69.94.137.89 - IPInfo

Basic Info

City: Sacramento

Region: California

Country: United States

Internet Service Provider: Lanset America Corporation

Hostname: unknown

Organization: Lanset America Corporation

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Spam	2019-08-21 00:02:31

Comments on same subnet:

IP	Type	Details	Datetime
69.94.137.130	attackspambots	Mar 13 23:04:59 mail.srvfarm.net postfix/smtpd[2659502]: NOQUEUE: reject: RCPT from unknown[69.94.137.130]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 23:04:59 mail.srvfarm.net postfix/smtpd[2662202]: NOQUEUE: reject: RCPT from unknown[69.94.137.130]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 23:04:59 mail.srvfarm.net postfix/smtpd[2662306]: NOQUEUE: reject: RCPT from unknown[69.94.137.130]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 23:04:59 mail.srvfarm.net postfix/smtpd[2660366]: NOQUEUE: reject: RCPT from unknown[69.94.137.130]	2020-03-14 09:43:39
69.94.137.128	attack	Mar 12 22:04:47 mail.srvfarm.net postfix/smtpd[1996207]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 12 22:05:14 mail.srvfarm.net postfix/smtpd[2008330]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 12 22:05:31 mail.srvfarm.net postfix/smtpd[2008330]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 12 22:08:19 mail.srvfarm.net postfix/smtpd[1994003]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8	2020-03-13 05:27:57
69.94.137.143	attack	Mar 4 23:38:00 mail.srvfarm.net postfix/smtpd[9032]: NOQUEUE: reject: RCPT from unknown[69.94.137.143]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 23:38:00 mail.srvfarm.net postfix/smtpd[14441]: NOQUEUE: reject: RCPT from unknown[69.94.137.143]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 23:38:04 mail.srvfarm.net postfix/smtpd[14428]: NOQUEUE: reject: RCPT from unknown[69.94.137.143]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 23:38:04 mail.srvfarm.net postfix/smtpd[15377]: NOQUEUE: reject: RCPT from unknown[69.94.137.143]: 450 4.1.8	2020-03-05 09:15:27

Type

Details

Datetime

69.94.137.130

attackspambots

Mar 13 23:04:59 mail.srvfarm.net postfix/smtpd[2659502]: NOQUEUE: reject: RCPT from unknown[69.94.137.130]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar 13 23:04:59 mail.srvfarm.net postfix/smtpd[2662202]: NOQUEUE: reject: RCPT from unknown[69.94.137.130]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar 13 23:04:59 mail.srvfarm.net postfix/smtpd[2662306]: NOQUEUE: reject: RCPT from unknown[69.94.137.130]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar 13 23:04:59 mail.srvfarm.net postfix/smtpd[2660366]: NOQUEUE: reject: RCPT from unknown[69.94.137.130]

2020-03-14 09:43:39

69.94.137.128

attack

Mar 12 22:04:47 mail.srvfarm.net postfix/smtpd[1996207]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar 12 22:05:14 mail.srvfarm.net postfix/smtpd[2008330]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar 12 22:05:31 mail.srvfarm.net postfix/smtpd[2008330]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar 12 22:08:19 mail.srvfarm.net postfix/smtpd[1994003]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8

2020-03-13 05:27:57

69.94.137.143

attack

Mar  4 23:38:00 mail.srvfarm.net postfix/smtpd[9032]: NOQUEUE: reject: RCPT from unknown[69.94.137.143]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  4 23:38:00 mail.srvfarm.net postfix/smtpd[14441]: NOQUEUE: reject: RCPT from unknown[69.94.137.143]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  4 23:38:04 mail.srvfarm.net postfix/smtpd[14428]: NOQUEUE: reject: RCPT from unknown[69.94.137.143]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  4 23:38:04 mail.srvfarm.net postfix/smtpd[15377]: NOQUEUE: reject: RCPT from unknown[69.94.137.143]: 450 4.1.8

2020-03-05 09:15:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 69.94.137.89
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18896
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;69.94.137.89.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082000 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 21 00:02:13 CST 2019
;; MSG SIZE  rcvd: 116

