2.57.254.249 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Austria

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.57.254.235	attack	5x Failed Password	2020-04-30 13:40:21
2.57.254.26	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541256fb4bd6eb08 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: US \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:54:15
2.57.254.210	attackspam	Dec 2 05:23:01 gw1 sshd[21977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.254.210 Dec 2 05:23:04 gw1 sshd[21977]: Failed password for invalid user hack from 2.57.254.210 port 41336 ssh2 ...	2019-12-02 08:46:23
2.57.254.27	attack	Sep 21 19:35:53 webhost01 sshd[16936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.254.27 Sep 21 19:35:55 webhost01 sshd[16936]: Failed password for invalid user weenie from 2.57.254.27 port 46778 ssh2 ...	2019-09-21 20:53:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.57.254.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50111
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.57.254.249.			IN	A

;; AUTHORITY SECTION:
.			272	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 12:49:31 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 249.254.57.2.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 249.254.57.2.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
206.253.167.205	attackspambots	Jun 14 20:08:13 ns392434 sshd[20724]: Invalid user suporte from 206.253.167.205 port 44012 Jun 14 20:08:13 ns392434 sshd[20724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.253.167.205 Jun 14 20:08:13 ns392434 sshd[20724]: Invalid user suporte from 206.253.167.205 port 44012 Jun 14 20:08:15 ns392434 sshd[20724]: Failed password for invalid user suporte from 206.253.167.205 port 44012 ssh2 Jun 14 20:15:04 ns392434 sshd[20949]: Invalid user qi from 206.253.167.205 port 56048 Jun 14 20:15:04 ns392434 sshd[20949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.253.167.205 Jun 14 20:15:04 ns392434 sshd[20949]: Invalid user qi from 206.253.167.205 port 56048 Jun 14 20:15:06 ns392434 sshd[20949]: Failed password for invalid user qi from 206.253.167.205 port 56048 ssh2 Jun 14 20:17:23 ns392434 sshd[21077]: Invalid user hours from 206.253.167.205 port 43378	2020-06-15 04:47:07
88.218.16.43	attackbotsspam	Jun 14 22:38:27 h2779839 sshd[31921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.218.16.43 user=root Jun 14 22:38:29 h2779839 sshd[31921]: Failed password for root from 88.218.16.43 port 59668 ssh2 Jun 14 22:38:35 h2779839 sshd[31923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.218.16.43 user=root Jun 14 22:38:37 h2779839 sshd[31923]: Failed password for root from 88.218.16.43 port 37160 ssh2 Jun 14 22:38:42 h2779839 sshd[31925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.218.16.43 user=root Jun 14 22:38:44 h2779839 sshd[31925]: Failed password for root from 88.218.16.43 port 42904 ssh2 Jun 14 22:38:50 h2779839 sshd[31929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.218.16.43 user=root Jun 14 22:38:51 h2779839 sshd[31929]: Failed password for root from 88.218.16.43 port 48780 ssh2 Jun 14 22:38 ...	2020-06-15 05:13:03
59.108.143.83	attackbots	2020-06-14T18:46:09.487696shield sshd\[2032\]: Invalid user password123 from 59.108.143.83 port 59218 2020-06-14T18:46:09.490484shield sshd\[2032\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.108.143.83 2020-06-14T18:46:12.021389shield sshd\[2032\]: Failed password for invalid user password123 from 59.108.143.83 port 59218 ssh2 2020-06-14T18:48:43.439641shield sshd\[2579\]: Invalid user rhodeisland from 59.108.143.83 port 42466 2020-06-14T18:48:43.443484shield sshd\[2579\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.108.143.83	2020-06-15 05:06:43
174.135.156.170	attackspambots	Jun 14 23:03:35 vpn01 sshd[19396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.135.156.170 Jun 14 23:03:37 vpn01 sshd[19396]: Failed password for invalid user praful from 174.135.156.170 port 47998 ssh2 ...	2020-06-15 05:15:14
