2.57.121.254 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.57.121.104	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-14 09:04:46
2.57.121.19	attack	Lines containing failures of 2.57.121.19 Oct 7 12:37:11 nextcloud sshd[23963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:37:13 nextcloud sshd[23963]: Failed password for r.r from 2.57.121.19 port 47782 ssh2 Oct 7 12:37:13 nextcloud sshd[23963]: Received disconnect from 2.57.121.19 port 47782:11: Bye Bye [preauth] Oct 7 12:37:13 nextcloud sshd[23963]: Disconnected from authenticating user r.r 2.57.121.19 port 47782 [preauth] Oct 7 12:53:35 nextcloud sshd[26770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:53:37 nextcloud sshd[26770]: Failed password for r.r from 2.57.121.19 port 38478 ssh2 Oct 7 12:53:37 nextcloud sshd[26770]: Received disconnect from 2.57.121.19 port 38478:11: Bye Bye [preauth] Oct 7 12:53:37 nextcloud sshd[26770]: Disconnected from authenticating user r.r 2.57.121.19 port 38478 [preauth] Oct 7 1........ ------------------------------	2020-10-12 02:05:01
2.57.121.19	attack	Lines containing failures of 2.57.121.19 Oct 7 12:37:11 nextcloud sshd[23963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:37:13 nextcloud sshd[23963]: Failed password for r.r from 2.57.121.19 port 47782 ssh2 Oct 7 12:37:13 nextcloud sshd[23963]: Received disconnect from 2.57.121.19 port 47782:11: Bye Bye [preauth] Oct 7 12:37:13 nextcloud sshd[23963]: Disconnected from authenticating user r.r 2.57.121.19 port 47782 [preauth] Oct 7 12:53:35 nextcloud sshd[26770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:53:37 nextcloud sshd[26770]: Failed password for r.r from 2.57.121.19 port 38478 ssh2 Oct 7 12:53:37 nextcloud sshd[26770]: Received disconnect from 2.57.121.19 port 38478:11: Bye Bye [preauth] Oct 7 12:53:37 nextcloud sshd[26770]: Disconnected from authenticating user r.r 2.57.121.19 port 38478 [preauth] Oct 7 1........ ------------------------------	2020-10-11 17:54:25
2.57.121.19	attackbotsspam	Oct 10 13:42:24 pixelmemory sshd[3235053]: Failed password for root from 2.57.121.19 port 57924 ssh2 Oct 10 13:44:08 pixelmemory sshd[3252791]: Invalid user abc1234 from 2.57.121.19 port 51694 Oct 10 13:44:08 pixelmemory sshd[3252791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 Oct 10 13:44:08 pixelmemory sshd[3252791]: Invalid user abc1234 from 2.57.121.19 port 51694 Oct 10 13:44:10 pixelmemory sshd[3252791]: Failed password for invalid user abc1234 from 2.57.121.19 port 51694 ssh2 ...	2020-10-11 04:45:09
2.57.121.19	attackbots	Oct 10 08:18:16 firewall sshd[19785]: Failed password for root from 2.57.121.19 port 33660 ssh2 Oct 10 08:21:57 firewall sshd[19834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=root Oct 10 08:21:59 firewall sshd[19834]: Failed password for root from 2.57.121.19 port 40284 ssh2 ...	2020-10-10 20:44:24
2.57.121.19	attackspam	Lines containing failures of 2.57.121.19 Oct 7 12:37:11 nextcloud sshd[23963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:37:13 nextcloud sshd[23963]: Failed password for r.r from 2.57.121.19 port 47782 ssh2 Oct 7 12:37:13 nextcloud sshd[23963]: Received disconnect from 2.57.121.19 port 47782:11: Bye Bye [preauth] Oct 7 12:37:13 nextcloud sshd[23963]: Disconnected from authenticating user r.r 2.57.121.19 port 47782 [preauth] Oct 7 12:53:35 nextcloud sshd[26770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:53:37 nextcloud sshd[26770]: Failed password for r.r from 2.57.121.19 port 38478 ssh2 Oct 7 12:53:37 nextcloud sshd[26770]: Received disconnect from 2.57.121.19 port 38478:11: Bye Bye [preauth] Oct 7 12:53:37 nextcloud sshd[26770]: Disconnected from authenticating user r.r 2.57.121.19 port 38478 [preauth] Oct 7 1........ ------------------------------	2020-10-09 01:30:56
2.57.121.19	attackspambots	Lines containing failures of 2.57.121.19 Oct 7 12:37:11 nextcloud sshd[23963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:37:13 nextcloud sshd[23963]: Failed password for r.r from 2.57.121.19 port 47782 ssh2 Oct 7 12:37:13 nextcloud sshd[23963]: Received disconnect from 2.57.121.19 port 47782:11: Bye Bye [preauth] Oct 7 12:37:13 nextcloud sshd[23963]: Disconnected from authenticating user r.r 2.57.121.19 port 47782 [preauth] Oct 7 12:53:35 nextcloud sshd[26770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.121.19 user=r.r Oct 7 12:53:37 nextcloud sshd[26770]: Failed password for r.r from 2.57.121.19 port 38478 ssh2 Oct 7 12:53:37 nextcloud sshd[26770]: Received disconnect from 2.57.121.19 port 38478:11: Bye Bye [preauth] Oct 7 12:53:37 nextcloud sshd[26770]: Disconnected from authenticating user r.r 2.57.121.19 port 38478 [preauth] Oct 7 1........ ------------------------------	2020-10-08 17:27:23
2.57.121.112	attack	Port scanning [4 denied]	2020-09-09 01:22:45
2.57.121.112	attack	Port scanning [4 denied]	2020-09-08 16:49:23
2.57.121.203	attackbots	Unauthorized connection attempt detected from IP address 2.57.121.203 to port 23	2020-07-22 22:08:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.57.121.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1040
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.57.121.254.			IN	A

