IP address 119.28.9.170 has been flagged in 258 abuse reports across 21 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is abuseipdb blacklist, along with aggregated threat, attacks, brute force, known attacker, malware c2, malware infrastructure, reconnaissance, scanning, ssh brute force, ssh bruteforce, suspicious activity, voip attack, web attack, web brute force.
This IP is geolocated in Hong Kong (Hong Kong) and belongs to the network Tencent Building, Kejizhongyi Avenue (AS132203). Reports span from 2026-03-27 to 2026-05-21.
Assessment: With 258 abuse reports, 119.28.9.170 shows persistent malicious activity that has been flagged by multiple threat intelligence feeds. The IP has been observed conducting automated SSH login attempts against internet-facing servers, a technique commonly used to gain unauthorized access to systems.