188.148.159.42

Basic Info

City: unknown

Region: unknown

Country: Sweden

Internet Service Provider: Tele2 Sverige AB

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-19 22:57:49
attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-19 14:47:50
attackbotsspam	Sep 19 01:08:01 root sshd[16368]: Invalid user admin from 188.148.159.42 ...	2020-09-19 06:24:40

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 188.148.159.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8181
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;188.148.159.42.			IN	A

;; AUTHORITY SECTION:
.			322	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091802 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 19 06:24:37 CST 2020
;; MSG SIZE  rcvd: 118

Host info

42.159.148.188.in-addr.arpa domain name pointer c188-148-159-42.bredband.comhem.se.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.159.148.188.in-addr.arpa	name = c188-148-159-42.bredband.comhem.se.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.224.191.67	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-25 22:38:06,538 INFO [amun_request_handler] PortScan Detected on Port: 445 (159.224.191.67)	2019-07-26 13:16:18
27.34.240.250	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-25 22:36:51,939 INFO [amun_request_handler] PortScan Detected on Port: 445 (27.34.240.250)	2019-07-26 13:27:45
92.53.65.128	attackspam	4065/tcp 4030/tcp 4004/tcp... [2019-07-17/25]84pkt,78pt.(tcp)	2019-07-26 13:05:17
119.196.83.18	attackspambots	Jul 26 07:42:18 * sshd[28649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.196.83.18 Jul 26 07:42:20 * sshd[28649]: Failed password for invalid user oscar from 119.196.83.18 port 47980 ssh2	2019-07-26 13:43:34
160.153.156.141	attackspam	xmlrpc attack	2019-07-26 13:19:32
184.105.247.200	attackbotsspam	443/udp 27017/tcp 8080/tcp... [2019-05-24/07-25]42pkt,12pt.(tcp),2pt.(udp)	2019-07-26 13:39:25
127.0.0.1	attackspam	Test Connectivity	2019-07-26 13:49:00
89.159.67.245	attackbotsspam	Jul 26 03:23:16 nginx webmin[67628]: Non-existent login as root from 89.159.67.245 Jul 26 03:23:17 nginx webmin[67636]: Non-existent login as root from 89.159.67.245 Jul 26 03:23:20 nginx webmin[67659]: Non-existent login as root from 89.159.67.245 Jul 26 03:23:23 nginx webmin[67662]: Non-existent login as root from 89.159.67.245 Jul 26 03:23:28 nginx webmin[68172]: Non-existent login as root from 89.159.67.245	2019-07-26 13:50:31
51.15.58.201	attackbotsspam	ssh failed login	2019-07-26 13:13:49
107.170.192.34	attackspam	53662/tcp 1723/tcp 27017/tcp... [2019-05-24/07-25]56pkt,45pt.(tcp),3pt.(udp)	2019-07-26 13:08:29
51.75.52.127	attackbots	" "	2019-07-26 13:21:25
45.77.124.38	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-26 00:20:02,687 INFO [amun_request_handler] PortScan Detected on Port: 139 (45.77.124.38)	2019-07-26 13:06:25
113.161.4.15	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-25 22:38:18,023 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.161.4.15)	2019-07-26 12:59:46
162.243.143.52	attackbots	13858/tcp 7199/tcp 115/tcp... [2019-05-25/07-25]65pkt,57pt.(tcp),1pt.(udp)	2019-07-26 13:04:10
92.118.37.74	attack	Jul 26 05:14:32 mail kernel: [4615912.208432] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=44136 PROTO=TCP SPT=46525 DPT=56885 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 26 05:16:40 mail kernel: [4616039.499638] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=59988 PROTO=TCP SPT=46525 DPT=21953 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 26 05:17:21 mail kernel: [4616081.126095] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=42918 PROTO=TCP SPT=46525 DPT=43498 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 26 05:18:05 mail kernel: [4616124.979110] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=52130 PROTO=TCP SPT=46525 DPT=32196 WINDOW=1024 RES=0x00 SYN	2019-07-26 13:36:12

Recently Reported IPs

178.62.227.247	120.42.145.30	216.243.75.106	14.235.254.120
59.193.223.88	248.175.32.156	233.167.128.154	34.173.199.78
193.6.233.9	211.25.247.196	175.207.109.46	45.201.87.82
130.78.248.99	158.147.45.5	81.12.72.3	73.201.235.96
99.83.217.219	186.12.212.154	109.225.118.128	49.48.230.12