69.94.136.242 - IPInfo

Basic Info

City: Sacramento

Region: California

Country: United States

Internet Service Provider: Lanset America Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Jan 20 15:04:50 grey postfix/smtpd\[6592\]: NOQUEUE: reject: RCPT from gaping.kwyali.com\[69.94.136.242\]: 554 5.7.1 Service unavailable\; Client host \[69.94.136.242\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.136.242\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-21 05:14:56

Type

Details

Datetime

attackspambots

Jan 20 15:04:50 grey postfix/smtpd\[6592\]: NOQUEUE: reject: RCPT from gaping.kwyali.com\[69.94.136.242\]: 554 5.7.1 Service unavailable\; Client host \[69.94.136.242\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.136.242\]\; from=\ to=\ proto=ESMTP helo=\
...

2020-01-21 05:14:56

Comments on same subnet:

IP	Type	Details	Datetime
69.94.136.172	attack	Jan 29 05:52:51 exim[27499]: [1\51] 1iwfLM-00079X-JS H=suppose.dlitmtk.com (suppose.baarro.com) [69.94.136.172] F= rejected after DATA: This message scored 101.2 spam points.	2020-01-29 15:25:59
69.94.136.168	attackbotsspam	Jan 25 05:52:25 grey postfix/smtpd\[7345\]: NOQUEUE: reject: RCPT from cast.kwyali.com\[69.94.136.168\]: 554 5.7.1 Service unavailable\; Client host \[69.94.136.168\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.136.168\]\; from=\ to=\ proto=ESMTP helo=\Jan 25 05:52:25 grey postfix/smtpd\[7685\]: NOQUEUE: reject: RCPT from cast.kwyali.com\[69.94.136.168\]: 554 5.7.1 Service unavailable\; Client host \[69.94.136.168\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.136.168\]\; from=\ to=\ proto=ESMTP helo=\Jan 25 05:52:25 grey postfix/smtpd\[1984\]: NOQUEUE: reject: RCPT from cast.kwyali.com\[69.94.136.168\]: 554 5.7.1 Service unavailable\; Client host \[69.94.136.168\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.136.168\]\; from=\ ...	2020-01-25 16:12:40
69.94.136.238	attack	mail-spam	2020-01-16 16:16:52
69.94.136.229	attackspam	Jan 15 14:09:10 smtp postfix/smtpd[60176]: NOQUEUE: reject: RCPT from best.kwyali.com[69.94.136.229]: 554 5.7.1 Service unavailable; Client host [69.94.136.229] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-01-15 21:30:29
69.94.136.227	attackbotsspam	Jan 13 14:09:12 smtp postfix/smtpd[64782]: NOQUEUE: reject: RCPT from scaffold.kwyali.com[69.94.136.227]: 554 5.7.1 Service unavailable; Client host [69.94.136.227] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-01-13 21:58:11
69.94.136.225	attackbotsspam	Jan 11 16:35:51 grey postfix/smtpd\[20890\]: NOQUEUE: reject: RCPT from guarded.kwyali.com\[69.94.136.225\]: 554 5.7.1 Service unavailable\; Client host \[69.94.136.225\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.136.225\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-11 23:51:49
69.94.136.182	attackspambots	Dec 31 07:09:46 exim[12768]: [1\53] 1imAiu-0003Jw-EK H=pump.kwyali.com (pump.baarro.com) [69.94.136.182] F= rejected after DATA: This message scored 102.3 spam points.	2019-12-31 18:02:53
69.94.136.177	attackspambots	2019-12-26T07:20:55.289456stark.klein-stark.info postfix/smtpd\[14372\]: NOQUEUE: reject: RCPT from shade.kwyali.com\[69.94.136.177\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-26 21:04:08
69.94.136.246	attack	Dec 24 16:33:03 grey postfix/smtpd\[3068\]: NOQUEUE: reject: RCPT from approve.kwyali.com\[69.94.136.246\]: 554 5.7.1 Service unavailable\; Client host \[69.94.136.246\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.136.246\]\; from=\ to=\ proto=ESMTP helo=\Dec 24 16:33:03 grey postfix/smtpd\[23898\]: NOQUEUE: reject: RCPT from approve.kwyali.com\[69.94.136.246\]: 554 5.7.1 Service unavailable\; Client host \[69.94.136.246\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.136.246\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-25 02:35:05
69.94.136.241	attackbotsspam	Dec 19 16:40:16 grey postfix/smtpd\[5613\]: NOQUEUE: reject: RCPT from chubby.kwyali.com\[69.94.136.241\]: 554 5.7.1 Service unavailable\; Client host \[69.94.136.241\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.136.241\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-20 02:34:07
69.94.136.232	attackbots	Dec 18 16:34:32 grey postfix/smtpd\[7059\]: NOQUEUE: reject: RCPT from prenatal.kwyali.com\[69.94.136.232\]: 554 5.7.1 Service unavailable\; Client host \[69.94.136.232\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.136.232\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-19 02:25:47
69.94.136.162	attackbotsspam	Dec 11 16:10:32 exim[2313]: [1\53] 1if3dA-0000bJ-TG H=baptismal.kwyali.com (baptismal.baarro.com) [69.94.136.162] F= rejected after DATA: This message scored 102.7 spam points.	2019-12-11 23:39:15
69.94.136.160	attackspambots	Dec 9 16:03:16 exim[17963]: [1\51] 1ieKZ8-0004fj-0d H=sacristy.kwyali.com (sacristy.baarro.com) [69.94.136.160] F= rejected after DATA: This message scored 101.1 spam points.	2019-12-10 00:29:26
69.94.136.172	attack	2019-12-05T22:11:22.405247stark.klein-stark.info postfix/smtpd\[8895\]: NOQUEUE: reject: RCPT from suppose.kwyali.com\[69.94.136.172\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-06 06:39:33
69.94.136.219	attackbots	Dec 5 16:03:37 exim[9115]: [1\51] 1icsfE-0002N1-Nf H=fact.kwyali.com (fact.baarro.com) [69.94.136.219] F= rejected after DATA: This message scored 101.2 spam points.	2019-12-05 23:27:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 69.94.136.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62849
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;69.94.136.242.			IN	A

