City: unknown
Region: unknown
Country: Czechia
Internet Service Provider: Inflr.com.br
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | SQL injection attempt. |
2020-04-16 13:03:59 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 93.99.104.106 | attackbots | on port 3389 |
2020-08-28 03:09:16 |
| 93.99.104.103 | attackspam | 20 attempts against mh-misbehave-ban on pine |
2020-06-07 13:04:47 |
| 93.99.104.103 | attack | 20 attempts against mh_ha-misbehave-ban on dawn |
2020-06-06 12:27:06 |
| 93.99.104.103 | attackbotsspam | HTTP SQL Injection Attempt, PTR: vps.asciiwolf.com. |
2020-05-31 01:34:06 |
| 93.99.104.101 | attackspambots | 21 attempts against mh-misbehave-ban on float |
2020-05-20 04:52:10 |
| 93.99.104.213 | attackspam | (mod_security) mod_security (id:211650) triggered by 93.99.104.213 (CZ/Czechia/mmarketing64.tk): 5 in the last 3600 secs |
2020-05-12 17:56:26 |
| 93.99.104.199 | attack | SQL Injection in QueryString parameter: 2 AND (SELECT 8883 FROM(SELECT COUNT(*),CONCAT(0x7178707671,(SELECT (ELT(8883=8883,1))),0x717a766271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a) |
2020-05-12 17:45:24 |
| 93.99.104.201 | attackbots | SQL Injection attack |
2020-05-12 15:02:09 |
| 93.99.104.191 | attack | 20 attempts against mh_ha-misbehave-ban on ice |
2020-05-11 22:14:54 |
| 93.99.104.176 | attack | 20 attempts against mh-misbehave-ban on thorn |
2020-05-08 04:41:29 |
| 93.99.104.117 | attackspambots | SQL injection attempt. |
2020-04-20 18:15:20 |
| 93.99.104.103 | attackspambots | 17/Apr/20 02:56:04 #6411981 CRITICAL 114 93.99.104.103 POST /index.php - Cross-site scripting - [SERVER:QUERY_STRING = view=reset&Itemid=101&DJYD%3D4406%20AND%201%3D1%20UNION%20ALL%20SELECT%201%2CNULL%2C%27%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%27%2Ctable_name%20FROM%20information_schema...] - 17/Apr/20 02:56:10 #7191395 CRITICAL 256 93.99.104.103 POST /index.php - SQL injection - [GET:view = reset) AND (SELECT 5130 FROM(SELECT COUNT(*),CONCAT(0x7178717671,(SELECT (ELT(5130=5130,1))),0x71627a7871,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a) AND (8622=8622] - 17/Apr/20 02:56:13 #3881151 CRITICAL 256 93.99.104.103 POST /index.php - SQL injection - [GET:view = reset) AND 8908=CAST((CHR(113)||CHR(120)||CHR(113)||CHR(118)||CHR(113))||(SELECT (CASE WHEN (8908=8908) THEN 1 ELSE 0 END))::text||(CHR(113)||CHR(98)||CHR(122)||CHR(120)||CHR(113)) AS NUMER...] - 17/Apr/20 02:56:15 #3189325 CRITICAL 256 93.99.104.103 POST |
2020-04-18 17:06:46 |
| 93.99.104.125 | attack | 20 attempts against mh-misbehave-ban on web2 |
2020-04-11 00:28:57 |
| 93.99.104.137 | attackspam | sql injection via query parameters |
2020-04-10 15:06:28 |
| 93.99.104.103 | attackbots | 200 atempt in 1 min |
2020-04-10 02:36:43 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.99.104.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57628
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.99.104.166. IN A
;; AUTHORITY SECTION:
. 354 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020041501 1800 900 604800 86400
;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 16 13:03:56 CST 2020
;; MSG SIZE rcvd: 117166.104.99.93.in-addr.arpa domain name pointer mmarketing22.tk.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
166.104.99.93.in-addr.arpa name = mmarketing22.tk.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.13.58.178 | attack | Brute force SMTP login attempted. ... |
2020-05-25 03:49:24 |
