JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.236.68.28

42.236.68.28 was found in our database!

This IP was reported 396 times. Confidence of Abuse is 0%: ?

ISP	China Unicom Henan province network
Usage Type	Fixed Line ISP
ASN	AS4837
Hostname(s)	hn.kd.ny.adsl
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Zhengzhou, Henan

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.236.68.28

Whois 42.236.68.28

IP Abuse Reports for 42.236.68.28:

This IP address has been reported a total of 396 times from 176 distinct sources. 42.236.68.28 was first reported on October 24th 2025, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 sh97	2025-11-23 22:17:11 (6 months ago)	IN01-DRDP-HYD: Blocked by Fail2Ban for SSH Brute Force from 42.236.68.28 at 2025-11-23 22:17:11 UTC	Brute-Force SSH
🇮🇳 Parth Maniar	2025-11-20 17:56:14 (6 months ago)	This IP address carried out 2 port scanning attempts on 19-11-2025. For more information or to repor ... show more This IP address carried out 2 port scanning attempts on 19-11-2025. For more information or to report interesting / incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇨🇳 ThreatBook.io	2025-11-19 22:52:21 (6 months ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/42.236.68.28	SSH
🇭🇰 sh97	2025-11-19 13:16:52 (6 months ago)	HK01-AK: SSH Brute Force from 42.236.68.28 at 2025-11-19 08:16:51 EST	Brute-Force SSH
🇨🇭 chilibi.ch	2025-11-18 23:58:19 (6 months ago)	2025-11-18 23:58:19 bul SSH	Brute-Force SSH
🇦🇹 urnilxfgbez	2025-11-18 23:45:00 (6 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇮🇱 31323334.xyz	2025-11-18 22:44:37 (6 months ago)	Nov 18 22:44:28 instance-20241026-2018 sshd[3385511]: Failed password for root from 42.236.68.28 por ... show more Nov 18 22:44:28 instance-20241026-2018 sshd[3385511]: Failed password for root from 42.236.68.28 port 42628 ssh2 Nov 18 22:44:29 instance-20241026-2018 sshd[3385513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 22:44:32 instance-20241026-2018 sshd[3385513]: Failed password for root from 42.236.68.28 port 45414 ssh2 Nov 18 22:44:34 instance-20241026-2018 sshd[3385544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 22:44:37 instance-20241026-2018 sshd[3385544]: Failed password for root from 42.236.68.28 port 48900 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2025-11-18 21:08:59 (6 months ago)	(sshd) Failed SSH login from 42.236.68.28 (CN/China/hn.kd.ny.adsl): 5 in the last 3600 secs; Ports: ... show more (sshd) Failed SSH login from 42.236.68.28 (CN/China/hn.kd.ny.adsl): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Nov 18 15:08:30 16183 sshd[664]: Did not receive identification string from 42.236.68.28 port 49166 Nov 18 15:08:34 16183 sshd[665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 15:08:36 16183 sshd[665]: Failed password for root from 42.236.68.28 port 49666 ssh2 Nov 18 15:08:37 16183 sshd[667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 15:08:40 16183 sshd[667]: Failed password for root from 42.236.68.28 port 56124 ssh2 show less	Brute-Force SSH
🇺🇸 bigscoots.com	2025-11-18 17:32:54 (6 months ago)	(sshd) Failed SSH login from 42.236.68.28 (CN/China/hn.kd.ny.adsl): 5 in the last 3600 secs; Ports: ... show more (sshd) Failed SSH login from 42.236.68.28 (CN/China/hn.kd.ny.adsl): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Nov 18 11:32:27 20624 sshd[15876]: Did not receive identification string from 42.236.68.28 port 41745 Nov 18 11:32:29 20624 sshd[15877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 11:32:31 20624 sshd[15877]: Failed password for root from 42.236.68.28 port 42247 ssh2 Nov 18 11:32:34 20624 sshd[15879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 11:32:37 20624 sshd[15879]: Failed password for root from 42.236.68.28 port 45599 ssh2 show less	Brute-Force SSH
