118.173.148.20

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
118.173.148.190	attack	Unauthorized connection attempt detected from IP address 118.173.148.190 to port 8080 [T]	2020-01-20 07:46:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.173.148.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33532
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;118.173.148.20.			IN	A

;; AUTHORITY SECTION:
.			415	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 16:36:19 CST 2022
;; MSG SIZE  rcvd: 107

Host info

20.148.173.118.in-addr.arpa domain name pointer node-t90.pool-118-173.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.148.173.118.in-addr.arpa	name = node-t90.pool-118-173.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.89.176.74	attack	24245/tcp 5495/tcp 30007/tcp... [2020-06-21/07-08]54pkt,19pt.(tcp)	2020-07-08 20:17:47
61.216.13.196	attackspam	scans 2 times in preceeding hours on the ports (in chronological order) 25995 2846	2020-07-08 20:49:55
62.210.205.141	attackspam	Automatic report - WordPress Brute Force	2020-07-08 20:47:54
139.59.58.155	attackbotsspam	Jul 8 13:49:12 debian-2gb-nbg1-2 kernel: \[16467551.789072\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=139.59.58.155 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=32252 PROTO=TCP SPT=44330 DPT=29651 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-08 20:37:58
112.85.42.174	attackbotsspam	Jul 8 05:27:56 dignus sshd[30503]: Failed password for root from 112.85.42.174 port 59993 ssh2 Jul 8 05:27:59 dignus sshd[30503]: Failed password for root from 112.85.42.174 port 59993 ssh2 Jul 8 05:28:06 dignus sshd[30503]: error: maximum authentication attempts exceeded for root from 112.85.42.174 port 59993 ssh2 [preauth] Jul 8 05:28:11 dignus sshd[30551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root Jul 8 05:28:13 dignus sshd[30551]: Failed password for root from 112.85.42.174 port 26774 ssh2 ...	2020-07-08 20:29:03
59.80.34.110	attackbots	Jul 8 13:48:29 santamaria sshd\[26663\]: Invalid user wangdc from 59.80.34.110 Jul 8 13:48:29 santamaria sshd\[26663\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.80.34.110 Jul 8 13:48:31 santamaria sshd\[26663\]: Failed password for invalid user wangdc from 59.80.34.110 port 34080 ssh2 ...	2020-07-08 20:25:53
142.93.161.85	attack	Jul 8 14:17:51 debian-2gb-nbg1-2 kernel: \[16469269.799938\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=142.93.161.85 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=37106 PROTO=TCP SPT=45577 DPT=32295 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-08 20:40:21
129.146.236.243	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-08T11:47:36Z and 2020-07-08T11:53:34Z	2020-07-08 20:23:08
41.13.22.117	attackspam	TCP Port Scanning	2020-07-08 20:15:25
106.12.176.2	attackbotsspam	Jul 8 13:48:33 backup sshd[14392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.176.2 Jul 8 13:48:35 backup sshd[14392]: Failed password for invalid user gituser from 106.12.176.2 port 43752 ssh2 ...	2020-07-08 20:21:21
162.196.204.142	attackbotsspam	Jul 8 13:48:13 pornomens sshd\[32596\]: Invalid user appowner from 162.196.204.142 port 48438 Jul 8 13:48:13 pornomens sshd\[32596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.196.204.142 Jul 8 13:48:15 pornomens sshd\[32596\]: Failed password for invalid user appowner from 162.196.204.142 port 48438 ssh2 ...	2020-07-08 20:54:07
157.230.245.91	attack	Jul 8 14:08:17 ArkNodeAT sshd\[15454\]: Invalid user ueno from 157.230.245.91 Jul 8 14:08:17 ArkNodeAT sshd\[15454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.245.91 Jul 8 14:08:19 ArkNodeAT sshd\[15454\]: Failed password for invalid user ueno from 157.230.245.91 port 49048 ssh2	2020-07-08 20:36:10
109.244.101.232	attackspam	5x Failed Password	2020-07-08 20:46:53
58.33.31.172	attack	Jul 8 13:48:49 mail sshd[19981]: Failed password for invalid user yzhu from 58.33.31.172 port 53554 ssh2 ...	2020-07-08 20:29:35
110.185.107.51	attackspam	Auto Detect Rule! proto TCP (SYN), 110.185.107.51:54486->gjan.info:11629, len 40	2020-07-08 20:23:32

Recently Reported IPs

118.173.148.152	118.173.148.124	113.90.52.198	118.173.148.178
118.173.148.154	118.173.148.213	118.173.148.239	118.173.148.224
118.173.148.49	118.173.148.240	118.173.149.10	118.173.149.144
118.173.148.4	113.90.54.253	118.173.149.130	118.173.148.90
118.173.149.146	118.173.148.61	118.173.149.107	118.173.149.215