2.57.121.254 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.57.121.104	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-14 09:04:46
2.57.121.19	attack	Lines containing failures of 2.57.121.19 Oct 7 12:37:11 nextcloud sshd[23963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:37:13 nextcloud sshd[23963]: Failed password for r.r from 2.57.121.19 port 47782 ssh2 Oct 7 12:37:13 nextcloud sshd[23963]: Received disconnect from 2.57.121.19 port 47782:11: Bye Bye [preauth] Oct 7 12:37:13 nextcloud sshd[23963]: Disconnected from authenticating user r.r 2.57.121.19 port 47782 [preauth] Oct 7 12:53:35 nextcloud sshd[26770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:53:37 nextcloud sshd[26770]: Failed password for r.r from 2.57.121.19 port 38478 ssh2 Oct 7 12:53:37 nextcloud sshd[26770]: Received disconnect from 2.57.121.19 port 38478:11: Bye Bye [preauth] Oct 7 12:53:37 nextcloud sshd[26770]: Disconnected from authenticating user r.r 2.57.121.19 port 38478 [preauth] Oct 7 1........ ------------------------------	2020-10-12 02:05:01
2.57.121.19	attack	Lines containing failures of 2.57.121.19 Oct 7 12:37:11 nextcloud sshd[23963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:37:13 nextcloud sshd[23963]: Failed password for r.r from 2.57.121.19 port 47782 ssh2 Oct 7 12:37:13 nextcloud sshd[23963]: Received disconnect from 2.57.121.19 port 47782:11: Bye Bye [preauth] Oct 7 12:37:13 nextcloud sshd[23963]: Disconnected from authenticating user r.r 2.57.121.19 port 47782 [preauth] Oct 7 12:53:35 nextcloud sshd[26770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:53:37 nextcloud sshd[26770]: Failed password for r.r from 2.57.121.19 port 38478 ssh2 Oct 7 12:53:37 nextcloud sshd[26770]: Received disconnect from 2.57.121.19 port 38478:11: Bye Bye [preauth] Oct 7 12:53:37 nextcloud sshd[26770]: Disconnected from authenticating user r.r 2.57.121.19 port 38478 [preauth] Oct 7 1........ ------------------------------	2020-10-11 17:54:25
2.57.121.19	attackbotsspam	Oct 10 13:42:24 pixelmemory sshd[3235053]: Failed password for root from 2.57.121.19 port 57924 ssh2 Oct 10 13:44:08 pixelmemory sshd[3252791]: Invalid user abc1234 from 2.57.121.19 port 51694 Oct 10 13:44:08 pixelmemory sshd[3252791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 Oct 10 13:44:08 pixelmemory sshd[3252791]: Invalid user abc1234 from 2.57.121.19 port 51694 Oct 10 13:44:10 pixelmemory sshd[3252791]: Failed password for invalid user abc1234 from 2.57.121.19 port 51694 ssh2 ...	2020-10-11 04:45:09
2.57.121.19	attackbots	Oct 10 08:18:16 firewall sshd[19785]: Failed password for root from 2.57.121.19 port 33660 ssh2 Oct 10 08:21:57 firewall sshd[19834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=root Oct 10 08:21:59 firewall sshd[19834]: Failed password for root from 2.57.121.19 port 40284 ssh2 ...	2020-10-10 20:44:24
2.57.121.19	attackspam	Lines containing failures of 2.57.121.19 Oct 7 12:37:11 nextcloud sshd[23963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:37:13 nextcloud sshd[23963]: Failed password for r.r from 2.57.121.19 port 47782 ssh2 Oct 7 12:37:13 nextcloud sshd[23963]: Received disconnect from 2.57.121.19 port 47782:11: Bye Bye [preauth] Oct 7 12:37:13 nextcloud sshd[23963]: Disconnected from authenticating user r.r 2.57.121.19 port 47782 [preauth] Oct 7 12:53:35 nextcloud sshd[26770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:53:37 nextcloud sshd[26770]: Failed password for r.r from 2.57.121.19 port 38478 ssh2 Oct 7 12:53:37 nextcloud sshd[26770]: Received disconnect from 2.57.121.19 port 38478:11: Bye Bye [preauth] Oct 7 12:53:37 nextcloud sshd[26770]: Disconnected from authenticating user r.r 2.57.121.19 port 38478 [preauth] Oct 7 1........ ------------------------------	2020-10-09 01:30:56
2.57.121.19	attackspambots	Lines containing failures of 2.57.121.19 Oct 7 12:37:11 nextcloud sshd[23963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:37:13 nextcloud sshd[23963]: Failed password for r.r from 2.57.121.19 port 47782 ssh2 Oct 7 12:37:13 nextcloud sshd[23963]: Received disconnect from 2.57.121.19 port 47782:11: Bye Bye [preauth] Oct 7 12:37:13 nextcloud sshd[23963]: Disconnected from authenticating user r.r 2.57.121.19 port 47782 [preauth] Oct 7 12:53:35 nextcloud sshd[26770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:53:37 nextcloud sshd[26770]: Failed password for r.r from 2.57.121.19 port 38478 ssh2 Oct 7 12:53:37 nextcloud sshd[26770]: Received disconnect from 2.57.121.19 port 38478:11: Bye Bye [preauth] Oct 7 12:53:37 nextcloud sshd[26770]: Disconnected from authenticating user r.r 2.57.121.19 port 38478 [preauth] Oct 7 1........ ------------------------------	2020-10-08 17:27:23
2.57.121.112	attack	Port scanning [4 denied]	2020-09-09 01:22:45
2.57.121.112	attack	Port scanning [4 denied]	2020-09-08 16:49:23
2.57.121.203	attackbots	Unauthorized connection attempt detected from IP address 2.57.121.203 to port 23	2020-07-22 22:08:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.57.121.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1040
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.57.121.254.			IN	A

