148.63.254.118

Basic Info

City: unknown

Region: unknown

Country: Portugal

Internet Service Provider: Vodafone Portugal - Communicacoes Pessoais S.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 148.63.254.118 to port 81	2020-05-13 04:02:40
attack	Unauthorized connection attempt detected from IP address 148.63.254.118 to port 85 [J]	2020-01-29 03:35:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.63.254.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10739
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.63.254.118.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012801 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 03:35:15 CST 2020
;; MSG SIZE  rcvd: 118

Host info

118.254.63.148.in-addr.arpa domain name pointer 118.254.63.148.rev.vodafone.pt.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
118.254.63.148.in-addr.arpa	name = 118.254.63.148.rev.vodafone.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.161.16.62	attackbots	Oct 18 18:21:19 php1 sshd\[32086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.16.62 user=mail Oct 18 18:21:21 php1 sshd\[32086\]: Failed password for mail from 14.161.16.62 port 50864 ssh2 Oct 18 18:25:32 php1 sshd\[32593\]: Invalid user abbery from 14.161.16.62 Oct 18 18:25:32 php1 sshd\[32593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.16.62 Oct 18 18:25:34 php1 sshd\[32593\]: Failed password for invalid user abbery from 14.161.16.62 port 33088 ssh2	2019-10-19 15:56:22
81.22.45.65	attackspam	Oct 19 09:17:24 mc1 kernel: \[2755806.223565\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=21584 PROTO=TCP SPT=42765 DPT=15877 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 19 09:17:31 mc1 kernel: \[2755812.309202\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=6781 PROTO=TCP SPT=42765 DPT=16203 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 19 09:23:00 mc1 kernel: \[2756141.881901\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=57681 PROTO=TCP SPT=42765 DPT=16224 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-19 15:30:11
222.186.175.151	attackspambots	2019-10-19T09:40:03.868129lon01.zurich-datacenter.net sshd\[20269\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root 2019-10-19T09:40:05.663102lon01.zurich-datacenter.net sshd\[20269\]: Failed password for root from 222.186.175.151 port 19648 ssh2 2019-10-19T09:40:09.587712lon01.zurich-datacenter.net sshd\[20269\]: Failed password for root from 222.186.175.151 port 19648 ssh2 2019-10-19T09:40:14.060052lon01.zurich-datacenter.net sshd\[20269\]: Failed password for root from 222.186.175.151 port 19648 ssh2 2019-10-19T09:40:18.220951lon01.zurich-datacenter.net sshd\[20269\]: Failed password for root from 222.186.175.151 port 19648 ssh2 ...	2019-10-19 15:46:19
131.150.139.250	attackbotsspam	$f2bV_matches	2019-10-19 15:38:06
200.52.80.34	attackbots	Oct 19 06:42:33 site1 sshd\[19520\]: Invalid user sr from 200.52.80.34Oct 19 06:42:35 site1 sshd\[19520\]: Failed password for invalid user sr from 200.52.80.34 port 35724 ssh2Oct 19 06:47:22 site1 sshd\[19649\]: Invalid user mysql from 200.52.80.34Oct 19 06:47:24 site1 sshd\[19649\]: Failed password for invalid user mysql from 200.52.80.34 port 46132 ssh2Oct 19 06:52:03 site1 sshd\[20254\]: Invalid user ivan from 200.52.80.34Oct 19 06:52:05 site1 sshd\[20254\]: Failed password for invalid user ivan from 200.52.80.34 port 56538 ssh2 ...	2019-10-19 15:58:03
66.249.66.218	attackbotsspam	Automatic report - Banned IP Access	2019-10-19 15:36:43
157.245.98.160	attack	Oct 19 06:47:23 www5 sshd\[17118\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.98.160 user=root Oct 19 06:47:25 www5 sshd\[17118\]: Failed password for root from 157.245.98.160 port 48242 ssh2 Oct 19 06:51:59 www5 sshd\[17893\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.98.160 user=root ...	2019-10-19 15:59:41
178.62.237.38	attackspam	2019-10-19T07:21:56.846421abusebot.cloudsearch.cf sshd\[4888\]: Invalid user ajeya from 178.62.237.38 port 54428	2019-10-19 15:49:14
91.109.5.232	attackbots	Banned for posting to wp-login.php without referer {"log":"agent-758752","pwd":"myagent2017","wp-submit":"Log In","redirect_to":"http:\/\/Damiencummings.myagent.site\/wp-admin\/","testcookie":"1"}	2019-10-19 15:28:38
134.175.23.46	attackspambots	Oct 19 06:11:24 venus sshd\[30665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.23.46 user=root Oct 19 06:11:26 venus sshd\[30665\]: Failed password for root from 134.175.23.46 port 60664 ssh2 Oct 19 06:17:13 venus sshd\[30717\]: Invalid user tecnico from 134.175.23.46 port 43572 ...	2019-10-19 15:45:28
81.130.234.235	attack	2019-10-19T07:35:35.459358abusebot.cloudsearch.cf sshd\[5007\]: Invalid user qwerty12345678 from 81.130.234.235 port 59149	2019-10-19 15:54:15
157.230.168.4	attackspam	SSH Bruteforce	2019-10-19 15:37:39
178.128.194.116	attackspam	Invalid user verita from 178.128.194.116 port 37536	2019-10-19 15:31:50
73.94.192.215	attackbots	2019-10-19T07:09:58.101773abusebot-7.cloudsearch.cf sshd\[17438\]: Invalid user pi from 73.94.192.215 port 54668	2019-10-19 15:38:45
80.82.78.100	attackbots	19.10.2019 07:26:42 Connection to port 1027 blocked by firewall	2019-10-19 15:50:13

Recently Reported IPs

96.180.103.228	104.195.156.14	93.240.104.199	175.245.65.189
252.162.110.98	178.92.162.23	196.39.251.166	12.84.180.196
47.188.106.86	10.86.247.179	94.230.103.82	85.204.64.70
205.122.128.235	92.140.146.101	78.92.254.146	191.176.159.185
74.2.135.161	81.5.195.56	77.42.80.15	140.177.94.226