Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       23.149.28.0 - 23.149.28.255
CIDR:           23.149.28.0/24
NetName:        LANTERM-B
NetHandle:      NET-23-149-28-0-1
Parent:         NET23 (NET-23-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Lanterm LLC (LL-995)
RegDate:        2025-11-04
Updated:        2025-11-04
Ref:            https://rdap.arin.net/registry/ip/23.149.28.0


OrgName:        Lanterm LLC
OrgId:          LL-995
Address:        145 Martin Loop
City:           Dawson Springs
StateProv:      KY
PostalCode:     42408
Country:        US
RegDate:        2025-10-07
Updated:        2025-10-29
Ref:            https://rdap.arin.net/registry/entity/LL-995


OrgAbuseHandle: SINGH713-ARIN
OrgAbuseName:   Singh, Amandeep 
OrgAbusePhone:  +1-502-859-3173 
OrgAbuseEmail:  Amandeep@lanterm.xyz
OrgAbuseRef:    https://rdap.arin.net/registry/entity/SINGH713-ARIN

OrgTechHandle: SINGH713-ARIN
OrgTechName:   Singh, Amandeep 
OrgTechPhone:  +1-502-859-3173 
OrgTechEmail:  Amandeep@lanterm.xyz
OrgTechRef:    https://rdap.arin.net/registry/entity/SINGH713-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 23.149.28.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57114
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;23.149.28.168.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026070601 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 07 04:18:06 CST 2026
;; MSG SIZE  rcvd: 106
Host info
Host 168.28.149.23.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 168.28.149.23.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
165.227.80.114 attackspam
May 11 15:00:54 h2779839 sshd[14101]: Invalid user svn from 165.227.80.114 port 56680
May 11 15:00:54 h2779839 sshd[14101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.80.114
May 11 15:00:54 h2779839 sshd[14101]: Invalid user svn from 165.227.80.114 port 56680
May 11 15:00:56 h2779839 sshd[14101]: Failed password for invalid user svn from 165.227.80.114 port 56680 ssh2
May 11 15:04:09 h2779839 sshd[14173]: Invalid user qa from 165.227.80.114 port 58752
May 11 15:04:09 h2779839 sshd[14173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.80.114
May 11 15:04:09 h2779839 sshd[14173]: Invalid user qa from 165.227.80.114 port 58752
May 11 15:04:10 h2779839 sshd[14173]: Failed password for invalid user qa from 165.227.80.114 port 58752 ssh2
May 11 15:07:20 h2779839 sshd[14207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.80.114  user=mysql
Ma
...
2020-05-11 22:28:29
128.199.169.102 attack
May 11 16:02:34 * sshd[3670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.169.102
May 11 16:02:35 * sshd[3670]: Failed password for invalid user system from 128.199.169.102 port 12499 ssh2
2020-05-11 22:43:33
68.183.156.150 attackspam
May 11 16:44:01 vps sshd[29165]: Failed password for root from 68.183.156.150 port 58146 ssh2
May 11 16:44:11 vps sshd[29172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.156.150 
May 11 16:44:12 vps sshd[29172]: Failed password for invalid user oracle from 68.183.156.150 port 52864 ssh2
...
2020-05-11 22:59:01
125.124.70.22 attack
sshd jail - ssh hack attempt
2020-05-11 23:00:32
66.70.173.63 attack
SSH_attack
2020-05-11 22:44:35
210.112.95.177 attack
20/5/11@08:06:53: FAIL: Alarm-Intrusion address from=210.112.95.177
...
2020-05-11 22:56:58
46.105.227.206 attackbotsspam
May 11 14:07:26 plex sshd[7538]: Invalid user info5 from 46.105.227.206 port 34542
2020-05-11 22:27:35
217.61.7.72 attack
2020-05-11T14:05:02.313684shield sshd\[20137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.7.72  user=root
2020-05-11T14:05:04.649618shield sshd\[20137\]: Failed password for root from 217.61.7.72 port 59702 ssh2
2020-05-11T14:09:29.210556shield sshd\[21070\]: Invalid user marcos from 217.61.7.72 port 40362
2020-05-11T14:09:29.215471shield sshd\[21070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.7.72
2020-05-11T14:09:31.205167shield sshd\[21070\]: Failed password for invalid user marcos from 217.61.7.72 port 40362 ssh2
2020-05-11 22:16:46
189.250.139.21 attackbotsspam
May 11 14:07:17 debian-2gb-nbg1-2 kernel: \[11457704.764909\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=189.250.139.21 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=13646 PROTO=TCP SPT=34486 DPT=23 WINDOW=46594 RES=0x00 SYN URGP=0
2020-05-11 22:33:38
222.186.42.136 attackspambots
Unauthorized connection attempt detected from IP address 222.186.42.136 to port 22 [T]
2020-05-11 22:42:09
82.29.211.55 attack
SMB Server BruteForce Attack
2020-05-11 22:36:43
18.27.197.252 attackbotsspam
May 11 14:07:28 *host* sshd\[24236\]: User *user* from 18.27.197.252 not allowed because none of user's groups are listed in AllowGroups
2020-05-11 22:25:14
180.76.237.54 attackbotsspam
web-1 [ssh_2] SSH Attack
2020-05-11 22:40:27
37.57.224.68 attack
SMB Server BruteForce Attack
2020-05-11 22:48:22
154.8.177.205 attackbotsspam
Lines containing failures of 154.8.177.205
May 11 02:45:27 kmh-vmh-001-fsn05 sshd[5702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.177.205  user=r.r
May 11 02:45:29 kmh-vmh-001-fsn05 sshd[5702]: Failed password for r.r from 154.8.177.205 port 60302 ssh2
May 11 02:45:29 kmh-vmh-001-fsn05 sshd[5702]: Received disconnect from 154.8.177.205 port 60302:11: Bye Bye [preauth]
May 11 02:45:29 kmh-vmh-001-fsn05 sshd[5702]: Disconnected from authenticating user r.r 154.8.177.205 port 60302 [preauth]
May 11 03:00:29 kmh-vmh-001-fsn05 sshd[8414]: Invalid user spring from 154.8.177.205 port 60256
May 11 03:00:29 kmh-vmh-001-fsn05 sshd[8414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.177.205 
May 11 03:00:31 kmh-vmh-001-fsn05 sshd[8414]: Failed password for invalid user spring from 154.8.177.205 port 60256 ssh2
May 11 03:00:33 kmh-vmh-001-fsn05 sshd[8414]: Received disconnect from 1........
------------------------------
2020-05-11 22:55:40

Recently Reported IPs

121.43.136.227 47.110.69.138 118.31.244.245 112.124.45.77
110.42.0.180 2606:4700:10::6814:9826 79.143.185.36 8.148.232.140
39.98.53.132 2606:4700:10::6814:6100 2606:4700:10::6814:6764 193.26.115.137
2606:4700:10::6814:7526 2606:4700:10::6816:4368 2606:4700:10::6814:6461 218.78.92.139
2606:4700:10::6816:1372 2606:4700:10::6816:3095 2606:4700:10::6814:8972 2606:4700:10::6814:9204