2.134.2.28 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.134.28.68	attack	Unauthorized connection attempt from IP address 2.134.28.68 on Port 445(SMB)	2020-07-09 02:38:18
2.134.202.108	attackspam	Port probing on unauthorized port 445	2020-06-10 14:30:05
2.134.240.168	attackspambots	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-05-21 17:04:41
2.134.242.89	attack	DATE:2020-02-09 00:04:11, IP:2.134.242.89, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-02-09 08:07:43
2.134.242.89	attackbots	Unauthorized connection attempt detected from IP address 2.134.242.89 to port 23 [J]	2020-02-05 19:48:28
2.134.254.193	attackspam	2019-07-08 18:33:06 1hkWZd-0005oh-CW SMTP connection from $2.134.254.193.megaline.telecom.kz$ \[2.134.254.193\]:20576 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 18:33:30 1hkWa1-0005pH-KS SMTP connection from $2.134.254.193.megaline.telecom.kz$ \[2.134.254.193\]:20774 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 18:33:40 1hkWaC-0005pX-0k SMTP connection from $2.134.254.193.megaline.telecom.kz$ \[2.134.254.193\]:20855 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 02:11:07
2.134.240.111	attackbots	Telnet/23 MH Probe, BF, Hack -	2020-01-10 04:22:58
2.134.241.5	attack	Unauthorized connection attempt detected from IP address 2.134.241.5 to port 23 [J]	2020-01-05 04:02:11
2.134.226.58	attackbots	namecheap spam	2019-08-28 16:13:23
2.134.204.20	attack	fell into ViewStateTrap:wien2018	2019-07-18 15:03:28
2.134.204.20	attackspam	/posting.php?mode=post&f=3	2019-07-05 04:43:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.2.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45528
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.134.2.28.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400

;; Query time: 143 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 06:40:19 CST 2025
;; MSG SIZE  rcvd: 103

