196.28.28.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.28.28.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51269
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;196.28.28.74.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022200 1800 900 604800 86400

;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 18:27:19 CST 2025
;; MSG SIZE  rcvd: 105

Host info

74.28.28.196.in-addr.arpa domain name pointer 74.28.28.196.netactive.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
74.28.28.196.in-addr.arpa	name = 74.28.28.196.netactive.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.249.145.245	attack	Jul 31 06:22:42 server1 sshd\[9158\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.145.245 user=root Jul 31 06:22:44 server1 sshd\[9158\]: Failed password for root from 5.249.145.245 port 47029 ssh2 Jul 31 06:27:29 server1 sshd\[10536\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.145.245 user=root Jul 31 06:27:31 server1 sshd\[10536\]: Failed password for root from 5.249.145.245 port 52680 ssh2 Jul 31 06:32:15 server1 sshd\[7118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.145.245 user=root ...	2020-07-31 22:18:52
151.80.176.191	attackbots	web-1 [ssh] SSH Attack	2020-07-31 22:39:24
99.185.76.161	attackspam	Jul 31 16:02:47 haigwepa sshd[12023]: Failed password for root from 99.185.76.161 port 41226 ssh2 ...	2020-07-31 22:11:41
45.134.179.57	attackspambots	Jul 31 16:05:52 debian-2gb-nbg1-2 kernel: \[18462838.260228\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.134.179.57 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=16475 PROTO=TCP SPT=53703 DPT=2688 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-31 22:17:01
51.91.111.73	attackspam	fail2ban -- 51.91.111.73 ...	2020-07-31 22:47:17
171.244.26.200	attackspambots	Port scan: Attack repeated for 24 hours	2020-07-31 22:18:24
117.50.7.14	attackspam	Jul 31 14:01:17 server sshd[25116]: Failed password for root from 117.50.7.14 port 59228 ssh2 Jul 31 14:04:49 server sshd[26240]: Failed password for root from 117.50.7.14 port 39857 ssh2 Jul 31 14:08:16 server sshd[27367]: Failed password for root from 117.50.7.14 port 20480 ssh2	2020-07-31 22:51:59
49.69.109.201	attackspam	2020-07-28 05:53:36,190 fail2ban.filter [2207]: INFO [ssh] Found 49.69.109.201 - 2020-07-28 05:53:36 2020-07-28 05:53:39,547 fail2ban.filter [2207]: INFO [ssh] Found 49.69.109.201 - 2020-07-28 05:53:39 2020-07-28 05:53:41,172 fail2ban.filter [2207]: INFO [ssh] Found 49.69.109.201 - 2020-07-28 05:53:41 2020-07-28 05:53:43,951 fail2ban.filter [2207]: INFO [ssh] Found 49.69.109.201 - 2020-07-28 05:53:43 2020-07-28 05:53:46,223 fail2ban.filter [2207]: INFO [ssh] Found 49.69.109.201 - 2020-07-28 05:53:46 2020-07-28 05:53:48,968 fail2ban.filter [2207]: INFO [ssh] Found 49.69.109.201 - 2020-07-28 05:53:48 2020-07-28 05:53:52,859 fail2ban.filter [2207]: INFO [ssh] Found 49.69.109.201 - 2020-07-28 05:53:52 2020-07-28 05:53:56,670 fail2ban.filter [2207]: INFO [ssh] Found 49.69.109.201 - 2020-07-28 05:53:56 2020-07-28 05:54:02,875 fail2ban.filter [2207]: INFO [ssh] Found 49.69.109.20........ -------------------------------	2020-07-31 22:36:57
132.148.154.8	attack	CF RAY ID: 5baaa76a6809f24f IP Class: noRecord URI: /xmlrpc.php	2020-07-31 22:35:27
52.199.247.12	attackbots	virus attached.eceived: from 10.217.151.10 by atlas210.free.mail.ne1.yahoo.com with HTTP; Thu, 30 Jul 2020 21:49:27 +0000 Return-Path: Received: from 52.199.247.12 (EHLO 39problemphd.com) by 10.217.151.10 with SMTP; Thu, 30 Jul 2020 21:49:27 +0000 X-Originating-Ip: [52.199.247.12]	2020-07-31 22:34:14
212.85.69.14	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-07-31 22:38:26
123.132.237.18	attack	Jul 31 16:04:16 ns381471 sshd[31097]: Failed password for root from 123.132.237.18 port 53870 ssh2	2020-07-31 22:24:36
79.137.163.43	attackspam	Jul 31 14:08:34 h2829583 sshd[15373]: Failed password for root from 79.137.163.43 port 49178 ssh2	2020-07-31 22:41:47
54.39.22.191	attack	Jul 31 16:10:03 buvik sshd[5014]: Failed password for root from 54.39.22.191 port 34304 ssh2 Jul 31 16:14:28 buvik sshd[5698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.22.191 user=root Jul 31 16:14:30 buvik sshd[5698]: Failed password for root from 54.39.22.191 port 46750 ssh2 ...	2020-07-31 22:27:42
217.182.68.147	attack	SSH Brute Force	2020-07-31 22:17:31

Recently Reported IPs

186.191.106.162	251.84.107.166	83.113.9.189	138.178.214.25
245.140.150.124	69.215.30.156	135.72.119.157	162.37.185.173
193.35.62.96	176.146.41.127	179.76.203.220	134.94.42.45
145.255.67.6	152.38.25.180	172.174.172.2	129.203.161.246
87.168.145.7	138.213.109.9	251.89.71.67	87.248.97.135