42.15.159.148 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea (the Republic of)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.15.159.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14979
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;42.15.159.148.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021401 1800 900 604800 86400

;; Query time: 42 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 08:49:49 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 148.159.15.42.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.159.15.42.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.230.152.118	attackbots	Unauthorized SSH login attempts	2019-07-04 19:16:43
61.3.228.38	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 09:05:12,112 INFO [shellcode_manager] (61.3.228.38) no match, writing hexdump (0f18d28df7045ee8bdfe3f6cb4359e60 :1992581) - MS17010 (EternalBlue)	2019-07-04 19:17:54
201.243.144.116	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 09:04:01,121 INFO [shellcode_manager] (201.243.144.116) no match, writing hexdump (4ef9f5800c20015a634de32bd84ef88c :2053537) - MS17010 (EternalBlue)	2019-07-04 20:02:58
51.158.100.127	attack	Jul 4 11:04:06 meumeu sshd[24605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.100.127 Jul 4 11:04:08 meumeu sshd[24605]: Failed password for invalid user user from 51.158.100.127 port 34812 ssh2 Jul 4 11:06:16 meumeu sshd[24865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.100.127 ...	2019-07-04 19:52:07
183.89.166.18	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 09:05:42,557 INFO [shellcode_manager] (183.89.166.18) no match, writing hexdump (f6e805dfa7c253447d09d37309c7e775 :2034821) - MS17010 (EternalBlue)	2019-07-04 19:07:01
96.57.82.166	attack	Jul 4 10:57:46 srv03 sshd\[4549\]: Invalid user leng from 96.57.82.166 port 34670 Jul 4 10:57:46 srv03 sshd\[4549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.57.82.166 Jul 4 10:57:48 srv03 sshd\[4549\]: Failed password for invalid user leng from 96.57.82.166 port 34670 ssh2	2019-07-04 19:45:36
35.232.85.84	attack	WordPress login Brute force / Web App Attack on client site.	2019-07-04 19:50:11
122.168.53.189	attack	2019-07-04 07:41:41 unexpected disconnection while reading SMTP command from (abts-mp-dynamic-189.53.168.122.airtelbroadband.in) [122.168.53.189]:29454 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-07-04 07:42:58 unexpected disconnection while reading SMTP command from (abts-mp-dynamic-189.53.168.122.airtelbroadband.in) [122.168.53.189]:21873 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-07-04 07:43:21 unexpected disconnection while reading SMTP command from (abts-mp-dynamic-189.53.168.122.airtelbroadband.in) [122.168.53.189]:38387 I=[10.100.18.20]:25 (error: Connection reset by peer) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=122.168.53.189	2019-07-04 19:32:36
54.38.238.92	attackspam	fail2ban honeypot	2019-07-04 19:58:36
202.164.48.202	attackbots	2019-07-04T16:12:41.234369enmeeting.mahidol.ac.th sshd\[14613\]: Invalid user gisele from 202.164.48.202 port 37649 2019-07-04T16:12:41.248447enmeeting.mahidol.ac.th sshd\[14613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.164.48.202 2019-07-04T16:12:43.032370enmeeting.mahidol.ac.th sshd\[14613\]: Failed password for invalid user gisele from 202.164.48.202 port 37649 ssh2 ...	2019-07-04 20:04:45
104.217.191.222	attackbotsspam	Jul 4 12:06:22 shared02 sshd[3110]: Invalid user aztecs from 104.217.191.222 Jul 4 12:06:22 shared02 sshd[3110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.217.191.222 Jul 4 12:06:23 shared02 sshd[3110]: Failed password for invalid user aztecs from 104.217.191.222 port 41348 ssh2 Jul 4 12:06:23 shared02 sshd[3110]: Received disconnect from 104.217.191.222 port 41348:11: Bye Bye [preauth] Jul 4 12:06:23 shared02 sshd[3110]: Disconnected from 104.217.191.222 port 41348 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.217.191.222	2019-07-04 20:00:18
170.250.111.110	attack	Jul 4 08:07:43 andromeda sshd\[4051\]: Invalid user support from 170.250.111.110 port 60188 Jul 4 08:07:44 andromeda sshd\[4051\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.250.111.110 Jul 4 08:07:46 andromeda sshd\[4051\]: Failed password for invalid user support from 170.250.111.110 port 60188 ssh2	2019-07-04 19:57:28
130.211.83.74	attackspam	130.211.83.74 - - [04/Jul/2019:02:08:16 -0400] "GET /?page=products&action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&manufacturerID=127&productID=9050Z-TSS&linkID=8215&duplicate=0 HTTP/1.1" 200 17259 "https://californiafaucetsupply.com/?page=products&action=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&manufacturerID=127&productID=9050Z-TSS&linkID=8215&duplicate=0" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-07-04 19:36:01
5.196.124.125	attack	TCP src-port=59468 dst-port=25 dnsbl-sorbs abuseat-org barracuda (515)	2019-07-04 19:52:44
181.41.248.201	attackspambots	Jul 4 07:46:45 tamoto postfix/smtpd[11283]: connect from unknown[181.41.248.201] Jul 4 07:46:49 tamoto postfix/smtpd[11283]: warning: unknown[181.41.248.201]: SASL CRAM-MD5 authentication failed: authentication failure Jul 4 07:46:49 tamoto postfix/smtpd[11283]: warning: unknown[181.41.248.201]: SASL PLAIN authentication failed: authentication failure Jul 4 07:46:51 tamoto postfix/smtpd[11283]: warning: unknown[181.41.248.201]: SASL LOGIN authentication failed: authentication failure Jul 4 07:46:52 tamoto postfix/smtpd[11283]: disconnect from unknown[181.41.248.201] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=181.41.248.201	2019-07-04 19:54:13

Recently Reported IPs

187.61.86.148	52.132.23.245	50.48.178.123	57.247.66.125
36.196.144.152	240.167.162.91	134.52.57.224	214.168.67.38
96.3.181.91	65.1.69.28	194.47.44.99	232.83.216.246
83.53.12.23	93.168.74.235	153.97.188.15	124.68.185.35
181.137.46.172	67.219.99.209	108.187.89.153	79.44.208.172