;; AUTHORITY SECTION:
.			153	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 23:43:36 CST 2022
;; MSG SIZE  rcvd: 105

Host info

254.121.57.2.in-addr.arpa domain name pointer host254.teeatop.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
254.121.57.2.in-addr.arpa	name = host254.teeatop.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.173	attackbotsspam	" "	2019-07-09 21:13:26
50.62.177.225	attack	xmlrpc attack	2019-07-09 20:30:02
218.92.0.141	attackbots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.141 user=root Failed password for root from 218.92.0.141 port 50356 ssh2 Failed password for root from 218.92.0.141 port 50356 ssh2 Failed password for root from 218.92.0.141 port 50356 ssh2 Failed password for root from 218.92.0.141 port 50356 ssh2	2019-07-09 21:14:26
170.210.214.50	attackspambots	Jul 7 07:52:07 josie sshd[32518]: Invalid user postgres from 170.210.214.50 Jul 7 07:52:07 josie sshd[32518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.210.214.50 Jul 7 07:52:09 josie sshd[32518]: Failed password for invalid user postgres from 170.210.214.50 port 42134 ssh2 Jul 7 07:52:09 josie sshd[32519]: Received disconnect from 170.210.214.50: 11: Bye Bye Jul 7 07:56:02 josie sshd[2020]: Invalid user tom from 170.210.214.50 Jul 7 07:56:02 josie sshd[2020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.210.214.50 Jul 7 07:56:04 josie sshd[2020]: Failed password for invalid user tom from 170.210.214.50 port 48994 ssh2 Jul 7 07:56:04 josie sshd[2023]: Received disconnect from 170.210.214.50: 11: Bye Bye Jul 7 07:58:23 josie sshd[3395]: Invalid user simon from 170.210.214.50 Jul 7 07:58:23 josie sshd[3395]: pam_unix(sshd:auth): authentication failure; logname= uid........ -------------------------------	2019-07-09 20:37:44
162.243.140.136	attack	Honeypot hit: misc	2019-07-09 20:23:08
217.182.103.201	attackbotsspam	Automatic report generated by Wazuh	2019-07-09 20:21:32
93.152.202.148	attackbots	Automatic report - Web App Attack	2019-07-09 21:07:43
182.74.233.106	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 12:36:11,831 INFO [shellcode_manager] (182.74.233.106) no match, writing hexdump (6f86c384cca3860108da225b054cf7b0 :2388614) - MS17010 (EternalBlue)	2019-07-09 20:24:11
50.197.210.138	attackspambots	proto=tcp . spt=41292 . dpt=25 . (listed on Github Combined on 3 lists ) (249)	2019-07-09 20:47:11
159.89.177.151	attackspambots	Jul 9 10:31:48 dev0-dcde-rnet sshd[16822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.177.151 Jul 9 10:31:50 dev0-dcde-rnet sshd[16822]: Failed password for invalid user user8 from 159.89.177.151 port 52754 ssh2 Jul 9 10:31:53 dev0-dcde-rnet sshd[16824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.177.151	2019-07-09 21:02:04
195.54.43.27	attackbots	[portscan] Port scan	2019-07-09 20:26:17
162.144.102.140	attackspam	TCP src-port=35738 dst-port=25 dnsbl-sorbs abuseat-org barracuda (143)	2019-07-09 20:58:33
61.148.194.162	attackbotsspam	Jul 9 03:12:11 sshgateway sshd\[24292\]: Invalid user redmine from 61.148.194.162 Jul 9 03:12:11 sshgateway sshd\[24292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.148.194.162 Jul 9 03:12:13 sshgateway sshd\[24292\]: Failed password for invalid user redmine from 61.148.194.162 port 51160 ssh2	2019-07-09 20:40:37
218.92.0.135	attackbotsspam	SSH Brute Force, server-1 sshd[26192]: Failed password for root from 218.92.0.135 port 63270 ssh2	2019-07-09 21:09:29
147.135.209.40	attackspambots	Jul 9 06:01:36 srv206 sshd[23183]: Invalid user aj from 147.135.209.40 Jul 9 06:01:36 srv206 sshd[23183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=tribespot.net Jul 9 06:01:36 srv206 sshd[23183]: Invalid user aj from 147.135.209.40 Jul 9 06:01:38 srv206 sshd[23183]: Failed password for invalid user aj from 147.135.209.40 port 47816 ssh2 ...	2019-07-09 20:38:12

Recently Reported IPs

153.37.53.114	54.202.12.81	201.143.184.33	163.53.247.98
197.49.146.45	158.46.147.181	88.3.223.83	187.162.123.63
124.121.20.188	115.62.6.98	182.184.121.67	50.34.168.55
138.59.189.114	52.28.165.62	93.177.117.106	150.138.117.116
173.254.28.231	87.117.189.239	103.110.58.137	154.126.186.11