;; AUTHORITY SECTION:
.			153	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 23:43:36 CST 2022
;; MSG SIZE  rcvd: 105

Host info

254.121.57.2.in-addr.arpa domain name pointer host254.teeatop.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
254.121.57.2.in-addr.arpa	name = host254.teeatop.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
121.128.135.74	attack	(imapd) Failed IMAP login from 121.128.135.74 (KR/South Korea/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: May 26 03:54:43 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 7 secs): user=, method=PLAIN, rip=121.128.135.74, lip=5.63.12.44, TLS: Connection closed, session=	2020-05-26 11:16:39
49.233.75.234	attackspambots	May 26 02:36:20 vps687878 sshd\[4790\]: Invalid user christ from 49.233.75.234 port 41078 May 26 02:36:20 vps687878 sshd\[4790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.75.234 May 26 02:36:22 vps687878 sshd\[4790\]: Failed password for invalid user christ from 49.233.75.234 port 41078 ssh2 May 26 02:40:28 vps687878 sshd\[5236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.75.234 user=root May 26 02:40:30 vps687878 sshd\[5236\]: Failed password for root from 49.233.75.234 port 60616 ssh2 ...	2020-05-26 11:00:13
42.101.44.158	attack	May 26 03:24:35 ajax sshd[19460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.101.44.158 May 26 03:24:37 ajax sshd[19460]: Failed password for invalid user andres from 42.101.44.158 port 59819 ssh2	2020-05-26 11:05:55
66.96.228.34	attackspam	May 26 03:13:26 legacy sshd[2285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.34 May 26 03:13:28 legacy sshd[2285]: Failed password for invalid user mae from 66.96.228.34 port 40990 ssh2 May 26 03:17:33 legacy sshd[2452]: Failed password for root from 66.96.228.34 port 47348 ssh2 ...	2020-05-26 11:05:38
51.91.120.67	attackbots	May 25 19:53:52 NPSTNNYC01T sshd[28874]: Failed password for root from 51.91.120.67 port 43004 ssh2 May 25 19:57:32 NPSTNNYC01T sshd[29168]: Failed password for root from 51.91.120.67 port 49708 ssh2 ...	2020-05-26 11:08:07
138.197.128.12	attackspambots	xmlrpc attack	2020-05-26 11:09:59
68.183.31.167	attackbotsspam	68.183.31.167 - - [26/May/2020:04:29:05 +0200] "GET /wp-login.php HTTP/1.1" 200 5865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 68.183.31.167 - - [26/May/2020:04:29:06 +0200] "POST /wp-login.php HTTP/1.1" 200 6116 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 68.183.31.167 - - [26/May/2020:04:29:07 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-26 11:03:18
177.137.96.15	attackbots	2020-05-26T01:07:27.773897ns386461 sshd\[15421\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.137.96.15 user=root 2020-05-26T01:07:29.650349ns386461 sshd\[15421\]: Failed password for root from 177.137.96.15 port 52072 ssh2 2020-05-26T01:25:00.032099ns386461 sshd\[31907\]: Invalid user brigitte from 177.137.96.15 port 52188 2020-05-26T01:25:00.036814ns386461 sshd\[31907\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.137.96.15 2020-05-26T01:25:01.802502ns386461 sshd\[31907\]: Failed password for invalid user brigitte from 177.137.96.15 port 52188 ssh2 ...	2020-05-26 11:04:16
103.129.64.247	attackspambots	DATE:2020-05-26 01:24:44, IP:103.129.64.247, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-05-26 11:17:46
134.209.250.9	attackspambots	$f2bV_matches	2020-05-26 10:57:31
80.82.64.146	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 73 - port: 5999 proto: TCP cat: Misc Attack	2020-05-26 11:28:44
190.79.90.208	attack	1590449110 - 05/26/2020 01:25:10 Host: 190.79.90.208/190.79.90.208 Port: 445 TCP Blocked	2020-05-26 10:56:18
210.212.29.215	attackbots	May 26 02:26:43 sip sshd[409236]: Failed password for root from 210.212.29.215 port 56608 ssh2 May 26 02:28:15 sip sshd[409246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.212.29.215 user=root May 26 02:28:18 sip sshd[409246]: Failed password for root from 210.212.29.215 port 48692 ssh2 ...	2020-05-26 11:13:43
54.38.177.98	attackspam	May 26 02:25:56 scw-6657dc sshd[13109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.177.98 May 26 02:25:56 scw-6657dc sshd[13109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.177.98 May 26 02:25:57 scw-6657dc sshd[13109]: Failed password for invalid user dev from 54.38.177.98 port 34798 ssh2 ...	2020-05-26 10:58:27
37.152.182.18	attackbotsspam	May 26 02:59:59 PorscheCustomer sshd[8261]: Failed password for root from 37.152.182.18 port 20418 ssh2 May 26 03:03:33 PorscheCustomer sshd[8337]: Failed password for root from 37.152.182.18 port 19483 ssh2 ...	2020-05-26 11:29:31

Recently Reported IPs

153.37.53.114	54.202.12.81	201.143.184.33	163.53.247.98
197.49.146.45	158.46.147.181	88.3.223.83	187.162.123.63
124.121.20.188	115.62.6.98	182.184.121.67	50.34.168.55
138.59.189.114	52.28.165.62	93.177.117.106	150.138.117.116
173.254.28.231	87.117.189.239	103.110.58.137	154.126.186.11