24.6.167.242 - IPInfo

Basic Info

City: Santa Maria

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 24.6.167.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41691
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;24.6.167.242.			IN	A

;; AUTHORITY SECTION:
.			171	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023052301 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 24 13:17:04 CST 2023
;; MSG SIZE  rcvd: 105

Host info

242.167.6.24.in-addr.arpa domain name pointer c-24-6-167-242.hsd1.ca.comcast.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.167.6.24.in-addr.arpa	name = c-24-6-167-242.hsd1.ca.comcast.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
161.35.104.35	attackbots	2020-06-23T15:25:31.516711lavrinenko.info sshd[5949]: Failed password for invalid user test from 161.35.104.35 port 48894 ssh2 2020-06-23T15:29:37.171704lavrinenko.info sshd[6108]: Invalid user ch from 161.35.104.35 port 49518 2020-06-23T15:29:37.181259lavrinenko.info sshd[6108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.104.35 2020-06-23T15:29:37.171704lavrinenko.info sshd[6108]: Invalid user ch from 161.35.104.35 port 49518 2020-06-23T15:29:38.826942lavrinenko.info sshd[6108]: Failed password for invalid user ch from 161.35.104.35 port 49518 ssh2 ...	2020-06-23 20:58:17
79.137.34.248	attack	Jun 23 14:44:12 buvik sshd[7571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.34.248 Jun 23 14:44:14 buvik sshd[7571]: Failed password for invalid user hasan from 79.137.34.248 port 56388 ssh2 Jun 23 14:47:27 buvik sshd[8011]: Invalid user postgres from 79.137.34.248 ...	2020-06-23 21:02:04
185.81.157.60	attackbots	WordPress attack, requested /wp-content/plugins/apikey/apikey.php?test=hello	2020-06-23 20:31:42
178.154.200.11	attack	[Tue Jun 23 19:08:42.487229 2020] [:error] [pid 5996:tid 140192810563328] [client 178.154.200.11:34450] [client 178.154.200.11] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XvHwyqumFxd0Crm1ySnouAAAAfA"] ...	2020-06-23 21:03:13
192.241.223.149	attack	2020-06-23T07:06:01.514798morrigan.ad5gb.com dovecot[844204]: imap-login: Disconnected (no auth attempts in 10 secs): user=<>, rip=192.241.223.149, lip=51.81.135.67, session= 2020-06-23T07:09:11.590157morrigan.ad5gb.com dovecot[844204]: imap-login: Disconnected (no auth attempts in 10 secs): user=<>, rip=192.241.223.149, lip=51.81.135.66, session=	2020-06-23 20:37:03
92.118.161.45	attackspam	port scan and connect, tcp 80 (http)	2020-06-23 20:37:55
159.65.245.182	attackbots	prod11 ...	2020-06-23 20:40:13
81.4.108.78	attackspam	Jun 23 14:38:10 lnxmail61 sshd[30978]: Failed password for root from 81.4.108.78 port 56076 ssh2 Jun 23 14:38:10 lnxmail61 sshd[30978]: Failed password for root from 81.4.108.78 port 56076 ssh2 Jun 23 14:41:31 lnxmail61 sshd[31601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.4.108.78	2020-06-23 20:42:44
2.229.250.69	attackspambots	Unauthorized connection attempt detected from IP address 2.229.250.69 to port 26	2020-06-23 21:09:17
193.122.162.184	attackbotsspam	Jun 23 14:55:00 localhost sshd\[22980\]: Invalid user nfs from 193.122.162.184 Jun 23 14:55:00 localhost sshd\[22980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.122.162.184 Jun 23 14:55:02 localhost sshd\[22980\]: Failed password for invalid user nfs from 193.122.162.184 port 48612 ssh2 Jun 23 14:58:02 localhost sshd\[23174\]: Invalid user aboss from 193.122.162.184 Jun 23 14:58:02 localhost sshd\[23174\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.122.162.184 ...	2020-06-23 21:10:12
185.143.75.153	attack	Jun 23 14:21:43 webserver postfix/smtpd\[25637\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 14:22:28 webserver postfix/smtpd\[25815\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 14:23:14 webserver postfix/smtpd\[25815\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 14:23:59 webserver postfix/smtpd\[25637\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 23 14:24:43 webserver postfix/smtpd\[25498\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-23 20:32:24
41.168.8.197	attack	Jun 23 01:07:53 server6 sshd[19354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.168.8.197 user=r.r Jun 23 01:07:54 server6 sshd[19354]: Failed password for r.r from 41.168.8.197 port 41328 ssh2 Jun 23 01:07:54 server6 sshd[19354]: Received disconnect from 41.168.8.197: 11: Bye Bye [preauth] Jun 23 01:21:34 server6 sshd[29470]: Failed password for invalid user sharon from 41.168.8.197 port 50742 ssh2 Jun 23 01:21:34 server6 sshd[29470]: Received disconnect from 41.168.8.197: 11: Bye Bye [preauth] Jun 23 01:25:32 server6 sshd[5965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.168.8.197 user=r.r Jun 23 01:25:34 server6 sshd[5965]: Failed password for r.r from 41.168.8.197 port 56600 ssh2 Jun 23 01:25:34 server6 sshd[5965]: Received disconnect from 41.168.8.197: 11: Bye Bye [preauth] Jun 23 01:29:28 server6 sshd[12067]: pam_unix(sshd:auth): authentication failure; logname= uid=0........ -------------------------------	2020-06-23 20:49:18
1.241.249.194	attackbotsspam	Lines containing failures of 1.241.249.194 Jun 23 03:11:43 kmh-wsh-001-nbg03 sshd[28196]: Invalid user ghostname from 1.241.249.194 port 36482 Jun 23 03:11:43 kmh-wsh-001-nbg03 sshd[28196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.241.249.194 Jun 23 03:11:45 kmh-wsh-001-nbg03 sshd[28196]: Failed password for invalid user ghostname from 1.241.249.194 port 36482 ssh2 Jun 23 03:11:46 kmh-wsh-001-nbg03 sshd[28196]: Received disconnect from 1.241.249.194 port 36482:11: Bye Bye [preauth] Jun 23 03:11:46 kmh-wsh-001-nbg03 sshd[28196]: Disconnected from invalid user ghostname 1.241.249.194 port 36482 [preauth] Jun 23 03:14:59 kmh-wsh-001-nbg03 sshd[28436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.241.249.194 user=r.r Jun 23 03:15:01 kmh-wsh-001-nbg03 sshd[28436]: Failed password for r.r from 1.241.249.194 port 37178 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip	2020-06-23 21:07:40
77.81.104.105	attackbotsspam	Jun 23 14:16:07 sso sshd[27956]: Failed password for root from 77.81.104.105 port 42012 ssh2 Jun 23 14:46:01 sso sshd[31396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.104.105 ...	2020-06-23 20:46:56
181.47.3.39	attack	Jun 23 17:41:16 gw1 sshd[14754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.47.3.39 Jun 23 17:41:18 gw1 sshd[14754]: Failed password for invalid user zzk from 181.47.3.39 port 46686 ssh2 ...	2020-06-23 20:50:52

Recently Reported IPs

180.242.24.215	119.3.242.116	218.155.200.141	73.55.43.186
33.34.250.191	145.116.208.72	34.97.13.103	99.88.82.163
58.24.233.90	209.85.249.199	245.40.67.61	212.211.225.118
170.84.201.207	144.102.235.141	180.2.7.97	48.76.22.245
119.44.187.158	156.166.178.205	210.126.178.27	8.91.185.135