67.214.20.10 - IPInfo

Basic Info

City: Ephrata

Region: Pennsylvania

Country: United States

Internet Service Provider: Windstream Communications LLC

Hostname: unknown

Organization: Windstream Communications LLC

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Sep 2 09:15:43 OPSO sshd\[31414\]: Invalid user hoandy from 67.214.20.10 port 39702 Sep 2 09:15:43 OPSO sshd\[31414\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.214.20.10 Sep 2 09:15:44 OPSO sshd\[31414\]: Failed password for invalid user hoandy from 67.214.20.10 port 39702 ssh2 Sep 2 09:24:26 OPSO sshd\[32630\]: Invalid user newuser from 67.214.20.10 port 56006 Sep 2 09:24:26 OPSO sshd\[32630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.214.20.10	2019-09-02 15:26:36
attackspambots	Aug 30 12:04:49 icinga sshd[11644]: Failed password for root from 67.214.20.10 port 41694 ssh2 ...	2019-08-30 23:49:22
attack	Aug 11 06:05:05 debian sshd\[12837\]: Invalid user src from 67.214.20.10 port 46584 Aug 11 06:05:05 debian sshd\[12837\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.214.20.10 Aug 11 06:05:06 debian sshd\[12837\]: Failed password for invalid user src from 67.214.20.10 port 46584 ssh2 ...	2019-08-11 18:39:36
attack	Aug 7 10:06:25 MK-Soft-Root1 sshd\[18207\]: Invalid user webserver from 67.214.20.10 port 47802 Aug 7 10:06:25 MK-Soft-Root1 sshd\[18207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.214.20.10 Aug 7 10:06:27 MK-Soft-Root1 sshd\[18207\]: Failed password for invalid user webserver from 67.214.20.10 port 47802 ssh2 ...	2019-08-07 16:18:08
attack	Jul 26 19:13:21 mail sshd\[31549\]: Invalid user lilian from 67.214.20.10 port 53008 Jul 26 19:13:21 mail sshd\[31549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.214.20.10 ...	2019-07-27 02:41:58

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 67.214.20.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21172
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;67.214.20.10.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072601 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 27 02:41:46 CST 2019
;; MSG SIZE  rcvd: 116

Host info

10.20.214.67.in-addr.arpa domain name pointer h10.20.214.67.dynamic.ip.windstream.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
10.20.214.67.in-addr.arpa	name = h10.20.214.67.dynamic.ip.windstream.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.124.238.120	attackbots	Brute force SMTP login attempts.	2019-06-30 22:55:03
191.53.254.152	attack	Jun 30 09:26:17 web1 postfix/smtpd[24453]: warning: unknown[191.53.254.152]: SASL PLAIN authentication failed: authentication failure ...	2019-06-30 23:08:52
188.166.228.244	attackbots	Jun 30 15:27:00 MK-Soft-Root1 sshd\[9022\]: Invalid user music from 188.166.228.244 port 51519 Jun 30 15:27:00 MK-Soft-Root1 sshd\[9022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.228.244 Jun 30 15:27:02 MK-Soft-Root1 sshd\[9022\]: Failed password for invalid user music from 188.166.228.244 port 51519 ssh2 ...	2019-06-30 22:45:59
121.152.165.213	attack	2019-06-30T20:26:58.891471enmeeting.mahidol.ac.th sshd\[6196\]: Invalid user admin from 121.152.165.213 port 2033 2019-06-30T20:26:58.907575enmeeting.mahidol.ac.th sshd\[6196\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.152.165.213 2019-06-30T20:27:00.686365enmeeting.mahidol.ac.th sshd\[6196\]: Failed password for invalid user admin from 121.152.165.213 port 2033 ssh2 ...	2019-06-30 22:48:11
87.98.228.144	attackspam	Sniffing for wp-login	2019-06-30 23:23:34
106.12.102.114	attack	Jun 30 20:22:44 itv-usvr-02 sshd[21638]: Invalid user stpi from 106.12.102.114 port 51072 Jun 30 20:22:44 itv-usvr-02 sshd[21638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.102.114 Jun 30 20:22:44 itv-usvr-02 sshd[21638]: Invalid user stpi from 106.12.102.114 port 51072 Jun 30 20:22:46 itv-usvr-02 sshd[21638]: Failed password for invalid user stpi from 106.12.102.114 port 51072 ssh2 Jun 30 20:25:53 itv-usvr-02 sshd[21658]: Invalid user jason from 106.12.102.114 port 46434	2019-06-30 23:29:55
149.255.26.250	attack	DATE:2019-06-30 15:24:26, IP:149.255.26.250, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc-bis)	2019-06-30 23:03:33
185.176.27.102	attackspam	30.06.2019 13:26:13 Connection to port 16090 blocked by firewall	2019-06-30 23:15:54
176.130.149.145	attack	Jun 30 15:27:10 srv03 sshd\[25915\]: Invalid user adm from 176.130.149.145 port 54936 Jun 30 15:27:10 srv03 sshd\[25915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.130.149.145 Jun 30 15:27:12 srv03 sshd\[25915\]: Failed password for invalid user adm from 176.130.149.145 port 54936 ssh2	2019-06-30 22:40:10
216.75.62.8	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-06-30 23:15:15
103.57.210.12	attack	Attempted SSH login	2019-06-30 23:06:03
65.60.184.96	attackspam	SSH Brute-Forcing (ownc)	2019-06-30 23:33:24
178.173.115.1	attackspambots	Detected by ModSecurity. Request URI: /wp-login.php	2019-06-30 22:32:11
41.65.64.36	attackbots	2019-06-30T15:48:14.944314test01.cajus.name sshd\[7372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.65.64.36 user=www 2019-06-30T15:48:16.898144test01.cajus.name sshd\[7372\]: Failed password for www from 41.65.64.36 port 53118 ssh2 2019-06-30T15:49:50.611575test01.cajus.name sshd\[15015\]: Invalid user elastic from 41.65.64.36 port 41696	2019-06-30 23:20:07
103.92.28.162	attack	Attempts to probe for or exploit a Drupal 7.67 site on url: /wp-login.php. Reported by the module https://www.drupal.org/project/abuseipdb.	2019-06-30 22:46:52

Recently Reported IPs

106.12.99.239	97.13.104.19	75.99.150.10	13.127.252.253
254.103.143.94	67.88.85.125	142.26.50.238	42.228.10.252
182.232.23.131	227.227.249.132	85.202.10.42	14.162.2.159
252.135.15.13	182.232.22.89	177.153.227.151	101.121.234.55
165.153.115.10	73.165.123.42	114.26.11.126	210.214.162.251