134.90.252.28 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
134.90.252.0	attackspambots	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-10-08 02:08:40
134.90.252.0	attackspam	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-10-07 18:17:19

Type

Details

Datetime

134.90.252.0

attackspambots

[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.

2020-10-08 02:08:40

134.90.252.0

attackspam

[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.

2020-10-07 18:17:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.90.252.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30095
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.90.252.28.			IN	A

;; AUTHORITY SECTION:
.			300	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 06:55:00 CST 2022
;; MSG SIZE  rcvd: 106

Host info

28.252.90.134.in-addr.arpa domain name pointer host-134-90-252-28.geny.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
28.252.90.134.in-addr.arpa	name = host-134-90-252-28.geny.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
121.7.25.86	attack	5432/tcp 5432/tcp 5432/tcp [2019-10-22/12-15]3pkt	2019-12-16 06:58:04
101.251.72.205	attackspam	SSH Bruteforce attack	2019-12-16 06:51:19
124.163.212.124	attackbots	1433/tcp 1433/tcp 1433/tcp... [2019-10-25/12-15]4pkt,1pt.(tcp)	2019-12-16 07:05:21
64.95.98.37	attackbots	64.95.98.37 was recorded 13 times by 13 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 13, 41, 292	2019-12-16 06:34:46
167.250.132.18	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-12-16 06:38:32
210.211.116.204	attack	Dec 15 06:48:39 php1 sshd\[17514\]: Invalid user guest from 210.211.116.204 Dec 15 06:48:39 php1 sshd\[17514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.211.116.204 Dec 15 06:48:41 php1 sshd\[17514\]: Failed password for invalid user guest from 210.211.116.204 port 13171 ssh2 Dec 15 06:55:41 php1 sshd\[18263\]: Invalid user home from 210.211.116.204 Dec 15 06:55:41 php1 sshd\[18263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.211.116.204	2019-12-16 06:28:01
182.73.208.249	attackspam	Unauthorized connection attempt from IP address 182.73.208.249 on Port 445(SMB)	2019-12-16 06:28:49
162.243.237.90	attackbots	Brute-force attempt banned	2019-12-16 06:57:24
192.187.125.250	attackbotsspam	[portscan] Port scan	2019-12-16 06:29:14
132.232.43.115	attack	Dec 15 23:49:44 ArkNodeAT sshd\[20059\]: Invalid user v01 from 132.232.43.115 Dec 15 23:49:44 ArkNodeAT sshd\[20059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.43.115 Dec 15 23:49:45 ArkNodeAT sshd\[20059\]: Failed password for invalid user v01 from 132.232.43.115 port 41652 ssh2	2019-12-16 07:04:15
117.50.100.216	attack	Dec 15 17:54:36 debian-2gb-nbg1-2 kernel: \[81665.907222\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=117.50.100.216 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=236 ID=16643 PROTO=TCP SPT=58914 DPT=636 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-16 06:45:51
117.4.89.159	attackbots	Unauthorized connection attempt from IP address 117.4.89.159 on Port 445(SMB)	2019-12-16 06:41:19
190.54.97.162	attackbotsspam	2019-12-15T13:47:44.844629ns547587 sshd\[20863\]: Invalid user kan from 190.54.97.162 port 40274 2019-12-15T13:47:44.850388ns547587 sshd\[20863\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.54.97.162 2019-12-15T13:47:46.588923ns547587 sshd\[20863\]: Failed password for invalid user kan from 190.54.97.162 port 40274 ssh2 2019-12-15T13:55:12.284355ns547587 sshd\[32333\]: Invalid user rangasamy from 190.54.97.162 port 58813 2019-12-15T13:55:12.289110ns547587 sshd\[32333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.54.97.162 ...	2019-12-16 06:44:48
37.237.214.15	normal	format	2019-12-16 06:56:06
89.185.1.175	attack	Triggered by Fail2Ban at Vostok web server	2019-12-16 06:44:01

Recently Reported IPs

134.90.252.99	134.90.253.189	134.90.253.104	134.90.253.124
134.90.253.135	118.174.164.182	134.90.252.33	134.90.253.176
134.90.253.203	134.90.253.207	134.90.253.45	134.90.253.214
118.174.164.192	134.90.253.52	134.90.253.72	134.90.253.74
134.90.255.118	134.90.253.96	134.90.253.54	134.90.255.154