Host info

89.137.94.69.in-addr.arpa domain name pointer 69-94-137-89.nca.lanset.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
89.137.94.69.in-addr.arpa	name = 69-94-137-89.nca.lanset.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.66.156.125	attack	Invalid user zimbra from 36.66.156.125 port 60126	2019-10-10 20:56:28
167.99.75.174	attackspambots	Oct 10 14:33:10 MK-Soft-VM5 sshd[26588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.75.174 Oct 10 14:33:12 MK-Soft-VM5 sshd[26588]: Failed password for invalid user ftp from 167.99.75.174 port 58498 ssh2 ...	2019-10-10 20:49:42
186.122.148.186	attack	Oct 10 13:59:03 ovpn sshd\[31592\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.148.186 user=root Oct 10 13:59:05 ovpn sshd\[31592\]: Failed password for root from 186.122.148.186 port 51414 ssh2 Oct 10 14:17:06 ovpn sshd\[2899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.148.186 user=root Oct 10 14:17:08 ovpn sshd\[2899\]: Failed password for root from 186.122.148.186 port 45914 ssh2 Oct 10 14:22:02 ovpn sshd\[3920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.148.186 user=root	2019-10-10 21:08:35
51.83.72.243	attackbotsspam	detected by Fail2Ban	2019-10-10 21:01:31
104.244.73.176	attackbotsspam	Oct 10 13:01:19 XXX sshd[19620]: Invalid user fake from 104.244.73.176 port 49506	2019-10-10 20:37:49
51.255.174.215	attackspam	Oct 10 14:29:47 vpn01 sshd[5899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.174.215 Oct 10 14:29:49 vpn01 sshd[5899]: Failed password for invalid user ftp_test from 51.255.174.215 port 44250 ssh2 ...	2019-10-10 20:41:22
51.254.205.6	attackspambots	Oct 10 14:42:31 MK-Soft-Root1 sshd[9419]: Failed password for root from 51.254.205.6 port 33622 ssh2 ...	2019-10-10 20:53:26
202.88.241.107	attackbotsspam	SSH brutforce	2019-10-10 20:22:41
124.128.97.146	attackbotsspam	Invalid user ftpuser from 124.128.97.146 port 4015	2019-10-10 20:32:12
211.159.152.252	attackbots	Oct 10 02:33:26 hanapaa sshd\[10655\]: Invalid user marketing from 211.159.152.252 Oct 10 02:33:26 hanapaa sshd\[10655\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.152.252 Oct 10 02:33:28 hanapaa sshd\[10655\]: Failed password for invalid user marketing from 211.159.152.252 port 21447 ssh2 Oct 10 02:43:05 hanapaa sshd\[11552\]: Invalid user yahoo from 211.159.152.252 Oct 10 02:43:05 hanapaa sshd\[11552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.152.252	2019-10-10 20:47:35
82.149.162.78	attackspambots	Invalid user anne from 82.149.162.78 port 33524	2019-10-10 20:52:05
121.178.60.41	attackbotsspam	Invalid user pi from 121.178.60.41 port 36100	2019-10-10 20:32:51
168.128.13.253	attack	2019-10-10T13:54:25.290367lon01.zurich-datacenter.net sshd\[18964\]: Invalid user P@$$wort from 168.128.13.253 port 41396 2019-10-10T13:54:25.294842lon01.zurich-datacenter.net sshd\[18964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168-128-13-253-eu.mcp-services.net 2019-10-10T13:54:28.035447lon01.zurich-datacenter.net sshd\[18964\]: Failed password for invalid user P@$$wort from 168.128.13.253 port 41396 ssh2 2019-10-10T13:59:05.932051lon01.zurich-datacenter.net sshd\[19062\]: Invalid user 1234Qwer from 168.128.13.253 port 53346 2019-10-10T13:59:05.937330lon01.zurich-datacenter.net sshd\[19062\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168-128-13-253-eu.mcp-services.net ...	2019-10-10 20:57:09
37.114.144.72	attack	Invalid user admin from 37.114.144.72 port 44972	2019-10-10 20:45:48
37.45.136.219	attack	Invalid user admin from 37.45.136.219 port 52551	2019-10-10 20:46:16

Recently Reported IPs

92.47.236.239	91.41.114.202	74.197.70.244	46.103.104.78
183.64.104.50	176.45.150.14	36.37.127.242	179.192.127.229
106.190.90.165	27.15.29.203	70.71.79.44	3.208.231.3
168.77.195.128	27.239.64.58	150.100.194.50	67.114.58.19
140.78.124.153	12.190.8.46	12.166.189.57	191.230.208.96