2.134.2.28 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.134.28.68	attack	Unauthorized connection attempt from IP address 2.134.28.68 on Port 445(SMB)	2020-07-09 02:38:18
2.134.202.108	attackspam	Port probing on unauthorized port 445	2020-06-10 14:30:05
2.134.240.168	attackspambots	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-05-21 17:04:41
2.134.242.89	attack	DATE:2020-02-09 00:04:11, IP:2.134.242.89, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-02-09 08:07:43
2.134.242.89	attackbots	Unauthorized connection attempt detected from IP address 2.134.242.89 to port 23 [J]	2020-02-05 19:48:28
2.134.254.193	attackspam	2019-07-08 18:33:06 1hkWZd-0005oh-CW SMTP connection from \(2.134.254.193.megaline.telecom.kz\) \[2.134.254.193\]:20576 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 18:33:30 1hkWa1-0005pH-KS SMTP connection from \(2.134.254.193.megaline.telecom.kz\) \[2.134.254.193\]:20774 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 18:33:40 1hkWaC-0005pX-0k SMTP connection from \(2.134.254.193.megaline.telecom.kz\) \[2.134.254.193\]:20855 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 02:11:07
2.134.240.111	attackbots	Telnet/23 MH Probe, BF, Hack -	2020-01-10 04:22:58
2.134.241.5	attack	Unauthorized connection attempt detected from IP address 2.134.241.5 to port 23 [J]	2020-01-05 04:02:11
2.134.226.58	attackbots	namecheap spam	2019-08-28 16:13:23
2.134.204.20	attack	fell into ViewStateTrap:wien2018	2019-07-18 15:03:28
2.134.204.20	attackspam	/posting.php?mode=post&f=3	2019-07-05 04:43:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.2.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45528
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.134.2.28.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400

;; Query time: 143 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 06:40:19 CST 2025
;; MSG SIZE  rcvd: 103

