117.28.66.148 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.28.66.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32850
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.28.66.148.			IN	A

;; AUTHORITY SECTION:
.			233	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 21:08:23 CST 2022
;; MSG SIZE  rcvd: 106

Host info

148.66.28.117.in-addr.arpa domain name pointer 148.66.28.117.broad.np.fj.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.66.28.117.in-addr.arpa	name = 148.66.28.117.broad.np.fj.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
179.190.101.75	attackspam	Unauthorised access (Aug 11) SRC=179.190.101.75 LEN=52 TOS=0x10 PREC=0x40 TTL=116 ID=7936 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-12 05:27:31
198.100.149.77	attackspam	[munged]::443 198.100.149.77 - - [11/Aug/2020:23:13:16 +0200] "POST /[munged]: HTTP/1.1" 200 9239 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 198.100.149.77 - - [11/Aug/2020:23:13:21 +0200] "POST /[munged]: HTTP/1.1" 200 9241 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 198.100.149.77 - - [11/Aug/2020:23:13:26 +0200] "POST /[munged]: HTTP/1.1" 200 9240 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 198.100.149.77 - - [11/Aug/2020:23:13:31 +0200] "POST /[munged]: HTTP/1.1" 200 9240 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 198.100.149.77 - - [11/Aug/2020:23:13:35 +0200] "POST /[munged]: HTTP/1.1" 200 9240 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 198.100.149.77 - - [11/Aug/2020:23:16:21 +0200] "POST /[munged]: HTTP/1.1" 200 9241 "-" "Mozilla/5.0 (X11	2020-08-12 05:52:39
167.71.77.125	attackbots	2020-08-11T23:23:55.590581galaxy.wi.uni-potsdam.de sshd[23750]: Failed password for root from 167.71.77.125 port 60154 ssh2 2020-08-11T23:24:15.579529galaxy.wi.uni-potsdam.de sshd[23823]: Invalid user postgres from 167.71.77.125 port 33234 2020-08-11T23:24:15.581455galaxy.wi.uni-potsdam.de sshd[23823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.77.125 2020-08-11T23:24:15.579529galaxy.wi.uni-potsdam.de sshd[23823]: Invalid user postgres from 167.71.77.125 port 33234 2020-08-11T23:24:18.189489galaxy.wi.uni-potsdam.de sshd[23823]: Failed password for invalid user postgres from 167.71.77.125 port 33234 ssh2 2020-08-11T23:24:38.236695galaxy.wi.uni-potsdam.de sshd[23847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.77.125 user=root 2020-08-11T23:24:40.669087galaxy.wi.uni-potsdam.de sshd[23847]: Failed password for root from 167.71.77.125 port 34964 ssh2 2020-08-11T23:25:00.786747galaxy.wi. ...	2020-08-12 05:25:49
88.202.190.153	attack	trying to access non-authorized port	2020-08-12 05:51:55
172.81.238.222	attack	Aug 11 21:53:00 h2646465 sshd[22991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.238.222 user=root Aug 11 21:53:02 h2646465 sshd[22991]: Failed password for root from 172.81.238.222 port 38874 ssh2 Aug 11 22:10:12 h2646465 sshd[25962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.238.222 user=root Aug 11 22:10:13 h2646465 sshd[25962]: Failed password for root from 172.81.238.222 port 58674 ssh2 Aug 11 22:20:44 h2646465 sshd[27200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.238.222 user=root Aug 11 22:20:46 h2646465 sshd[27200]: Failed password for root from 172.81.238.222 port 37250 ssh2 Aug 11 22:25:56 h2646465 sshd[27815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.238.222 user=root Aug 11 22:25:58 h2646465 sshd[27815]: Failed password for root from 172.81.238.222 port 40634 ssh2 Aug 11 22:36:35 h264	2020-08-12 05:45:54
54.39.151.64	attackbots	Aug 11 22:27:32 Ubuntu-1404-trusty-64-minimal sshd\[7797\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.151.64 user=root Aug 11 22:27:35 Ubuntu-1404-trusty-64-minimal sshd\[7797\]: Failed password for root from 54.39.151.64 port 42886 ssh2 Aug 11 22:33:29 Ubuntu-1404-trusty-64-minimal sshd\[13905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.151.64 user=root Aug 11 22:33:30 Ubuntu-1404-trusty-64-minimal sshd\[13905\]: Failed password for root from 54.39.151.64 port 33556 ssh2 Aug 11 22:36:58 Ubuntu-1404-trusty-64-minimal sshd\[15023\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.151.64 user=root	2020-08-12 05:26:59
182.254.145.29	attackspambots	Aug 11 23:27:38 abendstille sshd\[32477\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.145.29 user=root Aug 11 23:27:41 abendstille sshd\[32477\]: Failed password for root from 182.254.145.29 port 46373 ssh2 Aug 11 23:31:48 abendstille sshd\[4378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.145.29 user=root Aug 11 23:31:50 abendstille sshd\[4378\]: Failed password for root from 182.254.145.29 port 48018 ssh2 Aug 11 23:35:41 abendstille sshd\[8180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.145.29 user=root ...	2020-08-12 05:36:48
114.236.153.198	attackspam	20 attempts against mh-ssh on pluto	2020-08-12 05:47:12
106.12.34.97	attackbots	sshd jail - ssh hack attempt	2020-08-12 05:38:06
165.22.236.23	attackbots	SmallBizIT.US 1 packets to tcp(22)	2020-08-12 06:00:28
62.210.25.243	attack	62.210.25.243 - - [11/Aug/2020:21:36:59 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 62.210.25.243 - - [11/Aug/2020:21:37:00 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 62.210.25.243 - - [11/Aug/2020:21:37:00 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-12 05:24:45
199.115.230.39	attack	Aug 11 22:28:39 web-main sshd[818857]: Failed password for root from 199.115.230.39 port 44570 ssh2 Aug 11 22:36:15 web-main sshd[818881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.115.230.39 user=root Aug 11 22:36:17 web-main sshd[818881]: Failed password for root from 199.115.230.39 port 55176 ssh2	2020-08-12 06:01:59
109.100.61.19	attack	Brute-force attempt banned	2020-08-12 05:38:52
46.72.217.196	attackbots	Icarus honeypot on github	2020-08-12 05:20:41
45.129.33.51	attackbotsspam	Unauthorized connection attempt from IP address 45.129.33.51 on Port 3389(RDP)	2020-08-12 05:32:53

Recently Reported IPs

117.28.66.140	117.28.66.158	117.28.66.170	117.28.67.18
114.222.247.124	117.28.67.26	117.28.67.66	117.28.67.22
117.28.67.74	117.28.67.80	117.28.67.76	117.28.67.88
117.28.88.100	117.28.8.231	117.28.67.78	117.28.67.90
117.28.88.105	114.222.247.170	117.28.88.109	117.28.88.110