JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 148.66.155.73

148.66.155.73 was found in our database!

This IP was reported 116 times. Confidence of Abuse is 100%: ?

100%

ISP	Godaddy.com
Usage Type	Data Center/Web Hosting/Transit
ASN	AS26496
Hostname(s)	73.155.66.148.host.secureserver.net
Domain Name	godaddy.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 148.66.155.73

Whois 148.66.155.73

IP Abuse Reports for 148.66.155.73:

This IP address has been reported a total of 116 times from 77 distinct sources. 148.66.155.73 was first reported on June 9th 2026, and the most recent report was 45 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 mxinfra	2026-06-16 00:31:34 (45 minutes ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
🇺🇸 mnsf	2026-06-16 00:18:35 (58 minutes ago)	Abuse Detected (9)	Brute-Force Web App Attack
🇺🇸 chronos	2026-06-15 23:30:10 (1 hour ago)	[AUTORAVALT][[15/06/2026 - 20:30:10 -03:00 UTC] Attack from [Asia Pacific Network Information Centre ... show more [AUTORAVALT][[15/06/2026 - 20:30:10 -03:00 UTC] Attack from [Asia Pacific Network Information Centre] [148.66.155.73]-[RANGE:148.66.128.0 - 148.66.159.255] [73.155.66.148.host.secureserver.net] Action: BLocKed Phishing -> Phishing websites and/or email. Email Spam -> Spam email content, infected attachments, and phishing emails. Hacking... Unauthorized attemp] ... show less	Brute-Force Email Spam Spoofing Phishing Hacking
🇳🇱 DrLex0	2026-06-15 19:03:23 (6 hours ago)	Poking for env files using Go crap 148.66.155.73 80 - [15/Jun/2026:19:03:22 +0000] "GET /app/.env H ... show more Poking for env files using Go crap 148.66.155.73 80 - [15/Jun/2026:19:03:22 +0000] "GET /app/.env HTTP/1.1" 404 2402 "-" "Go-http-client/1.1" 148.66.155.73 80 - [15/Jun/2026:19:03:22 +0000] "GET /api/.env HTTP/1.1" 404 2402 "-" "Go-http-client/1.1" 148.66.155.73 80 - [15/Jun/2026:19:03:22 +0000] "GET /.env HTTP/1.1" 404 2402 "-" "Go-http-client/1.1" 148.66.155.73 443 - [15/Jun/2026:19:03:22 +0000] "GET /app/.env HTTP/1.1" 404 5969 "-" "Go-http-client/1.1" 148.66.155.73 443 - [15/Jun/2026:19:03:23 +0000] "GET /api/.env HTTP/1.1" 404 5969 "-" "Go-http-client/1.1" 148.66.155.73 443 - [15/Jun/2026:19:03:23 +0000] "GET /.env HTTP/1.1" 404 5969 "-" "Go-http-client/1.1" show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-15 17:58:11 (7 hours ago)	Banned by Fail2Ban on server	Web App Attack
🇩🇪 4server	2026-06-15 16:55:20 (8 hours ago)	[MonJun1518:55:17.6813022026][security2:error][pid72772:tid72912][client148.66.155.73:0]ModSecurity: ... show more [MonJun1518:55:17.6813022026][security2:error][pid72772:tid72912][client148.66.155.73:0]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch\"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)\"atREQUEST_FILENAME.[file\"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf\"][line\"204\"][id\"390709\"][rev\"30\"][msg\"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely\"][data\"/.env\"][severity\"CRITICAL\"][hostname\"morgenstern-swiss.ch\"][uri\"/app/.env\"][unique_id\"ajAudTVzCSaofMNQw-JcdAAAAM4\"] show less	Port Scan Brute-Force Web App Attack