Host info

28.2.134.2.in-addr.arpa domain name pointer 2.134.2.28.dynamic.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
28.2.134.2.in-addr.arpa	name = 2.134.2.28.dynamic.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.80.65.83	attackbotsspam	Sep 11 03:30:45 www sshd\[4056\]: Invalid user ftpuser from 45.80.65.83Sep 11 03:30:47 www sshd\[4056\]: Failed password for invalid user ftpuser from 45.80.65.83 port 58492 ssh2Sep 11 03:36:40 www sshd\[4108\]: Invalid user esbuser from 45.80.65.83Sep 11 03:36:42 www sshd\[4108\]: Failed password for invalid user esbuser from 45.80.65.83 port 33584 ssh2 ...	2019-09-11 08:39:55
51.254.165.249	attackbots	Sep 10 15:06:09 eddieflores sshd\[28204\]: Invalid user test from 51.254.165.249 Sep 10 15:06:09 eddieflores sshd\[28204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip249.ip-51-254-165.eu Sep 10 15:06:11 eddieflores sshd\[28204\]: Failed password for invalid user test from 51.254.165.249 port 51886 ssh2 Sep 10 15:11:36 eddieflores sshd\[28789\]: Invalid user www-data123 from 51.254.165.249 Sep 10 15:11:36 eddieflores sshd\[28789\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip249.ip-51-254-165.eu	2019-09-11 09:11:56
181.115.187.75	attackbotsspam	Automatic report - Port Scan Attack	2019-09-11 08:51:35
103.114.104.140	attackbotsspam	Sep 10 18:13:07 web1 postfix/smtpd[17330]: warning: unknown[103.114.104.140]: SASL LOGIN authentication failed: authentication failure ...	2019-09-11 08:49:43
34.90.172.202	attack	2019-09-11T00:31:31.443332abusebot-3.cloudsearch.cf sshd\[20705\]: Invalid user d3pl0y3r from 34.90.172.202 port 38780	2019-09-11 09:23:49
95.87.25.234	attackbots	Sent mail to target address hacked/leaked from abandonia in 2016	2019-09-11 09:08:05
179.178.195.118	attackbotsspam	Automatic report - Port Scan Attack	2019-09-11 09:20:37
50.239.140.1	attackbotsspam	Sep 11 02:35:51 tux-35-217 sshd\[7112\]: Invalid user bot123 from 50.239.140.1 port 45170 Sep 11 02:35:51 tux-35-217 sshd\[7112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.140.1 Sep 11 02:35:54 tux-35-217 sshd\[7112\]: Failed password for invalid user bot123 from 50.239.140.1 port 45170 ssh2 Sep 11 02:41:30 tux-35-217 sshd\[7198\]: Invalid user postgres@123 from 50.239.140.1 port 57678 Sep 11 02:41:30 tux-35-217 sshd\[7198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.140.1 ...	2019-09-11 09:02:12
123.206.63.78	attackspambots	Sep 11 00:52:05 hcbbdb sshd\[24154\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.63.78 user=mysql Sep 11 00:52:06 hcbbdb sshd\[24154\]: Failed password for mysql from 123.206.63.78 port 45892 ssh2 Sep 11 00:57:33 hcbbdb sshd\[24809\]: Invalid user minecraft from 123.206.63.78 Sep 11 00:57:33 hcbbdb sshd\[24809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.63.78 Sep 11 00:57:35 hcbbdb sshd\[24809\]: Failed password for invalid user minecraft from 123.206.63.78 port 35950 ssh2	2019-09-11 09:12:47
60.210.40.210	attack	Sep 10 12:08:17 eddieflores sshd\[11218\]: Invalid user sftpuser from 60.210.40.210 Sep 10 12:08:17 eddieflores sshd\[11218\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.210.40.210 Sep 10 12:08:19 eddieflores sshd\[11218\]: Failed password for invalid user sftpuser from 60.210.40.210 port 5119 ssh2 Sep 10 12:12:44 eddieflores sshd\[11735\]: Invalid user xxx from 60.210.40.210 Sep 10 12:12:44 eddieflores sshd\[11735\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.210.40.210	2019-09-11 09:16:51
141.98.9.195	attackspam	Sep 11 03:04:05 relay postfix/smtpd\[11310\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 03:04:47 relay postfix/smtpd\[32400\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 03:04:58 relay postfix/smtpd\[14573\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 03:05:39 relay postfix/smtpd\[32399\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 03:05:49 relay postfix/smtpd\[8417\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-11 09:06:31
95.105.233.209	attack	Sep 10 14:57:56 hpm sshd\[28094\]: Invalid user deploy from 95.105.233.209 Sep 10 14:57:56 hpm sshd\[28094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95-105-233-209.static.orange.sk Sep 10 14:57:58 hpm sshd\[28094\]: Failed password for invalid user deploy from 95.105.233.209 port 36755 ssh2 Sep 10 15:03:31 hpm sshd\[28660\]: Invalid user admin from 95.105.233.209 Sep 10 15:03:31 hpm sshd\[28660\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95-105-233-209.static.orange.sk	2019-09-11 09:10:35
103.52.52.22	attackspambots	2019-09-11T01:06:13.868512abusebot-4.cloudsearch.cf sshd\[17037\]: Invalid user user from 103.52.52.22 port 44250	2019-09-11 09:14:02
58.140.91.76	attack	Sep 10 14:42:41 hpm sshd\[26596\]: Invalid user usuario from 58.140.91.76 Sep 10 14:42:41 hpm sshd\[26596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.140.91.76 Sep 10 14:42:43 hpm sshd\[26596\]: Failed password for invalid user usuario from 58.140.91.76 port 60128 ssh2 Sep 10 14:48:58 hpm sshd\[27184\]: Invalid user bot from 58.140.91.76 Sep 10 14:48:58 hpm sshd\[27184\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.140.91.76	2019-09-11 09:01:05
118.169.241.2	attack	port 23 attempt blocked	2019-09-11 09:15:52

Recently Reported IPs

41.127.217.82	17.95.9.8	64.220.60.145	240.255.83.233
3.223.213.153	125.78.31.104	169.236.127.72	2.171.102.49
91.93.13.171	225.127.188.189	114.184.136.247	87.211.12.132
92.109.174.52	176.31.145.26	101.209.202.128	20.221.58.102
36.3.202.221	57.97.120.180	234.165.113.25	187.187.122.18