154.155.25.48 - IPInfo

Basic Info

City: Nairobi

Region: Nairobi

Country: Kenya

Internet Service Provider: Airtel

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 154.155.25.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56832
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;154.155.25.48.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025010602 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 07 11:55:49 CST 2025
;; MSG SIZE  rcvd: 106

Host info

48.25.155.154.in-addr.arpa domain name pointer 48-25-155-154.r.airtelkenya.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.25.155.154.in-addr.arpa	name = 48-25-155-154.r.airtelkenya.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.209.111.16	attackspam	Aug 7 23:32:20 OPSO sshd\[5139\]: Invalid user developer from 134.209.111.16 port 59074 Aug 7 23:32:20 OPSO sshd\[5139\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.111.16 Aug 7 23:32:22 OPSO sshd\[5139\]: Failed password for invalid user developer from 134.209.111.16 port 59074 ssh2 Aug 7 23:41:56 OPSO sshd\[6477\]: Invalid user tj from 134.209.111.16 port 41334 Aug 7 23:41:56 OPSO sshd\[6477\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.111.16	2019-08-08 05:46:30
210.6.124.162	attack	Aug 7 17:39:33 TCP Attack: SRC=210.6.124.162 DST=[Masked] LEN=277 TOS=0x00 PREC=0x00 TTL=53 DF PROTO=TCP SPT=36196 DPT=80 WINDOW=229 RES=0x00 ACK PSH URGP=0	2019-08-08 05:21:49
89.122.55.116	attackspambots	" "	2019-08-08 05:49:38
43.227.68.26	attackspambots	Automatic report - Banned IP Access	2019-08-08 05:31:41
159.203.2.17	attack	Aug 7 19:36:44 xeon sshd[15355]: Failed password for invalid user teste from 159.203.2.17 port 51022 ssh2	2019-08-08 05:10:05
92.118.37.74	attackspam	Aug 7 22:59:37 h2177944 kernel: \[3535415.714223\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.74 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=22044 PROTO=TCP SPT=46525 DPT=26263 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 7 23:02:24 h2177944 kernel: \[3535582.621574\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.74 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=35138 PROTO=TCP SPT=46525 DPT=48683 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 7 23:04:36 h2177944 kernel: \[3535714.987030\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.74 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=16461 PROTO=TCP SPT=46525 DPT=41695 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 7 23:06:21 h2177944 kernel: \[3535819.730670\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.74 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=28047 PROTO=TCP SPT=46525 DPT=37921 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 7 23:09:37 h2177944 kernel: \[3536015.389651\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.74 DST=85.214.117.9	2019-08-08 05:17:05
185.223.161.80	attack	Ein möglicherweise gefährlicher Request.Form-Wert wurde vom Client (mp$ContentZone$TxtMessage="	2019-08-08 05:11:27
112.85.42.179	attack	2019-08-07T21:14:37.635770Z fa5b8265aca9 New connection: 112.85.42.179:7592 (172.17.0.3:2222) [session: fa5b8265aca9] 2019-08-07T21:15:21.559264Z b1b26bf14ee7 New connection: 112.85.42.179:16289 (172.17.0.3:2222) [session: b1b26bf14ee7]	2019-08-08 05:49:22
81.44.65.195	attackbotsspam	ssh intrusion attempt	2019-08-08 05:24:40
195.154.86.34	attackbotsspam	GET /pma/scripts/setup.php HTTP/1.1	2019-08-08 05:13:35
134.209.61.78	attackbotsspam	Aug 7 19:39:00 [munged] sshd[4743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.61.78	2019-08-08 05:32:26
85.106.80.23	attack	Automatic report - Port Scan Attack	2019-08-08 05:33:39
190.85.181.74	attackspam	Automatic report - Port Scan Attack	2019-08-08 05:32:11
185.220.101.34	attackbotsspam	Aug 5 08:18:46 * sshd[19917]: Failed password for invalid user user from 185.220.101.34 port 35270 ssh2 Aug 5 08:19:54 * sshd[19953]: Failed password for invalid user apc from 185.220.101.34 port 44734 ssh2 Aug 5 15:53:22 * sshd[27224]: Failed password for invalid user leo from 185.220.101.34 port 34353 ssh2 Aug 5 15:53:27 * sshd[27227]: Failed password for invalid user localadmin from 185.220.101.34 port 46721 ssh2 Aug 5 15:55:34 * sshd[27288]: Failed password for invalid user m202 from 185.220.101.34 port 33297 ssh2 Aug 7 01:48:31 * sshd[5806]: Failed password for invalid user stackato from 185.220.101.34 port 44327 ssh2	2019-08-08 05:52:03
45.67.14.151	attackbots	firewall-block, port(s): 3005/tcp	2019-08-08 05:18:35

Recently Reported IPs

37.95.74.139	31.94.154.247	232.243.76.233	227.225.185.14
31.58.205.55	108.146.106.29	250.181.86.63	152.95.181.240
205.69.152.101	61.104.247.248	4.211.94.161	224.123.141.80
247.209.185.197	84.92.191.182	144.96.206.255	123.234.147.50
173.159.118.76	195.211.87.249	128.161.76.227	180.204.95.100