93.99.104.166 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Czechia

Internet Service Provider: Inflr.com.br

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SQL injection attempt.	2020-04-16 13:03:59

Comments on same subnet:

IP	Type	Details	Datetime
93.99.104.106	attackbots	on port 3389	2020-08-28 03:09:16
93.99.104.103	attackspam	20 attempts against mh-misbehave-ban on pine	2020-06-07 13:04:47
93.99.104.103	attack	20 attempts against mh_ha-misbehave-ban on dawn	2020-06-06 12:27:06
93.99.104.103	attackbotsspam	HTTP SQL Injection Attempt, PTR: vps.asciiwolf.com.	2020-05-31 01:34:06
93.99.104.101	attackspambots	21 attempts against mh-misbehave-ban on float	2020-05-20 04:52:10
93.99.104.213	attackspam	(mod_security) mod_security (id:211650) triggered by 93.99.104.213 (CZ/Czechia/mmarketing64.tk): 5 in the last 3600 secs	2020-05-12 17:56:26
93.99.104.199	attack	SQL Injection in QueryString parameter: 2 AND (SELECT 8883 FROM(SELECT COUNT(),CONCAT(0x7178707671,(SELECT (ELT(8883=8883,1))),0x717a766271,FLOOR(RAND(0)2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a)	2020-05-12 17:45:24
93.99.104.201	attackbots	SQL Injection attack	2020-05-12 15:02:09
93.99.104.191	attack	20 attempts against mh_ha-misbehave-ban on ice	2020-05-11 22:14:54
93.99.104.176	attack	20 attempts against mh-misbehave-ban on thorn	2020-05-08 04:41:29
93.99.104.117	attackspambots	SQL injection attempt.	2020-04-20 18:15:20
93.99.104.103	attackspambots	17/Apr/20 02:56:04 #6411981 CRITICAL 114 93.99.104.103 POST /index.php - Cross-site scripting - [SERVER:QUERY_STRING = view=reset&Itemid=101&DJYD%3D4406%20AND%201%3D1%20UNION%20ALL%20SELECT%201%2CNULL%2C%27%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%27%2Ctable_name%20FROM%20information_schema...] - 17/Apr/20 02:56:10 #7191395 CRITICAL 256 93.99.104.103 POST /index.php - SQL injection - [GET:view = reset) AND (SELECT 5130 FROM(SELECT COUNT(),CONCAT(0x7178717671,(SELECT (ELT(5130=5130,1))),0x71627a7871,FLOOR(RAND(0)2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a) AND (8622=8622] - 17/Apr/20 02:56:13 #3881151 CRITICAL 256 93.99.104.103 POST /index.php - SQL injection - [GET:view = reset) AND 8908=CAST((CHR(113)\|\|CHR(120)\|\|CHR(113)\|\|CHR(118)\|\|CHR(113))\|\|(SELECT (CASE WHEN (8908=8908) THEN 1 ELSE 0 END))::text\|\|(CHR(113)\|\|CHR(98)\|\|CHR(122)\|\|CHR(120)\|\|CHR(113)) AS NUMER...] - 17/Apr/20 02:56:15 #3189325 CRITICAL 256 93.99.104.103 POST	2020-04-18 17:06:46
93.99.104.125	attack	20 attempts against mh-misbehave-ban on web2	2020-04-11 00:28:57
93.99.104.137	attackspam	sql injection via query parameters	2020-04-10 15:06:28
93.99.104.103	attackbots	200 atempt in 1 min	2020-04-10 02:36:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.99.104.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57628
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.99.104.166.			IN	A

;; AUTHORITY SECTION:
.			354	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041501 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 16 13:03:56 CST 2020
;; MSG SIZE  rcvd: 117