| 148.70.125.42 | attackbots | May 24 22:06:28 abendstille sshd\[17378\]: Invalid user downloads from 148.70.125.42 May 24 22:06:28 abendstille sshd\[17378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.125.42 May 24 22:06:30 abendstille sshd\[17378\]: Failed password for invalid user downloads from 148.70.125.42 port 41198 ssh2 May 24 22:10:04 abendstille sshd\[21030\]: Invalid user admin from 148.70.125.42 May 24 22:10:04 abendstille sshd\[21030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.125.42 ... |
2020-05-25 04:18:17 |
| 62.21.33.141 | attackspambots | May 22 23:05:01 josie sshd[3311]: Invalid user bih from 62.21.33.141 May 22 23:05:01 josie sshd[3311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.21.33.141 May 22 23:05:03 josie sshd[3311]: Failed password for invalid user bih from 62.21.33.141 port 40808 ssh2 May 22 23:05:03 josie sshd[3312]: Received disconnect from 62.21.33.141: 11: Bye Bye May 22 23:19:27 josie sshd[5397]: Invalid user azz from 62.21.33.141 May 22 23:19:27 josie sshd[5397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.21.33.141 May 22 23:19:29 josie sshd[5397]: Failed password for invalid user azz from 62.21.33.141 port 58030 ssh2 May 22 23:19:30 josie sshd[5398]: Received disconnect from 62.21.33.141: 11: Bye Bye May 22 23:23:09 josie sshd[5971]: Invalid user lqo from 62.21.33.141 May 22 23:23:09 josie sshd[5971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62......... ------------------------------- |
2020-05-25 03:58:21 |
| 114.69.249.194 | attack | May 24 15:22:30 ny01 sshd[3411]: Failed password for root from 114.69.249.194 port 41355 ssh2 May 24 15:26:39 ny01 sshd[4242]: Failed password for root from 114.69.249.194 port 39272 ssh2 |
2020-05-25 03:44:55 |
| 117.48.209.28 | attackspambots | May 24 15:02:02 legacy sshd[31967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.209.28 May 24 15:02:05 legacy sshd[31967]: Failed password for invalid user ffp from 117.48.209.28 port 49282 ssh2 May 24 15:07:20 legacy sshd[32050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.209.28 ... |
2020-05-25 04:05:29 |
| 89.250.152.109 | attack | May 24 14:03:44 plex sshd[14719]: Invalid user qdb from 89.250.152.109 port 52126 May 24 14:03:44 plex sshd[14719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.250.152.109 May 24 14:03:44 plex sshd[14719]: Invalid user qdb from 89.250.152.109 port 52126 May 24 14:03:47 plex sshd[14719]: Failed password for invalid user qdb from 89.250.152.109 port 52126 ssh2 May 24 14:06:58 plex sshd[14803]: Invalid user lvv from 89.250.152.109 port 40698 |
2020-05-25 04:10:44 |
| 134.17.94.158 | attack | $f2bV_matches |
2020-05-25 04:08:29 |
| 111.229.30.206 | attackspam | May 24 18:09:54 sshgateway sshd\[6635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.30.206 user=root May 24 18:09:56 sshgateway sshd\[6635\]: Failed password for root from 111.229.30.206 port 60430 ssh2 May 24 18:14:57 sshgateway sshd\[6694\]: Invalid user test from 111.229.30.206 |
2020-05-25 03:58:06 |
| 192.42.116.22 | attackspambots | (sshd) Failed SSH login from 192.42.116.22 (NL/Netherlands/this-is-a-tor-exit-node-hviv122.hviv.nl): 5 in the last 3600 secs |
2020-05-25 04:15:20 |
| 117.48.212.113 | attackspambots | May 24 12:22:10 mail sshd\[58509\]: Invalid user git from 117.48.212.113 May 24 12:22:10 mail sshd\[58509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.212.113 ... |
2020-05-25 04:22:11 |
| 110.35.80.82 | attack | Invalid user fanadmin from 110.35.80.82 port 23854 |
2020-05-25 03:47:00 |
| 212.67.0.150 | attack | Postfix RBL failed |
2020-05-25 03:52:19 |
| 128.199.121.32 | attackbotsspam | Invalid user urc from 128.199.121.32 port 52726 |
2020-05-25 03:47:49 |
| 46.101.151.52 | attackspambots | Invalid user zachary from 46.101.151.52 port 44966 |
2020-05-25 03:45:33 |
| 188.166.232.29 | attack | May 25 06:06:10 NG-HHDC-SVS-001 sshd[5647]: Invalid user jira from 188.166.232.29 ... |
2020-05-25 04:19:46 |