67.242.10.20 - IPInfo

Basic Info

City: Fayetteville

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 67.242.10.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46351
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;67.242.10.20.			IN	A

;; AUTHORITY SECTION:
.			517	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051502 1800 900 604800 86400

;; Query time: 144 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 16 07:08:16 CST 2020
;; MSG SIZE  rcvd: 116

Host info

20.10.242.67.in-addr.arpa domain name pointer cpe-67-242-10-20.twcny.res.rr.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.10.242.67.in-addr.arpa	name = cpe-67-242-10-20.twcny.res.rr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
156.213.216.21	attack	Telnetd brute force attack detected by fail2ban	2019-07-10 11:50:17
109.66.235.1	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 19:51:49,042 INFO [shellcode_manager] (109.66.235.1) no match, writing hexdump (d3cef9b34f9a65e7a4e853042b85e25c :2112205) - MS17010 (EternalBlue)	2019-07-10 12:07:20
94.241.165.224	attackbots	SMTP-sasl brute force ...	2019-07-10 11:38:30
35.242.149.172	attackbots	Mountain View, United States left http://wheretodonatemoney.com/wp-admin/admin-post.php?yp_remote_get=3 and was blocked by firewall for Yellow Pencil Visual Theme Customizer <= 7.1.9 Arbitrary Options Update in query string: yp_remote_get=3 at https://wheretodonatemoney.com/wp-admin/admin-post.php?yp_remote_get=3 7/7/2019 12:17:20 PM (2 days 19 hours ago) IP: 35.242.149.172 Hostname: 172.149.242.35.bc.googleusercontent.com Human/Bot: Human Browser: Chrome version 0.0 running on Win7 Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.143 Safari/537.36	2019-07-10 12:14:04
134.175.84.31	attackspambots	Jul 8 07:33:17 shared03 sshd[26285]: Invalid user fcweb from 134.175.84.31 Jul 8 07:33:17 shared03 sshd[26285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.84.31 Jul 8 07:33:19 shared03 sshd[26285]: Failed password for invalid user fcweb from 134.175.84.31 port 47236 ssh2 Jul 8 07:33:19 shared03 sshd[26285]: Received disconnect from 134.175.84.31 port 47236:11: Bye Bye [preauth] Jul 8 07:33:19 shared03 sshd[26285]: Disconnected from 134.175.84.31 port 47236 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.175.84.31	2019-07-10 11:36:18
124.243.198.187	attackbotsspam	2019-07-10T03:17:17.561301abusebot-5.cloudsearch.cf sshd\[12541\]: Invalid user kevin from 124.243.198.187 port 33830	2019-07-10 11:50:44
139.59.56.121	attackspam	Jul 10 05:20:22 XXX sshd[54715]: Invalid user thaiset from 139.59.56.121 port 53474	2019-07-10 12:06:14
92.118.160.37	attackbotsspam	Port scan: Attack repeated for 24 hours	2019-07-10 11:51:28
103.75.56.93	attackspam	SMB Server BruteForce Attack	2019-07-10 11:49:42
120.132.61.80	attack	Jul 8 01:07:43 sanyalnet-cloud-vps4 sshd[32022]: Connection from 120.132.61.80 port 5978 on 64.137.160.124 port 23 Jul 8 01:07:47 sanyalnet-cloud-vps4 sshd[32022]: Invalid user helpdesk from 120.132.61.80 Jul 8 01:07:47 sanyalnet-cloud-vps4 sshd[32022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 Jul 8 01:07:49 sanyalnet-cloud-vps4 sshd[32022]: Failed password for invalid user helpdesk from 120.132.61.80 port 5978 ssh2 Jul 8 01:07:49 sanyalnet-cloud-vps4 sshd[32022]: Received disconnect from 120.132.61.80: 11: Bye Bye [preauth] Jul 8 01:09:27 sanyalnet-cloud-vps4 sshd[32025]: Connection from 120.132.61.80 port 18676 on 64.137.160.124 port 23 Jul 8 01:09:32 sanyalnet-cloud-vps4 sshd[32025]: Invalid user admin2 from 120.132.61.80 Jul 8 01:09:32 sanyalnet-cloud-vps4 sshd[32025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.61.80 ........ ----------------------------------------------- https://	2019-07-10 11:41:41
41.33.116.130	attackspam	2019-07-09T19:28:18.512616stt-1.[munged] kernel: [6746520.107273] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:a8:41:08:00 SRC=41.33.116.130 DST=[mungedIP1] LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=18652 DF PROTO=TCP SPT=49615 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 2019-07-09T19:28:21.522955stt-1.[munged] kernel: [6746523.117618] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:a8:41:08:00 SRC=41.33.116.130 DST=[mungedIP1] LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=18845 DF PROTO=TCP SPT=49615 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 2019-07-09T19:28:27.529060stt-1.[munged] kernel: [6746529.123688] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:97:36:58:84:78:ac:57:a8:41:08:00 SRC=41.33.116.130 DST=[mungedIP1] LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=19393 DF PROTO=TCP SPT=49615 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0	2019-07-10 11:26:40
158.181.247.132	attackbotsspam	Jul 9 23:27:07 marvibiene sshd[23339]: Invalid user ganesh from 158.181.247.132 port 58006 Jul 9 23:27:07 marvibiene sshd[23339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.181.247.132 Jul 9 23:27:07 marvibiene sshd[23339]: Invalid user ganesh from 158.181.247.132 port 58006 Jul 9 23:27:10 marvibiene sshd[23339]: Failed password for invalid user ganesh from 158.181.247.132 port 58006 ssh2 ...	2019-07-10 11:51:55
118.169.47.8	attackbotsspam	Telnet Server BruteForce Attack	2019-07-10 11:35:49
95.213.177.122	attack	Jul 10 02:08:13 TCP Attack: SRC=95.213.177.122 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=240 PROTO=TCP SPT=44492 DPT=65531 WINDOW=1024 RES=0x00 SYN URGP=0	2019-07-10 12:13:45
188.166.12.156	attack	Jul 10 03:33:28 sshgateway sshd\[31169\]: Invalid user test from 188.166.12.156 Jul 10 03:33:28 sshgateway sshd\[31169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.12.156 Jul 10 03:33:31 sshgateway sshd\[31169\]: Failed password for invalid user test from 188.166.12.156 port 45145 ssh2	2019-07-10 11:53:32

Recently Reported IPs

216.201.137.226	84.210.44.186	191.244.132.96	186.156.34.125
114.189.146.44	46.166.160.67	174.113.105.135	77.8.149.253
32.9.155.129	174.56.82.72	181.52.208.112	81.237.238.45
216.113.168.87	201.206.211.247	1.55.204.57	47.179.20.218
184.67.53.233	181.46.76.236	73.51.29.64	42.112.203.0