Host info

166.104.99.93.in-addr.arpa domain name pointer mmarketing22.tk.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.104.99.93.in-addr.arpa	name = mmarketing22.tk.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.205.103.12	attack	Jun 12 13:48:58 ws22vmsma01 sshd[91320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.205.103.12 Jun 12 13:49:01 ws22vmsma01 sshd[91320]: Failed password for invalid user adminweb from 190.205.103.12 port 4556 ssh2 ...	2020-06-13 01:22:23
222.85.140.116	attackbots	Tried sshing with brute force.	2020-06-13 01:07:11
222.186.175.151	attackspambots	Unauthorized SSH login attempts	2020-06-13 01:16:22
211.154.6.226	attackbots	firewall-block, port(s): 1433/tcp	2020-06-13 01:08:21
80.241.46.6	attackspambots	Jun 12 16:48:28 vlre-nyc-1 sshd\[14895\]: Invalid user uap from 80.241.46.6 Jun 12 16:48:28 vlre-nyc-1 sshd\[14895\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.241.46.6 Jun 12 16:48:31 vlre-nyc-1 sshd\[14895\]: Failed password for invalid user uap from 80.241.46.6 port 21940 ssh2 Jun 12 16:53:17 vlre-nyc-1 sshd\[14967\]: Invalid user hctsai from 80.241.46.6 Jun 12 16:53:17 vlre-nyc-1 sshd\[14967\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.241.46.6 ...	2020-06-13 01:33:50
185.175.93.104	attackbotsspam	06/12/2020-12:49:04.567158 185.175.93.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-06-13 01:36:29
128.199.206.140	attackbotsspam	Automatic report - Banned IP Access	2020-06-13 01:03:53
201.192.152.202	attack	Jun 12 19:03:26 server sshd[3172]: Failed password for root from 201.192.152.202 port 56676 ssh2 Jun 12 19:07:17 server sshd[3441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.192.152.202 Jun 12 19:07:19 server sshd[3441]: Failed password for invalid user derby from 201.192.152.202 port 59364 ssh2 ...	2020-06-13 01:08:37
222.186.175.183	attack	2020-06-12T17:10:02.502482shield sshd\[17776\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root 2020-06-12T17:10:04.227403shield sshd\[17776\]: Failed password for root from 222.186.175.183 port 57742 ssh2 2020-06-12T17:10:08.388360shield sshd\[17776\]: Failed password for root from 222.186.175.183 port 57742 ssh2 2020-06-12T17:10:11.312244shield sshd\[17776\]: Failed password for root from 222.186.175.183 port 57742 ssh2 2020-06-12T17:10:14.640350shield sshd\[17776\]: Failed password for root from 222.186.175.183 port 57742 ssh2	2020-06-13 01:11:14
124.74.248.218	attack	Jun 12 19:18:26 OPSO sshd\[5518\]: Invalid user hanshiyi from 124.74.248.218 port 9762 Jun 12 19:18:26 OPSO sshd\[5518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.74.248.218 Jun 12 19:18:28 OPSO sshd\[5518\]: Failed password for invalid user hanshiyi from 124.74.248.218 port 9762 ssh2 Jun 12 19:21:42 OPSO sshd\[6336\]: Invalid user linqian from 124.74.248.218 port 27980 Jun 12 19:21:42 OPSO sshd\[6336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.74.248.218	2020-06-13 01:32:39
220.248.30.58	attackbots	Jun 12 18:07:53 ajax sshd[25304]: Failed password for root from 220.248.30.58 port 47284 ssh2	2020-06-13 01:11:37
111.251.67.220	attack	" "	2020-06-13 01:33:09
140.246.218.162	attackbotsspam	Jun 12 19:02:23 vps687878 sshd\[11478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.218.162 user=root Jun 12 19:02:26 vps687878 sshd\[11478\]: Failed password for root from 140.246.218.162 port 40130 ssh2 Jun 12 19:05:36 vps687878 sshd\[11732\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.218.162 user=root Jun 12 19:05:38 vps687878 sshd\[11732\]: Failed password for root from 140.246.218.162 port 56423 ssh2 Jun 12 19:08:53 vps687878 sshd\[12207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.218.162 user=root ...	2020-06-13 01:25:46
209.141.55.247	attackbotsspam	Honeypot hit.	2020-06-13 01:10:18
222.186.180.223	attackspambots	Jun 12 19:08:37 abendstille sshd\[18089\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.223 user=root Jun 12 19:08:39 abendstille sshd\[18089\]: Failed password for root from 222.186.180.223 port 63904 ssh2 Jun 12 19:08:40 abendstille sshd\[18095\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.223 user=root Jun 12 19:08:42 abendstille sshd\[18095\]: Failed password for root from 222.186.180.223 port 28636 ssh2 Jun 12 19:08:44 abendstille sshd\[18089\]: Failed password for root from 222.186.180.223 port 63904 ssh2 ...	2020-06-13 01:19:32

Recently Reported IPs

49.135.193.5	98.217.219.250	156.134.222.86	242.243.154.143
209.177.41.70	0.131.128.84	155.166.85.138	23.167.190.237
93.147.251.102	81.95.136.242	43.31.36.207	218.86.94.21
189.252.111.235	176.31.165.144	68.66.224.33	75.192.156.132
212.161.76.140	206.72.196.219	157.245.168.11	35.184.20.192