24.4.5.246 - IPInfo

Basic Info

City: Santa Clara

Region: California

Country: United States

Internet Service Provider: Comcast Cable Communications LLC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SSH break in attempt ...	2020-08-03 20:04:12
attackbotsspam	Invalid user ubnt from 24.4.5.246 port 36810	2019-09-22 14:36:25

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 24.4.5.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14791
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;24.4.5.246.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090300 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 03 18:19:18 CST 2019
;; MSG SIZE  rcvd: 114

Host info

246.5.4.24.in-addr.arpa domain name pointer c-24-4-5-246.hsd1.ca.comcast.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
246.5.4.24.in-addr.arpa	name = c-24-4-5-246.hsd1.ca.comcast.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.8.170.15	attackbotsspam	Unauthorized connection attempt detected from IP address 190.8.170.15 to port 445	2019-12-22 17:36:05
112.215.172.154	attackbots	Host Scan	2019-12-22 17:42:44
111.231.144.219	attack	Dec 21 23:35:52 web9 sshd\[8620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.144.219 user=root Dec 21 23:35:55 web9 sshd\[8620\]: Failed password for root from 111.231.144.219 port 37532 ssh2 Dec 21 23:42:39 web9 sshd\[9480\]: Invalid user overbaugh from 111.231.144.219 Dec 21 23:42:39 web9 sshd\[9480\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.144.219 Dec 21 23:42:41 web9 sshd\[9480\]: Failed password for invalid user overbaugh from 111.231.144.219 port 35625 ssh2	2019-12-22 18:03:53
159.65.8.65	attackbotsspam	Dec 21 21:17:05 php1 sshd\[17391\]: Invalid user stacey from 159.65.8.65 Dec 21 21:17:05 php1 sshd\[17391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.8.65 Dec 21 21:17:07 php1 sshd\[17391\]: Failed password for invalid user stacey from 159.65.8.65 port 40028 ssh2 Dec 21 21:23:22 php1 sshd\[18140\]: Invalid user Tarmo from 159.65.8.65 Dec 21 21:23:22 php1 sshd\[18140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.8.65	2019-12-22 17:52:14
163.172.50.34	attackspam	2019-12-22T07:19:20.492479abusebot-5.cloudsearch.cf sshd[21686]: Invalid user mysql from 163.172.50.34 port 34526 2019-12-22T07:19:20.504061abusebot-5.cloudsearch.cf sshd[21686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.50.34 2019-12-22T07:19:20.492479abusebot-5.cloudsearch.cf sshd[21686]: Invalid user mysql from 163.172.50.34 port 34526 2019-12-22T07:19:22.097960abusebot-5.cloudsearch.cf sshd[21686]: Failed password for invalid user mysql from 163.172.50.34 port 34526 ssh2 2019-12-22T07:25:21.442378abusebot-5.cloudsearch.cf sshd[22502]: Invalid user jane from 163.172.50.34 port 39590 2019-12-22T07:25:21.450908abusebot-5.cloudsearch.cf sshd[22502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.50.34 2019-12-22T07:25:21.442378abusebot-5.cloudsearch.cf sshd[22502]: Invalid user jane from 163.172.50.34 port 39590 2019-12-22T07:25:23.270562abusebot-5.cloudsearch.cf sshd[22502]: Failed p ...	2019-12-22 17:33:33
200.150.176.171	attack	Dec 16 16:42:32 ns4 sshd[9615]: Invalid user vh from 200.150.176.171 Dec 16 16:42:32 ns4 sshd[9615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200-150-176-171.static-corp.ajato.com.br Dec 16 16:42:34 ns4 sshd[9615]: Failed password for invalid user vh from 200.150.176.171 port 37214 ssh2 Dec 16 16:55:14 ns4 sshd[12296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200-150-176-171.static-corp.ajato.com.br user=r.r Dec 16 16:55:16 ns4 sshd[12296]: Failed password for r.r from 200.150.176.171 port 51622 ssh2 Dec 16 17:04:03 ns4 sshd[14839]: Invalid user xw from 200.150.176.171 Dec 16 17:04:03 ns4 sshd[14839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200-150-176-171.static-corp.ajato.com.br Dec 16 17:04:05 ns4 sshd[14839]: Failed password for invalid user xw from 200.150.176.171 port 53766 ssh2 ........ ----------------------------------------------- https://www.blocklist.de	2019-12-22 17:39:24
167.99.70.96	attackspambots	firewall-block, port(s): 6379/tcp	2019-12-22 18:10:40
35.240.253.241	attack	Dec 22 10:33:44 localhost sshd\[17156\]: Invalid user norby from 35.240.253.241 port 34629 Dec 22 10:33:44 localhost sshd\[17156\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.240.253.241 Dec 22 10:33:46 localhost sshd\[17156\]: Failed password for invalid user norby from 35.240.253.241 port 34629 ssh2	2019-12-22 17:47:16
104.248.181.156	attackbotsspam	[ssh] SSH attack	2019-12-22 17:37:59
198.245.49.37	attackbotsspam	k+ssh-bruteforce	2019-12-22 17:54:12
91.157.35.157	attackbotsspam	Dec 22 09:19:33 srv206 sshd[19404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91-157-35-157.elisa-laajakaista.fi user=root Dec 22 09:19:36 srv206 sshd[19404]: Failed password for root from 91.157.35.157 port 59318 ssh2 ...	2019-12-22 17:35:29
112.85.42.181	attackspambots	Dec 22 05:00:22 TORMINT sshd\[19806\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.181 user=root Dec 22 05:00:25 TORMINT sshd\[19806\]: Failed password for root from 112.85.42.181 port 43585 ssh2 Dec 22 05:00:51 TORMINT sshd\[19819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.181 user=root ...	2019-12-22 18:04:58
43.239.176.113	attackspambots	Dec 22 13:32:13 areeb-Workstation sshd[30538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.239.176.113 Dec 22 13:32:14 areeb-Workstation sshd[30538]: Failed password for invalid user web from 43.239.176.113 port 15867 ssh2 ...	2019-12-22 17:38:39
218.86.123.242	attack	SSH Brute Force	2019-12-22 17:45:46
162.244.93.91	attackbots	162.244.93.91 (US/United States/-), 10 distributed pop3d attacks on account [info@constructionguillette.com] in the last 3600 secs	2019-12-22 18:06:08

Recently Reported IPs

55.24.248.248	50.42.238.52	20.66.118.83	218.19.199.172
188.57.252.183	225.146.155.106	31.157.167.16	118.86.216.199
142.177.10.238	123.18.7.1	25.111.67.178	139.124.92.19
148.207.81.11	75.183.40.120	110.212.220.203	216.193.218.49
166.183.87.228	21.90.67.225	232.74.104.125	90.56.111.2