City: unknown
Region: unknown
Country: China
Internet Service Provider: China Unicom
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '42.4.0.0 - 42.7.255.255'
% Abuse contact for '42.4.0.0 - 42.7.255.255' is 'zhaoyz3@chinaunicom.cn'
inetnum: 42.4.0.0 - 42.7.255.255
netname: UNICOM-LN
descr: UNICOM Liaoning Province Network
descr: China Unicom
descr: No.21, Jin-Rong Street
descr: Beijing 100033
country: CN
admin-c: CH444-AP
tech-c: ZB17-AP
abuse-c: AC1718-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP
mnt-routes: MAINT-CNCGROUP-RR
mnt-irt: IRT-CU-CN
last-modified: 2023-10-21T03:34:45Z
source: APNIC
irt: IRT-CU-CN
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
e-mail: zhaoyz3@chinaunicom.cn
abuse-mailbox: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
auth: # Filtered
remarks: zhaoyz3@chinaunicom.cn was validated on 2025-10-17
mnt-by: MAINT-CNCGROUP
last-modified: 2025-11-18T00:26:20Z
source: APNIC
role: ABUSE CUCN
country: ZZ
address: No.21,Financial Street
address: Beijing,100033
address: P.R.China
phone: +000000000
e-mail: zhaoyz3@chinaunicom.cn
admin-c: CH1302-AP
tech-c: CH1302-AP
nic-hdl: AC1718-AP
remarks: Generated from irt object IRT-CU-CN
remarks: zhaoyz3@chinaunicom.cn was validated on 2025-10-17
abuse-mailbox: zhaoyz3@chinaunicom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-10-17T02:26:56Z
source: APNIC
person: CNCGroup Hostmaster
nic-hdl: CH444-AP
e-mail: hqs-ipabuse@chinaunicom.cn
address: No.21,Financial Street
address: Beijing,100033,P.R.China
phone: +86-10-66259764
fax-no: +86-10-66259764
country: CN
mnt-by: MAINT-CN-CUCGROUP
last-modified: 2017-09-05T06:36:14Z
source: APNIC
person: ZHAO BO
address: 96,JieFang Road ChangChun 130021 China.
country: CN
phone: +86-431-8925217
fax-no: +86-431-8925190
e-mail: wtg@mail.jl.cn
nic-hdl: ZB17-AP
mnt-by: MAINT-CHINANET-JL
last-modified: 2008-09-04T07:30:04Z
source: APNIC
% Information related to '42.4.0.0/14AS4837'
route: 42.4.0.0/14
descr: China Unicom Liaoning Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
last-modified: 2011-03-02T05:24:02Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.7.152.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29244
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;42.7.152.129. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026031101 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 12 04:30:18 CST 2026
;; MSG SIZE rcvd: 105Host 129.152.7.42.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 129.152.7.42.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 121.66.224.90 | attack | Oct 6 22:20:28 dedicated sshd[937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.66.224.90 user=root Oct 6 22:20:30 dedicated sshd[937]: Failed password for root from 121.66.224.90 port 50844 ssh2 |
2019-10-07 04:27:26 |
| 121.240.227.66 | attack | (sshd) Failed SSH login from 121.240.227.66 (IN/India/121.240.227.66.static-mumbai.vsnl.net.in): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 6 20:59:34 server2 sshd[7950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.240.227.66 user=root Oct 6 20:59:36 server2 sshd[7950]: Failed password for root from 121.240.227.66 port 53099 ssh2 Oct 6 21:31:41 server2 sshd[12002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.240.227.66 user=root Oct 6 21:31:43 server2 sshd[12002]: Failed password for root from 121.240.227.66 port 14084 ssh2 Oct 6 21:53:02 server2 sshd[13719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.240.227.66 user=root |
2019-10-07 04:32:52 |
| 150.95.110.90 | attackspambots | 2019-10-06T20:06:59.811674shield sshd\[29715\]: Invalid user Ricardo2017 from 150.95.110.90 port 43464 2019-10-06T20:06:59.816665shield sshd\[29715\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v150-95-110-90.a00d.g.han1.static.cnode.io 2019-10-06T20:07:02.274925shield sshd\[29715\]: Failed password for invalid user Ricardo2017 from 150.95.110.90 port 43464 ssh2 2019-10-06T20:11:36.605674shield sshd\[30292\]: Invalid user Ricardo2017 from 150.95.110.90 port 55462 2019-10-06T20:11:36.609872shield sshd\[30292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v150-95-110-90.a00d.g.han1.static.cnode.io |