37.0.85.119	attack	DATE:2020-06-14 14:42:23, IP:37.0.85.119, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-06-15 05:07:04
157.230.244.147	attackspambots	'Fail2Ban'	2020-06-15 04:53:43
139.198.5.79	attackspam	2020-06-14T18:22:20.389084abusebot.cloudsearch.cf sshd[27854]: Invalid user wallace from 139.198.5.79 port 33748 2020-06-14T18:22:20.394765abusebot.cloudsearch.cf sshd[27854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.5.79 2020-06-14T18:22:20.389084abusebot.cloudsearch.cf sshd[27854]: Invalid user wallace from 139.198.5.79 port 33748 2020-06-14T18:22:23.081606abusebot.cloudsearch.cf sshd[27854]: Failed password for invalid user wallace from 139.198.5.79 port 33748 ssh2 2020-06-14T18:25:28.726874abusebot.cloudsearch.cf sshd[28085]: Invalid user cym from 139.198.5.79 port 55542 2020-06-14T18:25:28.732257abusebot.cloudsearch.cf sshd[28085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.5.79 2020-06-14T18:25:28.726874abusebot.cloudsearch.cf sshd[28085]: Invalid user cym from 139.198.5.79 port 55542 2020-06-14T18:25:30.560987abusebot.cloudsearch.cf sshd[28085]: Failed password for invalid ...	2020-06-15 04:44:52
187.163.123.51	attackspambots	Automatic report - Port Scan Attack	2020-06-15 05:03:39
195.54.160.155	attackspam	TCP (SYN) 195.54.160.155:49700 -> port 32433, len 44	2020-06-15 04:52:46
45.152.199.114	attackspam	Unauthorized access detected from black listed ip!	2020-06-15 04:55:57
212.100.154.74	attackbots	Jun 14 12:41:53 system,error,critical: login failure for user admin from 212.100.154.74 via telnet Jun 14 12:41:55 system,error,critical: login failure for user admin from 212.100.154.74 via telnet Jun 14 12:41:56 system,error,critical: login failure for user 666666 from 212.100.154.74 via telnet Jun 14 12:42:00 system,error,critical: login failure for user root from 212.100.154.74 via telnet Jun 14 12:42:01 system,error,critical: login failure for user root from 212.100.154.74 via telnet Jun 14 12:42:03 system,error,critical: login failure for user root from 212.100.154.74 via telnet Jun 14 12:42:06 system,error,critical: login failure for user admin from 212.100.154.74 via telnet Jun 14 12:42:08 system,error,critical: login failure for user root from 212.100.154.74 via telnet Jun 14 12:42:09 system,error,critical: login failure for user root from 212.100.154.74 via telnet Jun 14 12:42:12 system,error,critical: login failure for user root from 212.100.154.74 via telnet	2020-06-15 05:16:44
128.199.239.52	attack	k+ssh-bruteforce	2020-06-15 04:44:03
119.29.173.247	attackbots	Jun 14 15:49:16 piServer sshd[20184]: Failed password for root from 119.29.173.247 port 56536 ssh2 Jun 14 15:52:55 piServer sshd[20484]: Failed password for root from 119.29.173.247 port 36152 ssh2 Jun 14 15:56:44 piServer sshd[20770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.173.247 ...	2020-06-15 04:51:17
45.152.199.27	attack	Unauthorized access detected from black listed ip!	2020-06-15 04:53:59
207.157.190.116	attack	X-Atlas-Received: from 10.248.233.148 by atlas212.free.mail.gq1.yahoo.com with http; Sun, 14 Jun 2020 09:14:01 +0000 Return-Path: Received: from 207.157.190.116 (EHLO DOEXCHCAS2.ad.venturausd.org) by atlas212.free.mail.gq1.yahoo.com with SMTPs; Sun, 14 Jun 2020 09:14:01 +0000 X-Originating-Ip: [207.157.190.116] Received-SPF: pass (domain of venturausd.org designates 207.157.190.116 as permitted sender) Authentication-Results: atlas212.free.mail.gq1.yahoo.com; spf=pass smtp.mailfrom=venturausd.org; dmarc=unknown	2020-06-15 04:57:44

Recently Reported IPs

135.244.43.178	1.10.226.74	1.0.209.233	1.14.108.182
1.116.10.150	1.13.171.131	1.1.202.130	1.0.225.189
1.116.141.185	1.10.215.252	1.10.252.214	1.14.30.235
1.1.247.167	1.156.18.156	1.1.245.65	1.160.240.142
1.160.24.14	1.161.105.34	1.161.131.126	1.160.204.177