1.28.20.129 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.28.205.62	attack	(ftpd) Failed FTP login from 1.28.205.62 (CN/China/-): 10 in the last 3600 secs	2020-05-08 02:37:50
1.28.205.62	attack	(ftpd) Failed FTP login from 1.28.205.62 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: May 6 08:27:12 ir1 pure-ftpd: (?@1.28.205.62) [WARNING] Authentication failed for user [anonymous]	2020-05-06 12:42:17
1.28.204.128	attackspam	(ftpd) Failed FTP login from 1.28.204.128 (CN/China/-): 10 in the last 3600 secs	2020-04-22 16:20:22
1.28.204.128	attackspam	Apr 15 06:51:27 prod4 vsftpd\[7390\]: \[anonymous\] FAIL LOGIN: Client "1.28.204.128" Apr 15 06:51:31 prod4 vsftpd\[7392\]: \[www\] FAIL LOGIN: Client "1.28.204.128" Apr 15 06:51:34 prod4 vsftpd\[7395\]: \[www\] FAIL LOGIN: Client "1.28.204.128" Apr 15 06:51:39 prod4 vsftpd\[7402\]: \[www\] FAIL LOGIN: Client "1.28.204.128" Apr 15 06:51:43 prod4 vsftpd\[7404\]: \[www\] FAIL LOGIN: Client "1.28.204.128" ...	2020-04-15 19:31:45
1.28.205.33	attack	Port scan on 1 port(s): 1433	2020-03-27 14:51:46
1.28.205.152	attack	Port scan on 1 port(s): 21	2020-01-23 17:53:56
1.28.204.134	attackbots	Scanning	2019-12-26 20:01:29
1.28.206.105	attackbots	FTP Brute Force	2019-12-08 21:41:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.28.20.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33165
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.28.20.129.			IN	A

;; AUTHORITY SECTION:
.			592	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022092401 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 25 07:09:08 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 129.20.28.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.20.28.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
162.247.74.74	attack	Invalid user zte from 162.247.74.74 port 54436	2019-09-13 11:23:08
23.92.225.228	attack	Invalid user cactiuser from 23.92.225.228 port 42703	2019-09-13 11:09:01
120.52.9.102	attack	Sep 13 05:10:11 v22019058497090703 sshd[20041]: Failed password for root from 120.52.9.102 port 19113 ssh2 Sep 13 05:18:09 v22019058497090703 sshd[20613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.9.102 Sep 13 05:18:12 v22019058497090703 sshd[20613]: Failed password for invalid user hamza from 120.52.9.102 port 34759 ssh2 ...	2019-09-13 11:54:07
162.247.74.206	attackspam	Invalid user zte from 162.247.74.206 port 54798	2019-09-13 11:22:49
104.236.72.182	attack	firewall-block, port(s): 3389/tcp	2019-09-13 11:29:35
116.110.95.195	attackbots	SSH invalid-user multiple login try	2019-09-13 11:26:10
185.220.102.6	attackspambots	Sep 13 04:08:18 rotator sshd\[9910\]: Invalid user 123 from 185.220.102.6Sep 13 04:08:21 rotator sshd\[9910\]: Failed password for invalid user 123 from 185.220.102.6 port 33507 ssh2Sep 13 04:08:24 rotator sshd\[9913\]: Invalid user 123321 from 185.220.102.6Sep 13 04:08:26 rotator sshd\[9913\]: Failed password for invalid user 123321 from 185.220.102.6 port 34073 ssh2Sep 13 04:08:28 rotator sshd\[9913\]: Failed password for invalid user 123321 from 185.220.102.6 port 34073 ssh2Sep 13 04:08:31 rotator sshd\[9915\]: Invalid user 1234 from 185.220.102.6 ...	2019-09-13 11:48:51
99.149.251.77	attackspambots	Invalid user user from 99.149.251.77 port 48724	2019-09-13 11:30:35
118.25.42.51	attackbots	Invalid user rstudio from 118.25.42.51 port 44540	2019-09-13 11:54:36
23.129.64.159	attackspam	2019-08-15T13:53:58.013745wiz-ks3 sshd[8971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.emeraldonion.org user=root 2019-08-15T13:54:00.183238wiz-ks3 sshd[8971]: Failed password for root from 23.129.64.159 port 12727 ssh2 2019-08-15T13:54:03.156899wiz-ks3 sshd[8971]: Failed password for root from 23.129.64.159 port 12727 ssh2 2019-08-15T13:53:58.013745wiz-ks3 sshd[8971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.emeraldonion.org user=root 2019-08-15T13:54:00.183238wiz-ks3 sshd[8971]: Failed password for root from 23.129.64.159 port 12727 ssh2 2019-08-15T13:54:03.156899wiz-ks3 sshd[8971]: Failed password for root from 23.129.64.159 port 12727 ssh2 2019-08-15T13:53:58.013745wiz-ks3 sshd[8971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.emeraldonion.org user=root 2019-08-15T13:54:00.183238wiz-ks3 sshd[8971]: Failed password for root from 23.129.64.159 port 12727 s	2019-09-13 11:40:16
185.100.87.206	attack	Invalid user zte from 185.100.87.206 port 43959	2019-09-13 11:49:20
195.224.138.61	attack	Invalid user factorio from 195.224.138.61 port 60306	2019-09-13 11:47:08
41.33.119.67	attack	Invalid user sinusbot from 41.33.119.67 port 2654	2019-09-13 11:35:28
185.34.33.2	attack	Invalid user zte from 185.34.33.2 port 40832	2019-09-13 11:17:41
104.244.79.222	attack	Invalid user zte from 104.244.79.222 port 59370	2019-09-13 11:28:25

Recently Reported IPs

1.28.173.81	1.28.127.14	1.27.76.146	1.28.19.144
1.27.70.78	1.28.100.242	1.28.234.108	1.28.135.74
1.3.173.13	1.27.52.56	1.28.15.67	1.28.159.0
1.28.179.94	1.27.73.130	1.28.164.243	1.28.167.194
1.28.229.43	1.28.145.231	1.27.176.249	1.26.95.62