196.148.166.159

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.148.166.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42944
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;196.148.166.159.		IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 06:27:21 CST 2025
;; MSG SIZE  rcvd: 108

Host info

Host 159.166.148.196.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 159.166.148.196.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.202.0.27	attackbots	port scan and connect, tcp 3351 (pervasive-psql)	2020-03-07 23:27:35
189.103.238.236	attack	Honeypot attack, port: 5555, PTR: bd67eeec.virtua.com.br.	2020-03-07 23:48:28
72.134.12.111	attackbots	TCP Port Scanning	2020-03-07 23:41:17
14.34.165.243	attackspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-03-07 23:51:16
159.203.73.181	attackbots	Mar 7 05:39:23 web1 sshd\[3006\]: Invalid user csgoserver from 159.203.73.181 Mar 7 05:39:23 web1 sshd\[3006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.73.181 Mar 7 05:39:25 web1 sshd\[3006\]: Failed password for invalid user csgoserver from 159.203.73.181 port 45998 ssh2 Mar 7 05:43:27 web1 sshd\[3360\]: Invalid user ftpuser from 159.203.73.181 Mar 7 05:43:27 web1 sshd\[3360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.73.181	2020-03-07 23:52:34
157.245.34.72	attack	Lines containing failures of 157.245.34.72 Mar 6 22:13:02 cdb sshd[22029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.34.72 user=r.r Mar 6 22:13:04 cdb sshd[22029]: Failed password for r.r from 157.245.34.72 port 32818 ssh2 Mar 6 22:13:04 cdb sshd[22029]: Received disconnect from 157.245.34.72 port 32818:11: Bye Bye [preauth] Mar 6 22:13:04 cdb sshd[22029]: Disconnected from authenticating user r.r 157.245.34.72 port 32818 [preauth] Mar 6 22:21:38 cdb sshd[23260]: Invalid user alex from 157.245.34.72 port 34768 Mar 6 22:21:38 cdb sshd[23260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.34.72 Mar 6 22:21:40 cdb sshd[23260]: Failed password for invalid user alex from 157.245.34.72 port 34768 ssh2 Mar 6 22:21:40 cdb sshd[23260]: Received disconnect from 157.245.34.72 port 34768:11: Bye Bye [preauth] Mar 6 22:21:40 cdb sshd[23260]: Disconnected from invalid user........ ------------------------------	2020-03-07 23:33:29
112.78.191.35	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-07 23:41:45
197.51.117.147	attackbotsspam	Automatic report - Banned IP Access	2020-03-07 23:43:35
27.147.140.125	attack	Mar 7 05:44:54 hpm sshd\[25358\]: Invalid user ubuntu from 27.147.140.125 Mar 7 05:44:54 hpm sshd\[25358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.147.140.125 Mar 7 05:44:55 hpm sshd\[25358\]: Failed password for invalid user ubuntu from 27.147.140.125 port 45780 ssh2 Mar 7 05:50:39 hpm sshd\[25819\]: Invalid user ashok from 27.147.140.125 Mar 7 05:50:39 hpm sshd\[25819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.147.140.125	2020-03-08 00:02:11
191.96.97.10	attack	suspicious action Sat, 07 Mar 2020 10:33:04 -0300	2020-03-07 23:40:35
60.216.249.20	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-03-08 00:05:13
212.129.48.145	attack	[2020-03-07 10:13:36] NOTICE[1148] chan_sip.c: Registration from '"912"' failed for '212.129.48.145:62379' - Wrong password [2020-03-07 10:13:36] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-07T10:13:36.838-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="912",SessionID="0x7fd82c40d3d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129.48.145/62379",Challenge="24b8a29a",ReceivedChallenge="24b8a29a",ReceivedHash="c6c4b090dc5511800792186d648c15a4" [2020-03-07 10:13:37] NOTICE[1148] chan_sip.c: Registration from '"924"' failed for '212.129.48.145:62391' - Wrong password [2020-03-07 10:13:37] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-07T10:13:37.557-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="924",SessionID="0x7fd82ca712e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212. ...	2020-03-07 23:27:14
113.168.59.197	attack	[SatMar0714:32:43.4281132020][:error][pid22865:tid47374233773824][client113.168.59.197:49191][client113.168.59.197]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"patriziatodiosogna.ch"][uri"/"][unique_id"XmOie0xEYV9Jn2sXpUU-pQAAANc"][SatMar0714:32:50.5845412020][:error][pid22858:tid47374123271936][client113.168.59.197:49196][client113.168.59.197]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\	2020-03-07 23:47:57
165.22.61.82	attack	Mar 7 16:18:17 vps647732 sshd[14234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.61.82 Mar 7 16:18:19 vps647732 sshd[14234]: Failed password for invalid user guest from 165.22.61.82 port 53570 ssh2 ...	2020-03-07 23:29:03
159.65.26.61	attackbots	fail2ban	2020-03-07 23:44:07

Recently Reported IPs

226.247.250.32	25.241.114.204	54.115.19.98	127.135.17.37
80.107.173.94	60.58.112.149	137.52.121.60	55.126.228.253
34.222.241.28	221.152.139.166	35.67.233.111	21.33.66.116
129.177.87.115	99.130.157.174	238.180.105.49	25.161.202.75
178.105.181.22	159.225.150.181	66.117.141.194	122.33.208.23