220.134.28.239

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
220.134.28.131	attack	Honeypot attack, port: 81, PTR: 220-134-28-131.HINET-IP.hinet.net.	2020-07-06 00:32:39
220.134.28.166	attack	Jun 21 08:14:28 srv sshd[764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.28.166	2020-06-21 16:44:06
220.134.28.166	attack	2020-06-19T13:56:06.164327shield sshd\[27937\]: Invalid user webmaster from 220.134.28.166 port 54918 2020-06-19T13:56:06.168632shield sshd\[27937\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-134-28-166.hinet-ip.hinet.net 2020-06-19T13:56:07.649635shield sshd\[27937\]: Failed password for invalid user webmaster from 220.134.28.166 port 54918 ssh2 2020-06-19T13:59:59.775477shield sshd\[28776\]: Invalid user nodejs from 220.134.28.166 port 54722 2020-06-19T13:59:59.778394shield sshd\[28776\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-134-28-166.hinet-ip.hinet.net	2020-06-19 22:12:30
220.134.28.166	attackbotsspam	Jun 11 13:22:12 pve1 sshd[22885]: Failed password for root from 220.134.28.166 port 53532 ssh2 Jun 11 13:23:51 pve1 sshd[23575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.28.166 ...	2020-06-11 20:12:36
220.134.28.166	attack	Lines containing failures of 220.134.28.166 Jun 4 14:21:31 nexus sshd[28377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.28.166 user=r.r Jun 4 14:21:33 nexus sshd[28377]: Failed password for r.r from 220.134.28.166 port 43758 ssh2 Jun 4 14:21:34 nexus sshd[28377]: Received disconnect from 220.134.28.166 port 43758:11: Bye Bye [preauth] Jun 4 14:21:34 nexus sshd[28377]: Disconnected from 220.134.28.166 port 43758 [preauth] Jun 4 14:38:00 nexus sshd[29051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.28.166 user=r.r Jun 4 14:38:02 nexus sshd[29051]: Failed password for r.r from 220.134.28.166 port 37306 ssh2 Jun 4 14:38:03 nexus sshd[29051]: Received disconnect from 220.134.28.166 port 37306:11: Bye Bye [preauth] Jun 4 14:38:03 nexus sshd[29051]: Disconnected from 220.134.28.166 port 37306 [preauth] Jun 4 14:42:03 nexus sshd[29118]: pam_unix(sshd:auth): authe........ ------------------------------	2020-06-07 04:22:50
220.134.28.166	attackbots	Lines containing failures of 220.134.28.166 Jun 4 14:21:31 nexus sshd[28377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.28.166 user=r.r Jun 4 14:21:33 nexus sshd[28377]: Failed password for r.r from 220.134.28.166 port 43758 ssh2 Jun 4 14:21:34 nexus sshd[28377]: Received disconnect from 220.134.28.166 port 43758:11: Bye Bye [preauth] Jun 4 14:21:34 nexus sshd[28377]: Disconnected from 220.134.28.166 port 43758 [preauth] Jun 4 14:38:00 nexus sshd[29051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.28.166 user=r.r Jun 4 14:38:02 nexus sshd[29051]: Failed password for r.r from 220.134.28.166 port 37306 ssh2 Jun 4 14:38:03 nexus sshd[29051]: Received disconnect from 220.134.28.166 port 37306:11: Bye Bye [preauth] Jun 4 14:38:03 nexus sshd[29051]: Disconnected from 220.134.28.166 port 37306 [preauth] Jun 4 14:42:03 nexus sshd[29118]: pam_unix(sshd:auth): authe........ ------------------------------	2020-06-06 05:56:02
220.134.28.124	attack	Unauthorized connection attempt detected from IP address 220.134.28.124 to port 4567 [J]	2020-01-27 15:30:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.134.28.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41180
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;220.134.28.239.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 02:14:15 CST 2022
;; MSG SIZE  rcvd: 107

Host info

239.28.134.220.in-addr.arpa domain name pointer 220-134-28-239.hinet-ip.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
239.28.134.220.in-addr.arpa	name = 220-134-28-239.hinet-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
197.159.134.166	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-14 08:52:12
218.93.27.230	attack	firewall-block, port(s): 1433/tcp	2020-02-14 08:40:11
49.234.6.105	attackspambots	Invalid user owx from 49.234.6.105 port 45134	2020-02-14 08:56:32
119.123.226.49	attack	Feb 13 20:27:31 pl3server sshd[22407]: Invalid user 1234 from 119.123.226.49 Feb 13 20:27:32 pl3server sshd[22407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.123.226.49 Feb 13 20:27:34 pl3server sshd[22407]: Failed password for invalid user 1234 from 119.123.226.49 port 28934 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=119.123.226.49	2020-02-14 08:36:04
73.4.223.158	attack	SSH Bruteforce attempt	2020-02-14 08:40:57
185.176.27.54	attackbots	02/13/2020-18:29:30.119282 185.176.27.54 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-02-14 08:53:35
106.12.17.107	attack	Feb 13 23:17:18 MK-Soft-VM3 sshd[16554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.17.107 Feb 13 23:17:20 MK-Soft-VM3 sshd[16554]: Failed password for invalid user pollinate from 106.12.17.107 port 53838 ssh2 ...	2020-02-14 09:01:35
197.44.164.51	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-14 08:40:44
149.115.101.175	attack	Unauthorized connection attempt detected from IP address 149.115.101.175 to port 23	2020-02-14 09:12:06
197.44.201.107	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-14 08:38:16
115.84.92.250	attackbotsspam	Feb 13 19:08:16 IngegnereFirenze sshd[17678]: Failed password for invalid user admin from 115.84.92.250 port 46096 ssh2 ...	2020-02-14 09:13:41
197.248.141.70	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-14 08:46:54
83.97.20.33	attackspambots	Scanned 1 times in the last 24 hours on port 6379	2020-02-14 08:50:51
148.70.72.242	attackspambots	Invalid user cqd from 148.70.72.242 port 56824	2020-02-14 08:44:57
208.81.163.110	attackbots	Feb 13 14:41:05 hanapaa sshd\[26133\]: Invalid user webadm from 208.81.163.110 Feb 13 14:41:05 hanapaa sshd\[26133\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mrtg.thecable.net Feb 13 14:41:07 hanapaa sshd\[26133\]: Failed password for invalid user webadm from 208.81.163.110 port 40874 ssh2 Feb 13 14:43:27 hanapaa sshd\[26318\]: Invalid user chinaken from 208.81.163.110 Feb 13 14:43:27 hanapaa sshd\[26318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mrtg.thecable.net	2020-02-14 08:55:49

Recently Reported IPs

83.185.32.151	91.80.139.56	175.193.76.167	87.250.224.154
27.6.142.176	83.239.91.110	93.87.39.14	88.213.238.236
190.17.239.228	182.118.246.118	43.227.131.93	78.187.32.27
219.155.168.205	115.60.199.145	120.85.117.155	121.4.42.125
5.29.12.249	203.82.55.130	183.83.208.242	118.27.29.57