2.57.254.249 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Austria

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.57.254.235	attack	5x Failed Password	2020-04-30 13:40:21
2.57.254.26	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541256fb4bd6eb08 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: US \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:54:15
2.57.254.210	attackspam	Dec 2 05:23:01 gw1 sshd[21977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.254.210 Dec 2 05:23:04 gw1 sshd[21977]: Failed password for invalid user hack from 2.57.254.210 port 41336 ssh2 ...	2019-12-02 08:46:23
2.57.254.27	attack	Sep 21 19:35:53 webhost01 sshd[16936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.254.27 Sep 21 19:35:55 webhost01 sshd[16936]: Failed password for invalid user weenie from 2.57.254.27 port 46778 ssh2 ...	2019-09-21 20:53:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.57.254.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50111
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.57.254.249.			IN	A

;; AUTHORITY SECTION:
.			272	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 12:49:31 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 249.254.57.2.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 249.254.57.2.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.75.67.69	attackspam	Dec 28 08:55:53 ks10 sshd[8865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.67.69 Dec 28 08:55:55 ks10 sshd[8865]: Failed password for invalid user pos from 51.75.67.69 port 58966 ssh2 ...	2019-12-28 19:29:53
45.136.108.116	attackspambots	Fail2Ban Ban Triggered	2019-12-28 19:46:56
167.99.217.194	attack	Dec 28 12:07:34 ArkNodeAT sshd\[18516\]: Invalid user admin from 167.99.217.194 Dec 28 12:07:34 ArkNodeAT sshd\[18516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.217.194 Dec 28 12:07:36 ArkNodeAT sshd\[18516\]: Failed password for invalid user admin from 167.99.217.194 port 50502 ssh2	2019-12-28 19:44:00
182.253.236.21	attackbotsspam	Unauthorized connection attempt detected from IP address 182.253.236.21 to port 25	2019-12-28 19:46:39
80.211.43.48	attack	2019-12-28T06:55:45.951572shield sshd\[7522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.43.48 user=root 2019-12-28T06:55:48.249475shield sshd\[7522\]: Failed password for root from 80.211.43.48 port 35490 ssh2 2019-12-28T06:55:49.223507shield sshd\[7558\]: Invalid user admin from 80.211.43.48 port 38752 2019-12-28T06:55:49.227433shield sshd\[7558\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.43.48 2019-12-28T06:55:50.738079shield sshd\[7558\]: Failed password for invalid user admin from 80.211.43.48 port 38752 ssh2	2019-12-28 19:17:08
88.26.210.83	attackbots	19/12/28@01:23:21: FAIL: Alarm-Network address from=88.26.210.83 19/12/28@01:23:21: FAIL: Alarm-Network address from=88.26.210.83 ...	2019-12-28 19:22:37
193.254.248.172	attackspambots	[portscan] Port scan	2019-12-28 19:14:29
18.216.95.66	attackspam	18.216.95.66 - - \[28/Dec/2019:11:57:02 +0100\] "POST /wp-login.php HTTP/1.0" 200 7556 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 18.216.95.66 - - \[28/Dec/2019:11:57:05 +0100\] "POST /wp-login.php HTTP/1.0" 200 7381 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 18.216.95.66 - - \[28/Dec/2019:11:57:07 +0100\] "POST /wp-login.php HTTP/1.0" 200 7376 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-12-28 19:49:42
103.206.223.198	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-28 19:40:10
103.75.149.106	attack	Dec 28 03:57:55 dallas01 sshd[22699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.75.149.106 Dec 28 03:57:58 dallas01 sshd[22699]: Failed password for invalid user guest from 103.75.149.106 port 37224 ssh2 Dec 28 04:02:54 dallas01 sshd[26873]: Failed password for root from 103.75.149.106 port 59046 ssh2	2019-12-28 19:27:03
37.187.105.117	attackbots	Lines containing failures of 37.187.105.117 Dec 26 05:42:57 mailserver sshd[26565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.105.117 user=r.r Dec 26 05:42:59 mailserver sshd[26565]: Failed password for r.r from 37.187.105.117 port 46990 ssh2 Dec 26 05:42:59 mailserver sshd[26565]: Received disconnect from 37.187.105.117 port 46990:11: Bye Bye [preauth] Dec 26 05:42:59 mailserver sshd[26565]: Disconnected from authenticating user r.r 37.187.105.117 port 46990 [preauth] Dec 26 05:49:53 mailserver sshd[27273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.105.117 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.187.105.117	2019-12-28 19:29:29
120.224.212.6	attackbots	Dec 23 22:28:09 v22019058497090703 sshd[31239]: Failed password for r.r from 120.224.212.6 port 37130 ssh2 Dec 23 22:53:45 v22019058497090703 sshd[1289]: Failed password for r.r from 120.224.212.6 port 36776 ssh2 Dec 23 22:57:53 v22019058497090703 sshd[1687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.224.212.6 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=120.224.212.6	2019-12-28 19:33:20
49.234.30.113	attackbotsspam	Dec 28 08:05:14 firewall sshd[16931]: Failed password for invalid user guest from 49.234.30.113 port 49130 ssh2 Dec 28 08:09:12 firewall sshd[17024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.30.113 user=root Dec 28 08:09:14 firewall sshd[17024]: Failed password for root from 49.234.30.113 port 33647 ssh2 ...	2019-12-28 19:29:14
217.218.21.242	attack	$f2bV_matches	2019-12-28 19:32:44
51.254.123.127	attack	Dec 28 06:22:54 thevastnessof sshd[32397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.123.127 ...	2019-12-28 19:40:56

Recently Reported IPs

135.244.43.178	1.10.226.74	1.0.209.233	1.14.108.182
1.116.10.150	1.13.171.131	1.1.202.130	1.0.225.189
1.116.141.185	1.10.215.252	1.10.252.214	1.14.30.235
1.1.247.167	1.156.18.156	1.1.245.65	1.160.240.142
1.160.24.14	1.161.105.34	1.161.131.126	1.160.204.177