157.48.2.159 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
157.48.233.217	spambotsattackproxynormal	Add	2022-10-02 03:13:55
157.48.203.28	attack	Unauthorized connection attempt from IP address 157.48.203.28 on Port 445(SMB)	2020-09-16 20:54:57
157.48.203.28	attackspambots	Unauthorized connection attempt from IP address 157.48.203.28 on Port 445(SMB)	2020-09-16 13:25:19
157.48.203.28	attack	Unauthorized connection attempt from IP address 157.48.203.28 on Port 445(SMB)	2020-09-16 05:10:54
157.48.219.70	attack	1598499826 - 08/27/2020 05:43:46 Host: 157.48.219.70/157.48.219.70 Port: 445 TCP Blocked ...	2020-08-27 18:50:45
157.48.209.71	attackspam	Unauthorized connection attempt from IP address 157.48.209.71 on Port 445(SMB)	2020-08-21 01:21:39
157.48.214.8	attack	Unauthorized connection attempt from IP address 157.48.214.8 on Port 445(SMB)	2020-08-01 03:48:37
157.48.209.92	attackspam	1594208724 - 07/08/2020 13:45:24 Host: 157.48.209.92/157.48.209.92 Port: 445 TCP Blocked	2020-07-09 02:21:02
157.48.24.202	attackbotsspam	445/tcp [2020-05-01]1pkt	2020-05-02 04:07:28
157.48.24.81	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 16-03-2020 14:45:15.	2020-03-16 23:55:08
157.48.236.56	attack	Unauthorised access (Mar 3) SRC=157.48.236.56 LEN=52 TOS=0x08 PREC=0x20 TTL=111 ID=28269 DF TCP DPT=445 WINDOW=8192 SYN	2020-03-03 21:25:59
157.48.209.137	attackbotsspam	unauthorized connection attempt	2020-01-28 17:36:13
157.48.220.137	attack	Chat Spam	2019-12-16 03:31:22
157.48.28.49	attackbots	WordPress wp-login brute force :: 157.48.28.49 0.128 BYPASS [02/Aug/2019:18:43:17 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-02 22:57:16
157.48.28.155	attackspam	Unauthorized connection attempt from IP address 157.48.28.155 on Port 445(SMB)	2019-07-28 06:39:49

