mail:         abuse@public.zz.ha.cn
address:        #55 San Quan Road, Zhengzhou, Henan Provice
phone:          +86-371-65952358
fax-no:         +86-371-65968952
country:        CN
mnt-by:         MAINT-CNCGROUP-HA
last-modified:  2010-03-05T08:20:01Z
source:         APNIC

% Information related to '42.224.0.0/12AS4837'

route:          42.224.0.0/12
descr:          China Unicom Henan Province Network
country:        CN
origin:         AS4837
mnt-by:         MAINT-CNCGROUP-RR
last-modified:  2011-03-02T05:24:03Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.236.17.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43470
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.236.17.45.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025091801 1800 900 604800 86400

;; Query time: 42 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 19 03:30:15 CST 2025
;; MSG SIZE  rcvd: 105

Host info

45.17.236.42.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.17.236.42.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.197.162.28	attack	Invalid user jackie from 138.197.162.28 port 37754	2020-05-31 19:18:09
128.163.8.100	attack	Attempts against non-existent wp-login	2020-05-31 19:17:13
54.37.159.12	attack	5x Failed Password	2020-05-31 19:29:44
213.178.252.28	attackspambots	May 31 13:18:53 mellenthin sshd[28209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.178.252.28 user=root May 31 13:18:55 mellenthin sshd[28209]: Failed password for invalid user root from 213.178.252.28 port 37172 ssh2	2020-05-31 19:20:15
182.151.3.137	attackbotsspam	20 attempts against mh-ssh on echoip	2020-05-31 19:13:16
212.68.249.25	attackbots	SSH Server BruteForce Attack	2020-05-31 19:25:57
134.175.129.58	attackbotsspam	Invalid user server from 134.175.129.58 port 27100	2020-05-31 18:58:59
139.155.6.26	attack	May 31 00:25:31 mockhub sshd[21547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.6.26 May 31 00:25:34 mockhub sshd[21547]: Failed password for invalid user nagios1 from 139.155.6.26 port 45900 ssh2 ...	2020-05-31 19:21:50
5.206.235.96	attack	May 30 15:01:32 server378 sshd[31370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.206.235.96 user=r.r May 30 15:01:34 server378 sshd[31370]: Failed password for r.r from 5.206.235.96 port 46210 ssh2 May 30 15:01:34 server378 sshd[31370]: Received disconnect from 5.206.235.96 port 46210:11: Bye Bye [preauth] May 30 15:01:34 server378 sshd[31370]: Disconnected from 5.206.235.96 port 46210 [preauth] May 30 15:18:12 server378 sshd[32505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.206.235.96 user=r.r May 30 15:18:15 server378 sshd[32505]: Failed password for r.r from 5.206.235.96 port 48718 ssh2 May 30 15:18:15 server378 sshd[32505]: Received disconnect from 5.206.235.96 port 48718:11: Bye Bye [preauth] May 30 15:18:15 server378 sshd[32505]: Disconnected from 5.206.235.96 port 48718 [preauth] May 30 15:23:02 server378 sshd[414]: pam_unix(sshd:auth): authentication failure; lognam........ -------------------------------	2020-05-31 19:02:23
45.46.222.55	attack	Unauthorized connection attempt detected from IP address 45.46.222.55 to port 80	2020-05-31 19:31:55
203.147.82.34	attackbotsspam	2020-05-3105:42:311jfErm-0002Zk-8a\<=info@whatsup2013.chH=$localhost$[113.190.64.33]:58932P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2997id=08bd0b585378525ac6c375d93e4a607c5384d9@whatsup2013.chT="toalexxvistin09"foralexxvistin09@gmail.combharani_brethart@yahoo.comgauravdas699@gmail.com2020-05-3105:45:191jfEuU-0002jN-Ob\<=info@whatsup2013.chH=$localhost$[113.173.244.174]:49937P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2991id=003187d4dff4ded64a4ff955b2c6ecf01dfe6c@whatsup2013.chT="tokevin_j_jhonatan"forkevin_j_jhonatan@hotmail.comdrb_0072002@yahoo.co.inshahbazgull786.ryk@gmail.com2020-05-3105:45:101jfEuL-0002iI-5p\<=info@whatsup2013.chH=$localhost$[14.234.220.171]:52850P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3001id=adf5a0f3f8d3060a2d68de8d79be34380b07fd30@whatsup2013.chT="topaulapuzzo566"forpaulapuzzo566@gmail.comohman.kirk85@gmail.comssdtrrdff@hotmail.co	2020-05-31 19:06:23
91.121.101.77	attack	91.121.101.77 - - [31/May/2020:09:34:09 +0100] "POST /wp-login.php HTTP/1.1" 200 1930 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.101.77 - - [31/May/2020:09:34:09 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.101.77 - - [31/May/2020:09:43:27 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-05-31 19:09:51
163.172.93.71	attack	(sshd) Failed SSH login from 163.172.93.71 (FR/France/163-172-93-71.rev.poneytelecom.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 31 12:57:25 srv sshd[2563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.93.71 user=root May 31 12:57:27 srv sshd[2563]: Failed password for root from 163.172.93.71 port 41264 ssh2 May 31 13:01:24 srv sshd[2673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.93.71 user=root May 31 13:01:26 srv sshd[2673]: Failed password for root from 163.172.93.71 port 57012 ssh2 May 31 13:04:08 srv sshd[2700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.93.71 user=root	2020-05-31 19:19:38
77.94.124.138	attackspambots	$f2bV_matches	2020-05-31 19:15:01
142.93.15.179	attackspam	$f2bV_matches	2020-05-31 19:08:56

Recently Reported IPs

118.31.132.90	13.32.241.3	74.48.72.168	34.227.75.225
100.24.54.34	192.168.5.218	185.247.137.13	215.93.191.39
45.134.13.211	118.89.233.234	87.236.176.5	185.247.137.76
2409:8929:6f28:84e0:ec1d:28ff:fe1f:415f	240e:440:1210:37f9:1842:6e1a:3c8a:fa2f	159.223.195.64	78.128.114.98
20.163.15.96	59.82.83.47	59.82.83.168	223.104.162.103