192.162.48.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Poland

Internet Service Provider: RBM Group

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Aug 15 02:35:48 mail.srvfarm.net postfix/smtps/smtpd[968980]: warning: unknown[192.162.48.99]: SASL PLAIN authentication failed: Aug 15 02:35:48 mail.srvfarm.net postfix/smtps/smtpd[968980]: lost connection after AUTH from unknown[192.162.48.99] Aug 15 02:39:12 mail.srvfarm.net postfix/smtpd[965955]: warning: unknown[192.162.48.99]: SASL PLAIN authentication failed: Aug 15 02:39:12 mail.srvfarm.net postfix/smtpd[965955]: lost connection after AUTH from unknown[192.162.48.99] Aug 15 02:43:48 mail.srvfarm.net postfix/smtps/smtpd[964715]: warning: unknown[192.162.48.99]: SASL PLAIN authentication failed:	2020-08-15 12:31:15

Type

Details

Datetime

attackspam

Aug 15 02:35:48 mail.srvfarm.net postfix/smtps/smtpd[968980]: warning: unknown[192.162.48.99]: SASL PLAIN authentication failed: 
Aug 15 02:35:48 mail.srvfarm.net postfix/smtps/smtpd[968980]: lost connection after AUTH from unknown[192.162.48.99]
Aug 15 02:39:12 mail.srvfarm.net postfix/smtpd[965955]: warning: unknown[192.162.48.99]: SASL PLAIN authentication failed: 
Aug 15 02:39:12 mail.srvfarm.net postfix/smtpd[965955]: lost connection after AUTH from unknown[192.162.48.99]
Aug 15 02:43:48 mail.srvfarm.net postfix/smtps/smtpd[964715]: warning: unknown[192.162.48.99]: SASL PLAIN authentication failed:

2020-08-15 12:31:15

Comments on same subnet:

IP	Type	Details	Datetime
192.162.48.60	attackspam	Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: lost connection after AUTH from unknown[192.162.48.60] Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: lost connection after AUTH from unknown[192.162.48.60] Sep 17 18:33:23 mail.srvfarm.net postfix/smtpd[156675]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed:	2020-09-19 01:57:49
192.162.48.60	attackbots	Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: lost connection after AUTH from unknown[192.162.48.60] Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: lost connection after AUTH from unknown[192.162.48.60] Sep 17 18:33:23 mail.srvfarm.net postfix/smtpd[156675]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed:	2020-09-18 17:55:22
192.162.48.60	attackspambots	Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: lost connection after AUTH from unknown[192.162.48.60] Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: lost connection after AUTH from unknown[192.162.48.60] Sep 17 18:33:23 mail.srvfarm.net postfix/smtpd[156675]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed:	2020-09-18 08:10:13

Type

Details

Datetime

192.162.48.60

attackspam

Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: 
Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: lost connection after AUTH from unknown[192.162.48.60]
Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: 
Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: lost connection after AUTH from unknown[192.162.48.60]
Sep 17 18:33:23 mail.srvfarm.net postfix/smtpd[156675]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed:

2020-09-19 01:57:49

192.162.48.60

attackbots

Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: 
Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: lost connection after AUTH from unknown[192.162.48.60]
Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: 
Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: lost connection after AUTH from unknown[192.162.48.60]
Sep 17 18:33:23 mail.srvfarm.net postfix/smtpd[156675]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed:

2020-09-18 17:55:22

192.162.48.60

attackspambots

Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: 
Sep 17 18:26:00 mail.srvfarm.net postfix/smtps/smtpd[155679]: lost connection after AUTH from unknown[192.162.48.60]
Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed: 
Sep 17 18:26:18 mail.srvfarm.net postfix/smtps/smtpd[159173]: lost connection after AUTH from unknown[192.162.48.60]
Sep 17 18:33:23 mail.srvfarm.net postfix/smtpd[156675]: warning: unknown[192.162.48.60]: SASL PLAIN authentication failed:

2020-09-18 08:10:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.162.48.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30190
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;192.162.48.99.			IN	A

;; AUTHORITY SECTION:
.			421	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081401 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 15 12:31:10 CST 2020
;; MSG SIZE  rcvd: 117