Anonymous	2025-11-18 16:23:49 (6 months ago)	Nov 18 16:23:37 ns5024002 sshd[211499]: Failed password for root from 42.236.68.28 port 56047 ssh2 N ... show more Nov 18 16:23:37 ns5024002 sshd[211499]: Failed password for root from 42.236.68.28 port 56047 ssh2 Nov 18 16:23:40 ns5024002 sshd[211599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 16:23:43 ns5024002 sshd[211599]: Failed password for root from 42.236.68.28 port 59127 ssh2 Nov 18 16:23:47 ns5024002 sshd[211698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 16:23:48 ns5024002 sshd[211698]: Failed password for root from 42.236.68.28 port 43516 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2025-11-18 14:57:15 (6 months ago)	(sshd) Failed SSH login from 42.236.68.28 (CN/China/hn.kd.ny.adsl): 5 in the last 3600 secs; Ports: ... show more (sshd) Failed SSH login from 42.236.68.28 (CN/China/hn.kd.ny.adsl): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Nov 18 08:56:44 15097 sshd[3878]: Did not receive identification string from 42.236.68.28 port 46820 Nov 18 08:56:53 15097 sshd[3882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 08:56:54 15097 sshd[3882]: Failed password for root from 42.236.68.28 port 49684 ssh2 Nov 18 08:56:57 15097 sshd[3892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 08:57:00 15097 sshd[3892]: Failed password for root from 42.236.68.28 port 58918 ssh2 show less	Brute-Force SSH
🇳🇱 Alboweb B.V.	2025-11-18 12:11:25 (6 months ago)	SSH abuse or brute-force attack detected by Fail2Ban in ssh jail	Brute-Force SSH
🇺🇸 bigscoots.com	2025-11-18 08:30:33 (6 months ago)	42.236.68.28 (CN/China/hn.kd.ny.adsl), 5 distributed sshd attacks on account [root] in the last 3600 ... show more 42.236.68.28 (CN/China/hn.kd.ny.adsl), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Nov 18 08:30:15 24180 sshd[22918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 08:30:17 24180 sshd[22918]: Failed password for root from 42.236.68.28 port 49538 ssh2 Nov 18 07:51:10 24180 sshd[19843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.170.47.53 user=root Nov 18 07:45:54 24180 sshd[19397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.170.47.53 user=root Nov 18 07:45:56 24180 sshd[19397]: Failed password for root from 166.170.47.53 port 38803 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇺🇸 bigscoots.com	2025-11-18 07:21:47 (6 months ago)	42.236.68.28 (CN/China/hn.kd.ny.adsl), 5 distributed sshd attacks on account [root] in the last 3600 ... show more 42.236.68.28 (CN/China/hn.kd.ny.adsl), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Nov 18 01:08:28 16861 sshd[19578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.78.206.190 user=root Nov 18 01:08:31 16861 sshd[19578]: Failed password for root from 45.78.206.190 port 56192 ssh2 Nov 18 01:21:36 16861 sshd[20567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.236.68.28 user=root Nov 18 01:21:39 16861 sshd[20567]: Failed password for root from 42.236.68.28 port 47073 ssh2 Nov 18 01:20:56 16861 sshd[20466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.78.206.190 user=root IP Addresses Blocked: 45.78.206.190 (SG/Singapore/-) show less	Brute-Force SSH
🇳🇱 Deveroonie	2025-11-18 05:02:05 (6 months ago)	2025-11-18T05:02:02.612354+00:00 axolotl-ams sshd[283948]: Failed password for root from 42.236.68.2 ... show more 2025-11-18T05:02:02.612354+00:00 axolotl-ams sshd[283948]: Failed password for root from 42.236.68.28 port 50950 ssh2 2025-11-18T05:02:04.948964+00:00 axolotl-ams sshd[283948]: Connection closed by authenticating user root 42.236.68.28 port 50950 [preauth] ... show less	Hacking Brute-Force SSH

Showing 1 to 15 of 396 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 2409:40e4:5b:a085:49e2:6640:2bd0:1276

🇩🇪 213.209.159.242

🇨🇳 180.76.202.69

🇩🇪 172.71.172.83

🇺🇸 162.216.149.146

🇩🇪 84.32.10.175

🇺🇸 52.180.157.88

🇱🇧 45.129.136.12

🇺🇸 38.148.249.2

🇩🇪 172.71.172.53

🇵🇰 119.73.19.52

🇳🇵 103.191.131.188

🇬🇧 51.195.215.242

🇫🇷 38.242.227.136

🇫🇷 217.76.54.95

🇰🇷 211.223.107.86

🇲🇽 187.141.71.166

🇫🇷 185.188.249.30

🇰🇷 175.126.37.156

🇮🇳 152.59.18.207