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.48.2.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55264
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.48.2.159.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060302 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 04 10:51:51 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 159.2.48.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 159.2.48.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.46.243.178	attackspambots	[portscan] tcp/23 [TELNET] *(RWIN=33742)(10090804)	2020-10-09 17:46:57
223.247.130.4	attack	Oct 9 15:44:42 itv-usvr-02 sshd[15064]: Invalid user ftp from 223.247.130.4 port 43176 Oct 9 15:44:42 itv-usvr-02 sshd[15064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.130.4 Oct 9 15:44:42 itv-usvr-02 sshd[15064]: Invalid user ftp from 223.247.130.4 port 43176 Oct 9 15:44:45 itv-usvr-02 sshd[15064]: Failed password for invalid user ftp from 223.247.130.4 port 43176 ssh2 Oct 9 15:49:44 itv-usvr-02 sshd[15307]: Invalid user tester from 223.247.130.4 port 36022	2020-10-09 18:07:24
141.98.80.39	attack	Found on Binary Defense / proto=6 . srcport=65528 . dstport=53 DNS . (757)	2020-10-09 17:53:14
125.25.82.190	attackspam	CMS (WordPress or Joomla) login attempt.	2020-10-09 18:09:39
203.195.164.81	attackbotsspam	Failed password for invalid user git from 203.195.164.81 port 42210 ssh2	2020-10-09 17:59:17
103.219.112.48	attackspambots	Oct 9 09:08:59 Ubuntu-1404-trusty-64-minimal sshd\[32462\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.112.48 user=root Oct 9 09:09:01 Ubuntu-1404-trusty-64-minimal sshd\[32462\]: Failed password for root from 103.219.112.48 port 48728 ssh2 Oct 9 09:15:17 Ubuntu-1404-trusty-64-minimal sshd\[3464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.112.48 user=root Oct 9 09:15:19 Ubuntu-1404-trusty-64-minimal sshd\[3464\]: Failed password for root from 103.219.112.48 port 38452 ssh2 Oct 9 09:17:43 Ubuntu-1404-trusty-64-minimal sshd\[4688\]: Invalid user web0 from 103.219.112.48 Oct 9 09:17:43 Ubuntu-1404-trusty-64-minimal sshd\[4688\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.112.48	2020-10-09 17:38:24
115.60.60.128	attackspam	Oct 9 10:24:15 slaro sshd\[24174\]: Invalid user oracle from 115.60.60.128 Oct 9 10:24:15 slaro sshd\[24174\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.60.60.128 Oct 9 10:24:17 slaro sshd\[24174\]: Failed password for invalid user oracle from 115.60.60.128 port 12569 ssh2 ...	2020-10-09 17:51:34
189.127.182.50	attack	(cxs) cxs mod_security triggered by 189.127.182.50 (189-127-182-050.linknetinternet.com.br): 1 in the last 3600 secs	2020-10-09 17:33:55
197.253.9.50	attackbotsspam	Automatic report - Banned IP Access	2020-10-09 17:36:19
134.175.148.100	attackspambots	IP blocked	2020-10-09 18:06:27
181.93.84.20	attackbotsspam	Oct 8 22:44:05 icecube postfix/smtpd[19737]: NOQUEUE: reject: RCPT from unknown[181.93.84.20]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=	2020-10-09 17:43:57
189.162.123.212	attackspambots	Oct 8 12:27:35 online-web-1 sshd[1806454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.162.123.212 user=r.r Oct 8 12:27:36 online-web-1 sshd[1806454]: Failed password for r.r from 189.162.123.212 port 60010 ssh2 Oct 8 12:27:37 online-web-1 sshd[1806454]: Received disconnect from 189.162.123.212 port 60010:11: Bye Bye [preauth] Oct 8 12:27:37 online-web-1 sshd[1806454]: Disconnected from 189.162.123.212 port 60010 [preauth] Oct 8 12:34:56 online-web-1 sshd[1807269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.162.123.212 user=r.r Oct 8 12:34:58 online-web-1 sshd[1807269]: Failed password for r.r from 189.162.123.212 port 35836 ssh2 Oct 8 12:34:58 online-web-1 sshd[1807269]: Received disconnect from 189.162.123.212 port 35836:11: Bye Bye [preauth] Oct 8 12:34:58 online-web-1 sshd[1807269]: Disconnected from 189.162.123.212 port 35836 [preauth] Oct 8 12:43:11 online-w........ -------------------------------	2020-10-09 17:45:13
112.199.98.42	attack	$f2bV_matches	2020-10-09 17:46:27
68.183.83.38	attack	2020-10-09T08:58:37.599336mail.broermann.family sshd[391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.83.38 user=root 2020-10-09T08:58:39.722749mail.broermann.family sshd[391]: Failed password for root from 68.183.83.38 port 57134 ssh2 2020-10-09T09:01:15.382497mail.broermann.family sshd[686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.83.38 user=root 2020-10-09T09:01:17.196137mail.broermann.family sshd[686]: Failed password for root from 68.183.83.38 port 40880 ssh2 2020-10-09T09:03:51.203543mail.broermann.family sshd[891]: Invalid user hr from 68.183.83.38 port 52858 ...	2020-10-09 18:01:13
193.29.15.169	attackbots	UDP 193.29.15.169:60551 -> port 389, len 80	2020-10-09 17:52:41

Recently Reported IPs

1.162.144.228	94.255.177.203	210.212.183.59	54.36.3.233
205.201.81.214	82.200.5.70	2002:b479:82a8::b479:82a8	27.72.40.29
165.22.78.120	245.100.172.79	82.78.193.249	221.165.110.215
220.167.89.56	23.228.99.42	112.196.70.204	183.100.83.133
190.145.255.246	74.73.145.47	122.118.241.230	217.144.185.139