Host info

99.48.162.192.in-addr.arpa domain name pointer router1-99.rbmgroup.pl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
99.48.162.192.in-addr.arpa	name = router1-99.rbmgroup.pl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
206.189.153.181	attack	$f2bV_matches	2019-12-21 20:47:40
93.118.115.27	attackbotsspam	Unauthorized connection attempt detected from IP address 93.118.115.27 to port 445	2019-12-21 20:45:21
77.42.95.247	attackspambots	Automatic report - Port Scan Attack	2019-12-21 20:42:17
106.13.217.93	attackbotsspam	Dec 21 07:18:14 v22018086721571380 sshd[19131]: Failed password for invalid user test from 106.13.217.93 port 55668 ssh2	2019-12-21 21:06:03
93.148.209.74	attackspambots	Dec 21 02:59:14 TORMINT sshd\[18963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.148.209.74 user=root Dec 21 02:59:16 TORMINT sshd\[18963\]: Failed password for root from 93.148.209.74 port 54696 ssh2 Dec 21 03:05:38 TORMINT sshd\[19334\]: Invalid user webmaster from 93.148.209.74 Dec 21 03:05:38 TORMINT sshd\[19334\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.148.209.74 ...	2019-12-21 20:31:44
142.93.26.245	attackspambots	Dec 21 02:59:51 hanapaa sshd\[4411\]: Invalid user xk from 142.93.26.245 Dec 21 02:59:51 hanapaa sshd\[4411\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.26.245 Dec 21 02:59:52 hanapaa sshd\[4411\]: Failed password for invalid user xk from 142.93.26.245 port 60394 ssh2 Dec 21 03:05:56 hanapaa sshd\[4980\]: Invalid user ident from 142.93.26.245 Dec 21 03:05:56 hanapaa sshd\[4980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.26.245	2019-12-21 21:08:46
137.74.199.177	attack	Dec 21 10:14:02 game-panel sshd[15438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.199.177 Dec 21 10:14:04 game-panel sshd[15438]: Failed password for invalid user david from 137.74.199.177 port 39066 ssh2 Dec 21 10:19:42 game-panel sshd[15689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.199.177	2019-12-21 20:36:07
51.75.23.62	attackspambots	Dec 21 13:37:02 h2177944 sshd\[27495\]: Invalid user host from 51.75.23.62 port 58276 Dec 21 13:37:02 h2177944 sshd\[27495\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.23.62 Dec 21 13:37:04 h2177944 sshd\[27495\]: Failed password for invalid user host from 51.75.23.62 port 58276 ssh2 Dec 21 13:42:50 h2177944 sshd\[27691\]: Invalid user bolding from 51.75.23.62 port 35430 ...	2019-12-21 20:48:48
112.84.91.236	attackspambots	2019-12-21 07:20:11 H=(vpxxxxxxx7832.com) [112.84.91.236]:1342 I=[10.100.18.23]:25 sender verify fail for : Unrouteable address 2019-12-21 x@x 2019-12-21 07:20:14 unexpected disconnection while reading SMTP command from (vpxxxxxxx7832.com) [112.84.91.236]:1342 I=[10.100.18.23]:25 (error: Connection reset by peer) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=112.84.91.236	2019-12-21 21:03:16
129.211.45.88	attackbotsspam	Dec 21 02:35:15 hpm sshd\[13425\]: Invalid user lucky from 129.211.45.88 Dec 21 02:35:15 hpm sshd\[13425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.45.88 Dec 21 02:35:17 hpm sshd\[13425\]: Failed password for invalid user lucky from 129.211.45.88 port 34164 ssh2 Dec 21 02:44:01 hpm sshd\[14391\]: Invalid user lourdmary from 129.211.45.88 Dec 21 02:44:01 hpm sshd\[14391\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.45.88	2019-12-21 20:55:13
139.28.223.204	attack	Postfix DNSBL listed. Trying to send SPAM.	2019-12-21 20:46:41
162.244.81.158	attack	Scanning random ports - tries to find possible vulnerable services	2019-12-21 20:43:31
83.146.70.79	attack	3389BruteforceFW21	2019-12-21 21:13:43
122.10.109.8	attackbotsspam	Lines containing failures of 122.10.109.8 Dec 21 06:56:34 cdb sshd[22008]: Invalid user ruddle from 122.10.109.8 port 45808 Dec 21 06:56:34 cdb sshd[22008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.10.109.8 Dec 21 06:56:37 cdb sshd[22008]: Failed password for invalid user ruddle from 122.10.109.8 port 45808 ssh2 Dec 21 06:56:37 cdb sshd[22008]: Received disconnect from 122.10.109.8 port 45808:11: Bye Bye [preauth] Dec 21 06:56:37 cdb sshd[22008]: Disconnected from invalid user ruddle 122.10.109.8 port 45808 [preauth] Dec 21 07:10:49 cdb sshd[23366]: Invalid user home from 122.10.109.8 port 59574 Dec 21 07:10:49 cdb sshd[23366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.10.109.8 Dec 21 07:10:51 cdb sshd[23366]: Failed password for invalid user home from 122.10.109.8 port 59574 ssh2 Dec 21 07:10:51 cdb sshd[23366]: Received disconnect from 122.10.109.8 port 59574:11: Bye By........ ------------------------------	2019-12-21 20:54:20
185.107.47.215	attackbotsspam	Unauthorized access detected from banned ip	2019-12-21 21:04:39

Recently Reported IPs

117.84.4.160	113.165.204.235	103.18.167.44	45.232.64.123
45.227.98.217	45.167.9.182	5.190.234.215	202.52.249.171
201.55.142.243	171.12.101.67	132.97.254.89	59.135.0.105
100.70.249.158	5.144.163.137	122.28.142.105	193.43.231.85
191.240.113.74	191.53.193.230	190.196.229.126	186.216.70.29