Host info

28.2.134.2.in-addr.arpa domain name pointer 2.134.2.28.dynamic.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
28.2.134.2.in-addr.arpa	name = 2.134.2.28.dynamic.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.95.174.194	attack	Unauthorized connection attempt from IP address 61.95.174.194 on Port 445(SMB)	2019-08-23 05:02:12
185.183.120.29	attack	Aug 22 22:29:46 herz-der-gamer sshd[14047]: Invalid user sb from 185.183.120.29 port 38118 Aug 22 22:29:46 herz-der-gamer sshd[14047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.183.120.29 Aug 22 22:29:46 herz-der-gamer sshd[14047]: Invalid user sb from 185.183.120.29 port 38118 Aug 22 22:29:49 herz-der-gamer sshd[14047]: Failed password for invalid user sb from 185.183.120.29 port 38118 ssh2 ...	2019-08-23 04:54:13
92.118.38.35	attack	Aug 22 22:25:34 mail postfix/smtpd\[23547\]: warning: unknown\[92.118.38.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 22 22:26:13 mail postfix/smtpd\[22919\]: warning: unknown\[92.118.38.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 22 22:26:52 mail postfix/smtpd\[23499\]: warning: unknown\[92.118.38.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 22 22:57:19 mail postfix/smtpd\[24482\]: warning: unknown\[92.118.38.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-08-23 05:07:36
212.3.195.6	attackbots	Unauthorized connection attempt from IP address 212.3.195.6 on Port 445(SMB)	2019-08-23 05:17:38
192.99.7.71	attack	Aug 22 10:40:27 hcbb sshd\[2793\]: Invalid user developer from 192.99.7.71 Aug 22 10:40:27 hcbb sshd\[2793\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns4010345.ip-192-99-7.net Aug 22 10:40:29 hcbb sshd\[2793\]: Failed password for invalid user developer from 192.99.7.71 port 40628 ssh2 Aug 22 10:44:26 hcbb sshd\[3091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns4010345.ip-192-99-7.net user=root Aug 22 10:44:28 hcbb sshd\[3091\]: Failed password for root from 192.99.7.71 port 58586 ssh2	2019-08-23 04:45:40
181.57.133.130	attack	Aug 22 23:20:55 dedicated sshd[17874]: Invalid user jacob from 181.57.133.130 port 42595	2019-08-23 05:22:37
79.137.82.213	attackspambots	Aug 22 21:49:01 SilenceServices sshd[23948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.82.213 Aug 22 21:49:02 SilenceServices sshd[23948]: Failed password for invalid user paris5 from 79.137.82.213 port 56164 ssh2 Aug 22 21:52:50 SilenceServices sshd[27386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.82.213	2019-08-23 05:14:35
165.22.98.112	attackbotsspam	Aug 22 11:01:39 aiointranet sshd\[16242\]: Invalid user elk from 165.22.98.112 Aug 22 11:01:39 aiointranet sshd\[16242\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.98.112 Aug 22 11:01:41 aiointranet sshd\[16242\]: Failed password for invalid user elk from 165.22.98.112 port 46620 ssh2 Aug 22 11:06:20 aiointranet sshd\[16647\]: Invalid user informax from 165.22.98.112 Aug 22 11:06:20 aiointranet sshd\[16647\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.98.112	2019-08-23 05:15:47
106.13.15.122	attackspam	Aug 22 21:34:29 lnxmail61 sshd[18449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.15.122	2019-08-23 04:43:29
14.143.245.10	attackbotsspam	Aug 22 11:01:10 wbs sshd\[7443\]: Invalid user akee from 14.143.245.10 Aug 22 11:01:10 wbs sshd\[7443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.143.245.10 Aug 22 11:01:12 wbs sshd\[7443\]: Failed password for invalid user akee from 14.143.245.10 port 21839 ssh2 Aug 22 11:06:18 wbs sshd\[7931\]: Invalid user crond from 14.143.245.10 Aug 22 11:06:18 wbs sshd\[7931\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.143.245.10	2019-08-23 05:26:44
189.46.221.117	attackbots	Aug 22 23:58:42 server sshd\[31377\]: Invalid user aplusbiz from 189.46.221.117 port 55598 Aug 22 23:58:42 server sshd\[31377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.46.221.117 Aug 22 23:58:44 server sshd\[31377\]: Failed password for invalid user aplusbiz from 189.46.221.117 port 55598 ssh2 Aug 23 00:03:46 server sshd\[9611\]: Invalid user backup1 from 189.46.221.117 port 46878 Aug 23 00:03:46 server sshd\[9611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.46.221.117	2019-08-23 05:23:45
185.128.26.24	attackspam	20 attempts against mh-misbehave-ban on snow.magehost.pro	2019-08-23 05:24:17
213.108.240.109	attackspam	$f2bV_matches_ltvn	2019-08-23 04:55:43
148.70.65.131	attackspam	Aug 22 17:01:49 ny01 sshd[12788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.65.131 Aug 22 17:01:51 ny01 sshd[12788]: Failed password for invalid user paste from 148.70.65.131 port 53214 ssh2 Aug 22 17:06:28 ny01 sshd[13252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.65.131	2019-08-23 05:10:14
134.209.170.193	attack	Aug 23 00:04:10 pkdns2 sshd\[28095\]: Invalid user vl from 134.209.170.193Aug 23 00:04:12 pkdns2 sshd\[28095\]: Failed password for invalid user vl from 134.209.170.193 port 52048 ssh2Aug 23 00:08:20 pkdns2 sshd\[28307\]: Invalid user event from 134.209.170.193Aug 23 00:08:22 pkdns2 sshd\[28307\]: Failed password for invalid user event from 134.209.170.193 port 42160 ssh2Aug 23 00:12:23 pkdns2 sshd\[28512\]: Invalid user onm from 134.209.170.193Aug 23 00:12:26 pkdns2 sshd\[28512\]: Failed password for invalid user onm from 134.209.170.193 port 60508 ssh2 ...	2019-08-23 05:27:03

Recently Reported IPs

41.127.217.82	17.95.9.8	64.220.60.145	240.255.83.233
3.223.213.153	125.78.31.104	169.236.127.72	2.171.102.49
91.93.13.171	225.127.188.189	114.184.136.247	87.211.12.132
92.109.174.52	176.31.145.26	101.209.202.128	20.221.58.102
36.3.202.221	57.97.120.180	234.165.113.25	187.187.122.18