2.98.45.166 - IPInfo

Basic Info

City: Manchester

Region: England

Country: United Kingdom

Internet Service Provider: TalkTalk Communications Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Nov 14 06:55:27 sauna sshd[214136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.98.45.166 Nov 14 06:55:27 sauna sshd[214138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.98.45.166 ...	2019-11-14 14:13:39
attackbotsspam	2019-11-08T06:30:50.831302hub.schaetter.us sshd\[30167\]: Invalid user pi from 2.98.45.166 port 43467 2019-11-08T06:30:50.851951hub.schaetter.us sshd\[30169\]: Invalid user pi from 2.98.45.166 port 43468 2019-11-08T06:30:50.953490hub.schaetter.us sshd\[30167\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-2-98-45-166.as13285.net 2019-11-08T06:30:50.975414hub.schaetter.us sshd\[30169\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-2-98-45-166.as13285.net 2019-11-08T06:30:52.407618hub.schaetter.us sshd\[30169\]: Failed password for invalid user pi from 2.98.45.166 port 43468 ssh2 ...	2019-11-08 15:35:33
attackspambots	$f2bV_matches	2019-10-31 14:22:39
attackbotsspam	Invalid user pi from 2.98.45.166 port 40956	2019-10-27 02:14:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.98.45.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55118
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.98.45.166.			IN	A

;; AUTHORITY SECTION:
.			538	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102601 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 27 02:14:15 CST 2019
;; MSG SIZE  rcvd: 115

Host info

166.45.98.2.in-addr.arpa domain name pointer host-2-98-45-166.as13285.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.45.98.2.in-addr.arpa	name = host-2-98-45-166.as13285.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.62.104.58	attackbots	Fail2Ban Ban Triggered	2020-04-22 13:15:37
106.75.99.198	attack	Unauthorized connection attempt detected from IP address 106.75.99.198 to port 3382 [T]	2020-04-22 13:22:36
101.37.205.238	attackbotsspam	IDS admin	2020-04-22 13:15:11
128.73.138.179	attackspambots	20/4/21@23:55:48: FAIL: Alarm-Network address from=128.73.138.179 20/4/21@23:55:48: FAIL: Alarm-Network address from=128.73.138.179 ...	2020-04-22 13:39:15
27.72.62.3	attackspam	Unauthorized connection attempt detected from IP address 27.72.62.3 to port 445	2020-04-22 13:19:47
188.131.142.109	attack	Apr 22 07:22:15 ns382633 sshd\[11964\]: Invalid user ba from 188.131.142.109 port 57590 Apr 22 07:22:15 ns382633 sshd\[11964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.142.109 Apr 22 07:22:17 ns382633 sshd\[11964\]: Failed password for invalid user ba from 188.131.142.109 port 57590 ssh2 Apr 22 07:26:01 ns382633 sshd\[12737\]: Invalid user admin from 188.131.142.109 port 35544 Apr 22 07:26:01 ns382633 sshd\[12737\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.142.109	2020-04-22 13:36:35
111.9.116.90	attackspambots	Port probing on unauthorized port 1134	2020-04-22 13:41:22
190.13.173.67	attack	Invalid user postgres from 190.13.173.67 port 51096	2020-04-22 13:18:50
14.243.168.234	attackbots	14.243.168.234 - - [22/Apr/2020:05:56:20 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 14.243.168.234 - - [22/Apr/2020:05:56:23 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 14.243.168.234 - - [22/Apr/2020:05:56:26 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 14.243.168.234 - - [22/Apr/2020:05:56:30 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" 14.243.168.234 - - [22/Apr/2020:05:56:33 +0200] "POST /wp-login.php HTTP/1.1" 200 6458 "http://entreprendre.univ-lyon3.fr/wp-login.php" "Mozilla/5.0 (Window ...	2020-04-22 13:05:07
220.85.206.96	attackbotsspam	Invalid user qa from 220.85.206.96 port 34900	2020-04-22 13:33:11
138.197.89.212	attackbots	$f2bV_matches	2020-04-22 13:13:15
64.227.21.201	attackspam	2020-04-22T03:51:18.628339ionos.janbro.de sshd[46770]: Invalid user admin from 64.227.21.201 port 53062 2020-04-22T03:51:20.445140ionos.janbro.de sshd[46770]: Failed password for invalid user admin from 64.227.21.201 port 53062 ssh2 2020-04-22T03:53:47.133381ionos.janbro.de sshd[46798]: Invalid user admin from 64.227.21.201 port 59772 2020-04-22T03:53:47.614219ionos.janbro.de sshd[46798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.21.201 2020-04-22T03:53:47.133381ionos.janbro.de sshd[46798]: Invalid user admin from 64.227.21.201 port 59772 2020-04-22T03:53:49.696266ionos.janbro.de sshd[46798]: Failed password for invalid user admin from 64.227.21.201 port 59772 ssh2 2020-04-22T03:56:28.082635ionos.janbro.de sshd[46815]: Invalid user lo from 64.227.21.201 port 38250 2020-04-22T03:56:28.268075ionos.janbro.de sshd[46815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.21.201 2020-04-22T03:5 ...	2020-04-22 13:10:52
222.186.42.7	attack	Apr 22 07:08:38 plex sshd[16245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Apr 22 07:08:40 plex sshd[16245]: Failed password for root from 222.186.42.7 port 41949 ssh2	2020-04-22 13:11:23
150.109.78.69	attackbots	Invalid user pq from 150.109.78.69 port 45606	2020-04-22 13:17:29
51.77.111.30	attackspam	20 attempts against mh-ssh on echoip	2020-04-22 13:41:41

Recently Reported IPs

92.23.147.227	180.34.192.47	202.166.138.177	202.101.184.152
120.102.118.55	80.149.198.9	196.196.193.212	70.70.16.63
185.72.217.91	83.217.138.149	147.158.211.203	136.204.224.149
66.27.46.178	181.95.26.115	105.228.211.197	139.211.68.72
152.246.45.217	112.91.165.95	113.114.27.103	193.55.163.42