2019-10-07 04:27:54 |
| 51.38.48.127 | attackspam | Oct 6 19:50:23 sshgateway sshd\[5166\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.48.127 user=root Oct 6 19:50:25 sshgateway sshd\[5166\]: Failed password for root from 51.38.48.127 port 52464 ssh2 Oct 6 19:53:53 sshgateway sshd\[5172\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.48.127 user=root |
2019-10-07 04:04:30 |
| 152.136.76.134 | attack | Oct 6 19:53:02 anodpoucpklekan sshd[100383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.76.134 user=root Oct 6 19:53:04 anodpoucpklekan sshd[100383]: Failed password for root from 152.136.76.134 port 49993 ssh2 ... |
2019-10-07 04:34:06 |
| 77.247.108.222 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-10-07 04:37:01 |
| 149.129.222.128 | attackspambots | Web App Attack |
2019-10-07 04:43:09 |
| 222.186.15.110 | attackspam | Unauthorized access to SSH at 6/Oct/2019:20:27:25 +0000. Received: (SSH-2.0-PUTTY) |
2019-10-07 04:31:43 |
| 220.244.98.26 | attack | Oct 6 16:25:14 TORMINT sshd\[7782\]: Invalid user Cent0s123!@\# from 220.244.98.26 Oct 6 16:25:14 TORMINT sshd\[7782\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.244.98.26 Oct 6 16:25:16 TORMINT sshd\[7782\]: Failed password for invalid user Cent0s123!@\# from 220.244.98.26 port 57722 ssh2 ... |
2019-10-07 04:35:52 |
| 139.59.249.255 | attackspam | Oct 6 20:10:48 localhost sshd\[76511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.255 user=root Oct 6 20:10:50 localhost sshd\[76511\]: Failed password for root from 139.59.249.255 port 22996 ssh2 Oct 6 20:15:17 localhost sshd\[76715\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.255 user=root Oct 6 20:15:19 localhost sshd\[76715\]: Failed password for root from 139.59.249.255 port 63042 ssh2 Oct 6 20:19:55 localhost sshd\[76920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.255 user=root ... |
2019-10-07 04:35:10 |
| 5.39.85.175 | attackbots | SSH Brute-Force reported by Fail2Ban |
2019-10-07 04:02:35 |
| 54.37.254.57 | attack | Oct 6 10:04:32 auw2 sshd\[5635\]: Invalid user 123Faithless from 54.37.254.57 Oct 6 10:04:32 auw2 sshd\[5635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3108951.ip-54-37-254.eu Oct 6 10:04:35 auw2 sshd\[5635\]: Failed password for invalid user 123Faithless from 54.37.254.57 port 52452 ssh2 Oct 6 10:08:24 auw2 sshd\[5997\]: Invalid user Compilern-123 from 54.37.254.57 Oct 6 10:08:24 auw2 sshd\[5997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3108951.ip-54-37-254.eu |
2019-10-07 04:25:37 |
| 49.205.203.159 | attackspambots | Oct 6 22:53:42 hosting sshd[21696]: Invalid user pi from 49.205.203.159 port 45704 Oct 6 22:53:42 hosting sshd[21695]: Invalid user pi from 49.205.203.159 port 45698 Oct 6 22:53:42 hosting sshd[21696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.205.203.159 Oct 6 22:53:42 hosting sshd[21696]: Invalid user pi from 49.205.203.159 port 45704 Oct 6 22:53:44 hosting sshd[21696]: Failed password for invalid user pi from 49.205.203.159 port 45704 ssh2 Oct 6 22:53:42 hosting sshd[21695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.205.203.159 Oct 6 22:53:42 hosting sshd[21695]: Invalid user pi from 49.205.203.159 port 45698 Oct 6 22:53:44 hosting sshd[21695]: Failed password for invalid user pi from 49.205.203.159 port 45698 ssh2 ... |
2019-10-07 04:10:33 |
| 185.176.27.122 | attackbots | 10/06/2019-15:53:09.185380 185.176.27.122 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-10-07 04:30:44 |
| 177.159.76.57 | attackspambots | Automatic report - Port Scan Attack |
2019-10-07 04:29:32 |