;; AUTHORITY SECTION:
.			279	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012001 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 21 05:14:53 CST 2020
;; MSG SIZE  rcvd: 117

Host info

242.136.94.69.in-addr.arpa domain name pointer gaping.kwyali.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.136.94.69.in-addr.arpa	name = gaping.kwyali.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
59.127.99.163	attack	Telnet Server BruteForce Attack	2020-02-20 08:39:08
95.182.120.47	attack	Triggered by Fail2Ban at Ares web server	2020-02-20 08:43:16
177.223.106.188	attack	Automatic report - Banned IP Access	2020-02-20 08:11:58
36.92.100.109	attackbots	Feb 20 00:57:51 vpn01 sshd[29265]: Failed password for proxy from 36.92.100.109 port 46184 ssh2 Feb 20 01:06:49 vpn01 sshd[29423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.92.100.109 ...	2020-02-20 08:34:26
2001:470:dfa9:10ff:0:242:ac11:5	attack	Port scan	2020-02-20 08:22:41
2001:470:dfa9:10ff:0:242:ac11:34	attackspambots	Port scan	2020-02-20 08:25:32
18.216.215.24	attack	Feb 20 00:52:50 MK-Soft-VM4 sshd[13388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.216.215.24 Feb 20 00:52:52 MK-Soft-VM4 sshd[13388]: Failed password for invalid user ling from 18.216.215.24 port 47148 ssh2 ...	2020-02-20 08:37:39
190.85.145.162	attack	Feb 19 23:58:20 localhost sshd\[5696\]: Invalid user web from 190.85.145.162 port 40118 Feb 19 23:58:20 localhost sshd\[5696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.145.162 Feb 19 23:58:22 localhost sshd\[5696\]: Failed password for invalid user web from 190.85.145.162 port 40118 ssh2	2020-02-20 08:38:47
2001:470:dfa9:10ff:0:242:ac11:2a	attackspam	Port scan	2020-02-20 08:44:08
111.230.241.245	attackspam	Feb 19 20:34:13 ws12vmsma01 sshd[32837]: Invalid user alex from 111.230.241.245 Feb 19 20:34:16 ws12vmsma01 sshd[32837]: Failed password for invalid user alex from 111.230.241.245 port 42316 ssh2 Feb 19 20:37:38 ws12vmsma01 sshd[33378]: Invalid user rr from 111.230.241.245 ...	2020-02-20 08:10:50
196.37.111.171	attack	Portscan or hack attempt detected by psad/fwsnort	2020-02-20 08:12:41
190.146.168.61	attack	SSH brutforce	2020-02-20 08:30:28
222.186.42.136	attackbots	Feb 20 01:42:03 ucs sshd\[10416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root Feb 20 01:42:05 ucs sshd\[10410\]: error: PAM: User not known to the underlying authentication module for root from 222.186.42.136 Feb 20 01:42:06 ucs sshd\[10417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root ...	2020-02-20 08:45:53
213.37.102.226	attackbots	Feb 19 12:40:05 hpm sshd\[4695\]: Invalid user libuuid from 213.37.102.226 Feb 19 12:40:05 hpm sshd\[4695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.37.102.226.dyn.user.ono.com Feb 19 12:40:07 hpm sshd\[4695\]: Failed password for invalid user libuuid from 213.37.102.226 port 39123 ssh2 Feb 19 12:43:24 hpm sshd\[4978\]: Invalid user administrator from 213.37.102.226 Feb 19 12:43:24 hpm sshd\[4978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.37.102.226.dyn.user.ono.com	2020-02-20 08:12:55
218.92.0.204	attack	2020-02-19T19:06:26.741303xentho-1 sshd[112816]: Failed password for root from 218.92.0.204 port 12674 ssh2 2020-02-19T19:06:24.287829xentho-1 sshd[112816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.204 user=root 2020-02-19T19:06:26.741303xentho-1 sshd[112816]: Failed password for root from 218.92.0.204 port 12674 ssh2 2020-02-19T19:06:29.561624xentho-1 sshd[112816]: Failed password for root from 218.92.0.204 port 12674 ssh2 2020-02-19T19:06:24.287829xentho-1 sshd[112816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.204 user=root 2020-02-19T19:06:26.741303xentho-1 sshd[112816]: Failed password for root from 218.92.0.204 port 12674 ssh2 2020-02-19T19:06:29.561624xentho-1 sshd[112816]: Failed password for root from 218.92.0.204 port 12674 ssh2 2020-02-19T19:06:32.514776xentho-1 sshd[112816]: Failed password for root from 218.92.0.204 port 12674 ssh2 2020-02-19T19:07:44.121863xent ...	2020-02-20 08:26:46

Recently Reported IPs

78.142.237.127	146.187.133.95	210.21.118.91	105.52.89.112
65.80.47.48	216.173.116.202	189.176.71.199	45.24.163.151
39.218.113.45	60.13.77.193	153.212.191.65	189.147.72.210
13.236.250.182	112.65.181.98	178.192.137.233	221.232.139.155
39.41.41.252	36.236.230.19	60.12.200.6	171.111.90.129