2.57.122.70 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.57.122.195	attackspam	Triggered by Fail2Ban at ReverseProxy web server	2020-10-12 21:47:03
2.57.122.195	attackspam	Unauthorized connection attempt detected from IP address 2.57.122.195 to port 22	2020-10-12 13:17:02
2.57.122.185	attackbotsspam	TCP (SYN) 2.57.122.185:43529 -> port 81, len 44	2020-10-12 07:57:50
2.57.122.170	attackspambots	Automatic report - Banned IP Access	2020-10-12 05:01:22
2.57.122.185	attackbots	TCP (SYN) 2.57.122.185:38582 -> port 81, len 44	2020-10-12 00:15:47
2.57.122.170	attackspambots	Automatic report - Banned IP Access	2020-10-11 21:06:02
2.57.122.185	attackspambots	Unauthorized connection attempt detected from IP address 2.57.122.185 to port 81	2020-10-11 16:14:09
2.57.122.170	attackspam	Automatic report - Banned IP Access	2020-10-11 13:03:10
2.57.122.185	attackbotsspam	TCP (SYN) 2.57.122.185:53503 -> port 81, len 44	2020-10-11 09:33:04
2.57.122.170	attackspambots	Automatic report - Banned IP Access	2020-10-11 06:26:15
2.57.122.181	attack	TCP (SYN) 2.57.122.181:33950 -> port 80, len 40	2020-10-10 23:49:38
2.57.122.209	attack	Sep 10 16:11:05 hidden postfix/postscreen[11034]: DNSBL rank 4 for [2.57.122.209]:55941	2020-10-10 23:47:57
2.57.122.185	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 4 - port: 81 proto: tcp cat: Misc Attackbytes: 60	2020-10-10 23:37:41
2.57.122.171	attackbotsspam	Port Scan ...	2020-10-10 22:33:16
2.57.122.181	attack	TCP (SYN) 2.57.122.181:33950 -> port 80, len 40	2020-10-10 15:39:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.57.122.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17026
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.57.122.70.			IN	A

;; AUTHORITY SECTION:
.			241	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021200 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 12 16:34:15 CST 2022
;; MSG SIZE  rcvd: 104

Host info

70.122.57.2.in-addr.arpa domain name pointer mail.trackmediaaggregate.ga.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
70.122.57.2.in-addr.arpa	name = mail.trackmediaaggregate.ga.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.227.253.54	attack	apache exploit attempt	2020-05-27 23:28:49
171.103.52.150	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-05-27 23:54:07
185.220.101.12	attack	CMS (WordPress or Joomla) login attempt.	2020-05-27 23:18:55
2.92.117.47	attackbots	probing sign-up form	2020-05-27 23:40:23
34.96.140.57	attackbotsspam	Lines containing failures of 34.96.140.57 May 25 15:27:35 g sshd[6026]: Invalid user davidbjc from 34.96.140.57 port 61912 May 25 15:27:35 g sshd[6026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.96.140.57 May 25 15:27:36 g sshd[6026]: Failed password for invalid user davidbjc from 34.96.140.57 port 61912 ssh2 May 25 15:27:36 g sshd[6026]: Received disconnect from 34.96.140.57 port 61912:11: Bye Bye [preauth] May 25 15:27:36 g sshd[6026]: Disconnected from invalid user davidbjc 34.96.140.57 port 61912 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=34.96.140.57	2020-05-27 23:51:09
37.49.226.173	attackspam	2020-05-27T17:43:27.699958 sshd[29353]: Invalid user oracle from 37.49.226.173 port 49008 2020-05-27T17:43:27.712838 sshd[29353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.226.173 2020-05-27T17:43:27.699958 sshd[29353]: Invalid user oracle from 37.49.226.173 port 49008 2020-05-27T17:43:30.144963 sshd[29353]: Failed password for invalid user oracle from 37.49.226.173 port 49008 ssh2 ...	2020-05-27 23:56:52
114.32.103.141	attack	TCP Port Scanning	2020-05-27 23:38:04
49.233.153.154	attackbots	May 27 14:03:54 legacy sshd[25622]: Failed password for root from 49.233.153.154 port 60336 ssh2 May 27 14:09:10 legacy sshd[25790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.153.154 May 27 14:09:11 legacy sshd[25790]: Failed password for invalid user drupal from 49.233.153.154 port 33064 ssh2 ...	2020-05-27 23:33:14
87.66.233.119	attackbotsspam	sae-12 : Block return, carriage return, ... characters=>/index.php?option=com_content&view=article&id=75&Itemid=497'(')	2020-05-27 23:28:16
66.49.205.157	attackbotsspam	Automatic report - XMLRPC Attack	2020-05-27 23:20:32
91.121.221.195	attackbotsspam	Automatic report BANNED IP	2020-05-27 23:56:26
106.12.168.88	attack	May 27 13:48:16 h1745522 sshd[29094]: Invalid user sql from 106.12.168.88 port 57582 May 27 13:48:16 h1745522 sshd[29094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.168.88 May 27 13:48:16 h1745522 sshd[29094]: Invalid user sql from 106.12.168.88 port 57582 May 27 13:48:18 h1745522 sshd[29094]: Failed password for invalid user sql from 106.12.168.88 port 57582 ssh2 May 27 13:50:50 h1745522 sshd[29168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.168.88 user=root May 27 13:50:53 h1745522 sshd[29168]: Failed password for root from 106.12.168.88 port 36786 ssh2 May 27 13:53:30 h1745522 sshd[29274]: Invalid user spamtrap from 106.12.168.88 port 44244 May 27 13:53:30 h1745522 sshd[29274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.168.88 May 27 13:53:30 h1745522 sshd[29274]: Invalid user spamtrap from 106.12.168.88 port 44244 May 27 13:5 ...	2020-05-27 23:19:57
222.186.175.23	attack	May 27 17:15:21 minden010 sshd[8886]: Failed password for root from 222.186.175.23 port 55265 ssh2 May 27 17:15:24 minden010 sshd[8886]: Failed password for root from 222.186.175.23 port 55265 ssh2 May 27 17:15:26 minden010 sshd[8886]: Failed password for root from 222.186.175.23 port 55265 ssh2 ...	2020-05-27 23:17:40
134.209.41.198	attackbots	2020-05-27T12:03:46.735944shield sshd\[20451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.41.198 user=root 2020-05-27T12:03:48.647491shield sshd\[20451\]: Failed password for root from 134.209.41.198 port 57882 ssh2 2020-05-27T12:07:22.693865shield sshd\[21022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.41.198 user=root 2020-05-27T12:07:24.599897shield sshd\[21022\]: Failed password for root from 134.209.41.198 port 35838 ssh2 2020-05-27T12:10:53.728135shield sshd\[21801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.41.198 user=root	2020-05-27 23:29:42
139.59.249.255	attack	May 27 15:16:09 h2829583 sshd[12618]: Failed password for root from 139.59.249.255 port 20029 ssh2	2020-05-27 23:18:39

Recently Reported IPs

2.57.122.21	2.57.121.10	20.52.51.238	20.65.110.82
20.88.47.66	2.57.121.239	20.73.130.32	20.187.124.163
200.49.112.254	200.73.131.87	201.146.24.141	52.17.116.220
201.218.102.210	201.219.199.240	201.72.240.125	203.29.147.244
203.114.66.10	203.194.103.202	203.150.128.57	206.172.253.199