2.57.122.98 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Bunea Telecom SRL

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	UDP 2.57.122.98:44154 -> port 3283, len 32	2020-08-27 02:15:21
attack	UDP 2.57.122.98:40844 -> port 3283, len 32	2020-08-23 04:31:34
attackbots	Hit honeypot r.	2020-08-15 06:21:26
attackspam	2 Attack(s) Detected [DoS Attack: TCP/UDP Chargen] from source: 2.57.122.98, port 42724, Tuesday, August 11, 2020 06:07:50 [DoS Attack: TCP/UDP Chargen] from source: 2.57.122.98, port 43476, Tuesday, August 11, 2020 04:06:03	2020-08-13 15:19:46
attackbotsspam	10.08.2020 23:37:20 Connection to port 123 blocked by firewall	2020-08-11 07:39:42
attackspam	firewall-block, port(s): 389/udp	2020-08-07 13:43:46
attack	scans 2 times in preceeding hours on the ports (in chronological order) 3283 3702	2020-07-24 20:36:21
attackbotsspam	Fail2Ban Ban Triggered	2020-07-22 23:08:33

Comments on same subnet:

IP	Type	Details	Datetime
2.57.122.195	attackspam	Triggered by Fail2Ban at ReverseProxy web server	2020-10-12 21:47:03
2.57.122.195	attackspam	Unauthorized connection attempt detected from IP address 2.57.122.195 to port 22	2020-10-12 13:17:02
2.57.122.185	attackbotsspam	TCP (SYN) 2.57.122.185:43529 -> port 81, len 44	2020-10-12 07:57:50
2.57.122.170	attackspambots	Automatic report - Banned IP Access	2020-10-12 05:01:22
2.57.122.185	attackbots	TCP (SYN) 2.57.122.185:38582 -> port 81, len 44	2020-10-12 00:15:47
2.57.122.170	attackspambots	Automatic report - Banned IP Access	2020-10-11 21:06:02
2.57.122.185	attackspambots	Unauthorized connection attempt detected from IP address 2.57.122.185 to port 81	2020-10-11 16:14:09
2.57.122.170	attackspam	Automatic report - Banned IP Access	2020-10-11 13:03:10
2.57.122.185	attackbotsspam	TCP (SYN) 2.57.122.185:53503 -> port 81, len 44	2020-10-11 09:33:04
2.57.122.170	attackspambots	Automatic report - Banned IP Access	2020-10-11 06:26:15
2.57.122.181	attack	TCP (SYN) 2.57.122.181:33950 -> port 80, len 40	2020-10-10 23:49:38
2.57.122.209	attack	Sep 10 16:11:05 hidden postfix/postscreen[11034]: DNSBL rank 4 for [2.57.122.209]:55941	2020-10-10 23:47:57
2.57.122.185	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 4 - port: 81 proto: tcp cat: Misc Attackbytes: 60	2020-10-10 23:37:41
2.57.122.171	attackbotsspam	Port Scan ...	2020-10-10 22:33:16
2.57.122.181	attack	TCP (SYN) 2.57.122.181:33950 -> port 80, len 40	2020-10-10 15:39:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.57.122.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17866
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.57.122.98.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072200 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 22 23:08:28 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 98.122.57.2.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 98.122.57.2.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
1.63.226.147	attack	Jul 15 11:02:48 server sshd[732]: Failed password for sshd from 1.63.226.147 port 35036 ssh2 Jul 15 11:14:40 server sshd[25658]: Failed password for invalid user cloud from 1.63.226.147 port 58139 ssh2 Jul 15 11:17:28 server sshd[31948]: Failed password for invalid user hadoop from 1.63.226.147 port 49213 ssh2	2020-07-15 18:11:33
13.72.82.152	attackspambots	Jul 15 10:37:17 ssh2 sshd[11515]: Invalid user admin from 13.72.82.152 port 25816 Jul 15 10:37:17 ssh2 sshd[11515]: Failed password for invalid user admin from 13.72.82.152 port 25816 ssh2 Jul 15 10:37:17 ssh2 sshd[11515]: Disconnected from invalid user admin 13.72.82.152 port 25816 [preauth] ...	2020-07-15 18:42:54
162.62.26.228	attackspam	[Wed Jul 15 11:19:52 2020] - DDoS Attack From IP: 162.62.26.228 Port: 57244	2020-07-15 18:36:23
129.213.38.54	attackspam	Jul 15 07:16:38 ws19vmsma01 sshd[50072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.38.54 Jul 15 07:16:40 ws19vmsma01 sshd[50072]: Failed password for invalid user admin from 129.213.38.54 port 48170 ssh2 ...	2020-07-15 18:31:00
222.186.175.23	attack	Jul 15 12:21:54 v22018053744266470 sshd[12108]: Failed password for root from 222.186.175.23 port 47199 ssh2 Jul 15 12:22:07 v22018053744266470 sshd[12124]: Failed password for root from 222.186.175.23 port 48657 ssh2 ...	2020-07-15 18:33:12
122.51.32.248	attack	2020-07-15T05:56:20.067932devel sshd[20657]: Invalid user arduino from 122.51.32.248 port 55504 2020-07-15T05:56:21.531609devel sshd[20657]: Failed password for invalid user arduino from 122.51.32.248 port 55504 ssh2 2020-07-15T06:16:49.360546devel sshd[22209]: Invalid user afp from 122.51.32.248 port 36414	2020-07-15 18:21:16
88.254.172.93	attackspam	Port probing on unauthorized port 445	2020-07-15 18:22:54
217.150.211.7	attack	Jul 15 01:22:11 XXX sshd[41604]: Invalid user concrete from 217.150.211.7 port 53894	2020-07-15 18:10:05
80.211.0.239	attackspambots	Jul 15 06:12:52 NPSTNNYC01T sshd[4478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.0.239 Jul 15 06:12:54 NPSTNNYC01T sshd[4478]: Failed password for invalid user gisela from 80.211.0.239 port 53952 ssh2 Jul 15 06:16:40 NPSTNNYC01T sshd[4863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.0.239 ...	2020-07-15 18:29:16
180.166.114.14	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-15 18:35:19
182.254.141.97	attackspambots	Unauthorized connection attempt from IP address 182.254.141.97 on Port 445(SMB)	2020-07-15 18:39:01
115.159.66.109	attackspambots	Triggered by Fail2Ban at Ares web server	2020-07-15 18:07:48
222.186.42.137	attackbotsspam	Jul 15 10:16:41 ip-172-31-61-156 sshd[11180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root Jul 15 10:16:43 ip-172-31-61-156 sshd[11180]: Failed password for root from 222.186.42.137 port 21505 ssh2 ...	2020-07-15 18:26:25
178.142.187.237	attack	Jul 15 17:16:35 webhost01 sshd[5059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.142.187.237 ...	2020-07-15 18:39:23
46.105.73.155	attack	Jul 15 12:11:56 server sshd[19935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.73.155 Jul 15 12:11:58 server sshd[19935]: Failed password for invalid user amadeus from 46.105.73.155 port 58566 ssh2 Jul 15 12:16:32 server sshd[20277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.73.155 ...	2020-07-15 18:47:11

Recently Reported IPs

61.119.21.58	189.115.43.194	230.241.171.164	120.112.200.242
55.69.81.58	91.185.190.207	140.6.165.157	122.119.165.246
197.192.143.90	101.9.196.221	249.250.232.199	122.173.162.253
197.191.99.28	152.163.248.2	245.131.141.121	233.136.82.45
247.61.124.79	179.194.15.233	197.192.12.73	178.182.246.145