112.166.148.28

Basic Info

City: unknown

Region: unknown

Country: South Korea

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: Korea Telecom

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Apr 26 08:14:03 ubuntu sshd[32380]: Failed password for invalid user ok from 112.166.148.28 port 40518 ssh2 Apr 26 08:16:48 ubuntu sshd[32425]: Failed password for ftp from 112.166.148.28 port 37376 ssh2 Apr 26 08:19:33 ubuntu sshd[32470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.166.148.28	2019-10-08 13:48:45
attackbots	2019-07-23T04:46:11.076068cavecanem sshd[4836]: Invalid user system from 112.166.148.28 port 58222 2019-07-23T04:46:11.078767cavecanem sshd[4836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.166.148.28 2019-07-23T04:46:11.076068cavecanem sshd[4836]: Invalid user system from 112.166.148.28 port 58222 2019-07-23T04:46:12.702941cavecanem sshd[4836]: Failed password for invalid user system from 112.166.148.28 port 58222 ssh2 2019-07-23T04:51:07.603526cavecanem sshd[11572]: Invalid user nd from 112.166.148.28 port 51858 2019-07-23T04:51:07.606373cavecanem sshd[11572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.166.148.28 2019-07-23T04:51:07.603526cavecanem sshd[11572]: Invalid user nd from 112.166.148.28 port 51858 2019-07-23T04:51:09.867964cavecanem sshd[11572]: Failed password for invalid user nd from 112.166.148.28 port 51858 ssh2 2019-07-23T04:56:06.279841cavecanem sshd[18265]: Invalid user ...	2019-07-23 13:58:08
attackspam	Jul 7 06:16:36 vps647732 sshd[12386]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.166.148.28 Jul 7 06:16:38 vps647732 sshd[12386]: Failed password for invalid user ma from 112.166.148.28 port 43248 ssh2 ...	2019-07-07 13:05:07
attackspambots	2019-07-03T15:34:17.399002hub.schaetter.us sshd\[27266\]: Invalid user ubuntu from 112.166.148.28 2019-07-03T15:34:17.451059hub.schaetter.us sshd\[27266\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.166.148.28 2019-07-03T15:34:19.577302hub.schaetter.us sshd\[27266\]: Failed password for invalid user ubuntu from 112.166.148.28 port 33978 ssh2 2019-07-03T15:37:18.158238hub.schaetter.us sshd\[27301\]: Invalid user gauthier from 112.166.148.28 2019-07-03T15:37:18.214880hub.schaetter.us sshd\[27301\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.166.148.28 ...	2019-07-04 00:05:32

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.166.148.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 440
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.166.148.28.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 08 21:38:21 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 28.148.166.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 28.148.166.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
116.203.100.74	attackbotsspam	1 Attack(s) Detected [DoS Attack: SYN/ACK Scan] from source: 116.203.100.74, port 30120, Wednesday, August 12, 2020 05:56:53	2020-08-13 15:07:47
59.120.247.210	attackbots	2 Attack(s) Detected [DoS Attack: RST Scan] from source: 59.120.247.210, port 59349, Tuesday, August 11, 2020 21:24:27 [DoS Attack: RST Scan] from source: 59.120.247.210, port 54688, Tuesday, August 11, 2020 21:18:45	2020-08-13 15:12:47
199.119.65.46	attackspam	1 Attack(s) Detected [DoS Attack: Ping Sweep] from source: 199.119.65.46, Tuesday, August 11, 2020 18:54:50	2020-08-13 15:00:58
46.234.125.89	attackbotsspam	4 Attack(s) Detected [DoS Attack: Ping Sweep] from source: 46.234.125.89, Wednesday, August 12, 2020 05:24:35 [DoS Attack: Ping Sweep] from source: 46.234.125.89, Tuesday, August 11, 2020 21:09:47 [DoS Attack: Ping Sweep] from source: 46.234.125.89, Tuesday, August 11, 2020 20:26:28 [DoS Attack: Ping Sweep] from source: 46.234.125.89, Tuesday, August 11, 2020 10:02:52	2020-08-13 14:58:20
129.82.138.31	attackbotsspam	1 Attack(s) Detected [DoS Attack: Ping Sweep] from source: 129.82.138.31, Tuesday, August 11, 2020 01:21:01	2020-08-13 15:06:19
217.106.107.160	attack	1 Attack(s) Detected [DoS Attack: RST Scan] from source: 217.106.107.160, port 80, Tuesday, August 11, 2020 04:12:32	2020-08-13 14:59:29
113.161.83.204	attackbotsspam	1 Attack(s) Detected [DoS Attack: RST Scan] from source: 113.161.83.204, port 38232, Tuesday, August 11, 2020 08:21:35	2020-08-13 15:08:39
80.82.77.193	attack	4 Attack(s) Detected [DoS Attack: TCP/UDP Echo] from source: 80.82.77.193, port 41337, Tuesday, August 11, 2020 02:35:55 [DoS Attack: TCP/UDP Echo] from source: 80.82.77.193, port 50530, Tuesday, August 11, 2020 02:35:54 [DoS Attack: TCP/UDP Echo] from source: 80.82.77.193, port 38146, Tuesday, August 11, 2020 02:35:46 [DoS Attack: TCP/UDP Echo] from source: 80.82.77.193, port 53842, Tuesday, August 11, 2020 02:35:44	2020-08-13 14:56:38
205.204.85.3	attackbots	1 Attack(s) Detected [DoS Attack: Ping Sweep] from source: 205.204.85.3, Tuesday, August 11, 2020 06:06:04	2020-08-13 15:00:46
71.6.232.5	attackspambots	Unauthorized connection attempt detected from IP address 71.6.232.5 to port 25 [T]	2020-08-13 15:11:05
184.105.139.113	attack	1 Attack(s) Detected [DoS Attack: TCP/UDP Chargen] from source: 184.105.139.113, port 43103, Monday, August 10, 2020 23:54:51	2020-08-13 15:03:00
185.170.114.25	attackspam	$f2bV_matches	2020-08-13 14:45:53
217.114.105.86	attackspambots	1 Attack(s) Detected [DoS Attack: SYN/ACK Scan] from source: 217.114.105.86, port 80, Monday, August 10, 2020 23:30:16	2020-08-13 14:58:52
125.74.28.28	attack	Aug 13 06:37:32 ns381471 sshd[4953]: Failed password for root from 125.74.28.28 port 56552 ssh2	2020-08-13 14:48:29
176.254.170.250	attackbots	1 Attack(s) Detected [DoS Attack: ACK Scan] from source: 176.254.170.250, port 4795, Tuesday, August 11, 2020 16:55:46	2020-08-13 15:24:46

Recently Reported IPs

178.62.214.85	198.108.66.154	89.109.53.65	218.103.59.1
218.92.0.175	138.121.12.228	85.187.128.11	81.47.169.143
196.202.118.200	68.183.227.98	138.68.18.232	51.15.84.174
167.99.178.194	196.52.43.92	197.50.71.2	117.85.72.244
178.62.10.133	116.203.101.244	198.108.66.184	185.33.172.135