24.6.167.242 - IPInfo

Basic Info

City: Santa Maria

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 24.6.167.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41691
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;24.6.167.242.			IN	A

;; AUTHORITY SECTION:
.			171	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023052301 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 24 13:17:04 CST 2023
;; MSG SIZE  rcvd: 105

Host info

242.167.6.24.in-addr.arpa domain name pointer c-24-6-167-242.hsd1.ca.comcast.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.167.6.24.in-addr.arpa	name = c-24-6-167-242.hsd1.ca.comcast.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.177.172.168	attackbotsspam	Aug 21 10:13:11 NPSTNNYC01T sshd[15194]: Failed password for root from 61.177.172.168 port 58409 ssh2 Aug 21 10:13:23 NPSTNNYC01T sshd[15194]: error: maximum authentication attempts exceeded for root from 61.177.172.168 port 58409 ssh2 [preauth] Aug 21 10:13:29 NPSTNNYC01T sshd[15231]: Failed password for root from 61.177.172.168 port 18592 ssh2 ...	2020-08-21 22:16:31
144.34.192.200	attack	Aug 21 15:44:09 abendstille sshd\[19573\]: Invalid user gaurav from 144.34.192.200 Aug 21 15:44:09 abendstille sshd\[19573\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.192.200 Aug 21 15:44:11 abendstille sshd\[19573\]: Failed password for invalid user gaurav from 144.34.192.200 port 37790 ssh2 Aug 21 15:53:01 abendstille sshd\[28327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.192.200 user=root Aug 21 15:53:03 abendstille sshd\[28327\]: Failed password for root from 144.34.192.200 port 47414 ssh2 ...	2020-08-21 22:09:59
35.192.57.37	attack	2020-08-21T16:16:41.890248galaxy.wi.uni-potsdam.de sshd[27105]: Invalid user ubb from 35.192.57.37 port 55016 2020-08-21T16:16:41.892154galaxy.wi.uni-potsdam.de sshd[27105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.57.192.35.bc.googleusercontent.com 2020-08-21T16:16:41.890248galaxy.wi.uni-potsdam.de sshd[27105]: Invalid user ubb from 35.192.57.37 port 55016 2020-08-21T16:16:43.820936galaxy.wi.uni-potsdam.de sshd[27105]: Failed password for invalid user ubb from 35.192.57.37 port 55016 ssh2 2020-08-21T16:19:24.050001galaxy.wi.uni-potsdam.de sshd[27431]: Invalid user desenv from 35.192.57.37 port 39282 2020-08-21T16:19:24.051974galaxy.wi.uni-potsdam.de sshd[27431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.57.192.35.bc.googleusercontent.com 2020-08-21T16:19:24.050001galaxy.wi.uni-potsdam.de sshd[27431]: Invalid user desenv from 35.192.57.37 port 39282 2020-08-21T16:19:26.357241galaxy.wi.uni ...	2020-08-21 22:25:17
59.188.2.19	attackbotsspam	2020-08-21T21:04:01.919773hostname sshd[5879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.188.2.19 2020-08-21T21:04:01.898081hostname sshd[5879]: Invalid user support from 59.188.2.19 port 40107 2020-08-21T21:04:04.170607hostname sshd[5879]: Failed password for invalid user support from 59.188.2.19 port 40107 ssh2 ...	2020-08-21 22:44:24
193.95.24.114	attack	2020-08-21T15:01:39.596181snf-827550 sshd[19296]: Invalid user zero from 193.95.24.114 port 41485 2020-08-21T15:01:41.261381snf-827550 sshd[19296]: Failed password for invalid user zero from 193.95.24.114 port 41485 ssh2 2020-08-21T15:06:12.686282snf-827550 sshd[20932]: Invalid user dev from 193.95.24.114 port 49031 ...	2020-08-21 22:15:59
119.146.150.134	attack	Aug 21 16:31:13 vpn01 sshd[25843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.150.134 Aug 21 16:31:16 vpn01 sshd[25843]: Failed password for invalid user git_user from 119.146.150.134 port 40935 ssh2 ...	2020-08-21 22:46:44
185.220.101.215	attackspambots	detected by Fail2Ban	2020-08-21 22:43:03
151.84.135.188	attack	Fail2Ban Ban Triggered	2020-08-21 22:33:39
207.246.82.116	attack	Unauthorized connection attempt detected, IP banned.	2020-08-21 22:11:19
189.57.121.10	attackbotsspam	srvr1: (mod_security) mod_security (id:942100) triggered by 189.57.121.10 (BR/-/189-57-121-10.customer.tdatabrasil.net.br): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:06:10 [error] 482759#0: 840604 [client 189.57.121.10] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801157017.481997"] [ref ""], client: 189.57.121.10, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%27%29%29%29+OR+++%28%28%285901%3D5901 HTTP/1.1" [redacted]	2020-08-21 22:14:47
92.87.123.126	attackspambots	srvr1: (mod_security) mod_security (id:942100) triggered by 92.87.123.126 (RO/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:05:53 [error] 482759#0: 840598 [client 92.87.123.126] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801155334.954754"] [ref ""], client: 92.87.123.126, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%27%29%29+OR+++%28%282192%3D2192 HTTP/1.1" [redacted]	2020-08-21 22:32:17
123.5.53.159	attack	Aug 21 04:13:36 risk sshd[23667]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [123.5.53.159] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 21 04:13:36 risk sshd[23667]: Invalid user syed from 123.5.53.159 Aug 21 04:13:36 risk sshd[23667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.5.53.159 Aug 21 04:13:38 risk sshd[23667]: Failed password for invalid user syed from 123.5.53.159 port 59172 ssh2 Aug 21 04:19:20 risk sshd[23875]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [123.5.53.159] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 21 04:19:20 risk sshd[23875]: Invalid user jules from 123.5.53.159 Aug 21 04:19:20 risk sshd[23875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.5.53.159 Aug 21 04:19:21 risk sshd[23875]: Failed password for invalid user jules from 123.5.53.159 port 3076 ssh2 Aug 21 04:22:23 risk sshd[23937]: reveeclipse mapping checking getaddri........ -------------------------------	2020-08-21 22:28:57
162.158.62.120	attackbots	Automated report (2020-08-21T20:05:58+08:00). Faked user agent detected.	2020-08-21 22:31:23
45.95.168.96	attackbots	2020-08-21 15:48:37 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=office@nopcommerce.it\) 2020-08-21 15:50:53 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=office@opso.it\) 2020-08-21 15:51:02 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=office@nophost.com\) 2020-08-21 15:54:51 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=office@nopcommerce.it\) 2020-08-21 15:56:47 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=office@nophost.com\) 2020-08-21 15:56:47 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=office@opso.it\)	2020-08-21 22:03:44
64.225.73.186	attackbotsspam	64.225.73.186 - - [21/Aug/2020:14:04:29 +0100] "POST /wp-login.php HTTP/1.1" 200 1905 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 64.225.73.186 - - [21/Aug/2020:14:04:31 +0100] "POST /wp-login.php HTTP/1.1" 200 1890 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 64.225.73.186 - - [21/Aug/2020:14:04:35 +0100] "POST /wp-login.php HTTP/1.1" 200 1887 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-21 22:34:45

Recently Reported IPs

180.242.24.215	119.3.242.116	218.155.200.141	73.55.43.186
33.34.250.191	145.116.208.72	34.97.13.103	99.88.82.163
58.24.233.90	209.85.249.199	245.40.67.61	212.211.225.118
170.84.201.207	144.102.235.141	180.2.7.97	48.76.22.245
119.44.187.158	156.166.178.205	210.126.178.27	8.91.185.135