🇺🇸 chronos	2026-06-15 06:23:40 (18 hours ago)	[AUTORAVALT][[15/06/2026 - 03:23:40 -03:00 UTC] Attack from [Asia Pacific Network Information Centre ... show more [AUTORAVALT][[15/06/2026 - 03:23:40 -03:00 UTC] Attack from [Asia Pacific Network Information Centre] [148.66.155.73]-[RANGE:148.66.128.0 - 148.66.159.255] [73.155.66.148.host.secureserver.net] Action: BLocKed Phishing -> Phishing websites and/or email. Email Spam -> Spam email content, infected attachments, and phishing emails. Hacking... Unauthorized attemp] ... show less	Brute-Force Email Spam Spoofing Phishing Hacking
🇩🇪 formality	2026-06-15 03:27:24 (21 hours ago)	Invalid user marleenjacobi from 148.66.155.73 port 38838	Brute-Force SSH
🇩🇪 LRob.fr	2026-06-15 02:45:04 (22 hours ago)	SSH abuse or brute-force attack detected by Fail2Ban in ssh jail	Brute-Force SSH
🇬🇧 andypiper	2026-06-15 01:00:18 (1 day ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇩🇪 mxinfra	2026-06-15 00:31:27 (1 day ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
🇩🇪 gnomechompski	2026-06-15 00:16:48 (1 day ago)	2026-06-14T23:50:49.820097+00:00 bsky-pds-2queer sshd-session[820411]: pam_unix(sshd:auth): authenti ... show more 2026-06-14T23:50:49.820097+00:00 bsky-pds-2queer sshd-session[820411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.155.73 user=root 2026-06-14T23:50:51.493900+00:00 bsky-pds-2queer sshd-session[820411]: Failed password for root from 148.66.155.73 port 44104 ssh2 2026-06-15T00:16:45.596111+00:00 bsky-pds-2queer sshd-session[834389]: Invalid user 2queer from 148.66.155.73 port 52642 2026-06-15T00:16:45.782973+00:00 bsky-pds-2queer sshd-session[834389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.155.73 2026-06-15T00:16:47.607475+00:00 bsky-pds-2queer sshd-session[834389]: Failed password for invalid user 2queer from 148.66.155.73 port 52642 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-06-15 00:16:47 (1 day ago)	Portscan: TCP/22 (7x)	Port Scan
🇺🇸 bigwavedave	2026-06-15 00:03:30 (1 day ago)	ssh	Brute-Force SSH
Anonymous	2026-06-14 23:58:45 (1 day ago)	148.66.155.73 (SG/Singapore/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; ... show more 148.66.155.73 (SG/Singapore/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Jun 14 19:58:38 server5 sshd[19334]: Failed password for root from 150.95.25.110 port 44790 ssh2 Jun 14 19:57:48 server5 sshd[19282]: Failed password for root from 148.66.155.73 port 43060 ssh2 Jun 14 19:47:41 server5 sshd[13407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.164.251.106 user=root Jun 14 19:47:43 server5 sshd[13407]: Failed password for root from 45.164.251.106 port 44136 ssh2 Jun 14 19:54:59 server5 sshd[17801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.124.196.101 user=root Jun 14 19:55:01 server5 sshd[17801]: Failed password for root from 103.124.196.101 port 38320 ssh2 IP Addresses Blocked: 150.95.25.110 (SG/Singapore/-) show less	Brute-Force

Showing 1 to 15 of 116 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 143.110.223.28

🇮🇩 202.152.138.93

🇺🇸 172.178.83.104

🇵🇰 160.25.2.193

🇨🇳 121.29.84.188

🇮🇳 106.192.221.182

🇺🇸 91.230.168.9

🇪🇸 46.222.164.166

🇳🇱 45.148.10.141

🇺🇸 20.84.144.171

🇺🇸 13.57.27.109

🇧🇷 205.210.31.197

🇺🇸 172.96.161.212

🇺🇸 159.223.104.157

🇧🇷 152.32.200.117

🇴🇲 134.0.164.229

🇨🇳 121.29.85.243

🇵🇰 119.159.176.190

🇨🇳 118.31.7.58

🇻🇳 116.99.49.208