93.99.210.83 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Czechia

Internet Service Provider: PrivatNet s.r.o.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	(smtpauth) Failed SMTP AUTH login from 93.99.210.83 (CZ/Czechia/ip-93-99-210-83.net.privatnet.cz): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-30 10:36:44 plain authenticator failed for ([93.99.210.83]) [93.99.210.83]: 535 Incorrect authentication data (set_id=a.hoseiny@safanicu.com)	2020-07-30 18:17:14

Type

Details

Datetime

attack

(smtpauth) Failed SMTP AUTH login from 93.99.210.83 (CZ/Czechia/ip-93-99-210-83.net.privatnet.cz): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-30 10:36:44 plain authenticator failed for ([93.99.210.83]) [93.99.210.83]: 535 Incorrect authentication data (set_id=a.hoseiny@safanicu.com)

2020-07-30 18:17:14

Comments on same subnet:

IP	Type	Details	Datetime
93.99.210.114	attackspambots	Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:39:48 mail.srvfarm.net postfix/smtps/smtpd[161659]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed:	2020-09-19 02:06:47
93.99.210.114	attack	Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:39:48 mail.srvfarm.net postfix/smtps/smtpd[161659]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed:	2020-09-18 18:03:57
93.99.210.114	attackbotsspam	Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:39:48 mail.srvfarm.net postfix/smtps/smtpd[161659]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed:	2020-09-18 08:20:08

Type

Details

Datetime

93.99.210.114

attackspambots

Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: 
Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: lost connection after AUTH from unknown[93.99.210.114]
Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: 
Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: lost connection after AUTH from unknown[93.99.210.114]
Sep 17 18:39:48 mail.srvfarm.net postfix/smtps/smtpd[161659]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed:

2020-09-19 02:06:47

93.99.210.114

attack

Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: 
Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: lost connection after AUTH from unknown[93.99.210.114]
Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: 
Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: lost connection after AUTH from unknown[93.99.210.114]
Sep 17 18:39:48 mail.srvfarm.net postfix/smtps/smtpd[161659]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed:

2020-09-18 18:03:57

93.99.210.114

attackbotsspam

Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: 
Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: lost connection after AUTH from unknown[93.99.210.114]
Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: 
Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: lost connection after AUTH from unknown[93.99.210.114]
Sep 17 18:39:48 mail.srvfarm.net postfix/smtps/smtpd[161659]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed:

2020-09-18 08:20:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.99.210.83
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64902
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.99.210.83.			IN	A

;; AUTHORITY SECTION:
.			259	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020073000 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 30 18:17:11 CST 2020
;; MSG SIZE  rcvd: 116

Host info

83.210.99.93.in-addr.arpa domain name pointer ip-93-99-210-83.net.privatnet.cz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
83.210.99.93.in-addr.arpa	name = ip-93-99-210-83.net.privatnet.cz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.201.1.249	attackbotsspam	Unauthorised access (Apr 25) SRC=35.201.1.249 LEN=40 TTL=236 ID=63462 TCP DPT=21 WINDOW=1024 SYN	2020-04-25 13:10:05
69.172.87.212	attackbots	Apr 25 11:30:18 webhost01 sshd[22650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.172.87.212 Apr 25 11:30:20 webhost01 sshd[22650]: Failed password for invalid user hcat from 69.172.87.212 port 52563 ssh2 ...	2020-04-25 13:01:24
34.64.218.102	attack	SG - - [24/Apr/2020:23:16:58 +0300] POST /wp-login.php HTTP/1.1 200 4865 - Mozilla/5.0 X11; Ubuntu; Linux x86_64; rv:62.0 Gecko/20100101 Firefox/62.0	2020-04-25 12:36:50
200.7.140.168	attackbots	2020-04-25T04:54:23.462541shield sshd\[20680\]: Invalid user ou from 200.7.140.168 port 45056 2020-04-25T04:54:23.466355shield sshd\[20680\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=sisinfo2.unrc.edu.ar 2020-04-25T04:54:25.682500shield sshd\[20680\]: Failed password for invalid user ou from 200.7.140.168 port 45056 ssh2 2020-04-25T05:00:10.847146shield sshd\[22011\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=sisinfo2.unrc.edu.ar user=root 2020-04-25T05:00:13.373416shield sshd\[22011\]: Failed password for root from 200.7.140.168 port 58934 ssh2	2020-04-25 13:08:32
152.136.203.208	attack	Apr 25 06:35:40 vps sshd[198696]: Failed password for invalid user seba from 152.136.203.208 port 44536 ssh2 Apr 25 06:39:35 vps sshd[215870]: Invalid user admin from 152.136.203.208 port 33272 Apr 25 06:39:35 vps sshd[215870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.203.208 Apr 25 06:39:37 vps sshd[215870]: Failed password for invalid user admin from 152.136.203.208 port 33272 ssh2 Apr 25 06:43:47 vps sshd[238324]: Invalid user sistemas from 152.136.203.208 port 50246 ...	2020-04-25 12:47:15
36.79.141.246	attackbotsspam	36.79.141.246 - - [23/Apr/2020:14:51:27 +0200] "GET /administrator/ HTTP/1.1" 302 375 "-" "Mozilla/5.0 (Windows NT 6.0; rv:34.0) Gecko/20100101 Firefox/34.0"	2020-04-25 12:32:27
176.234.133.157	attackbotsspam	trying to access non-authorized port	2020-04-25 12:35:57
71.6.232.5	attack	04/24/2020-23:59:04.556885 71.6.232.5 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputation IP group 71	2020-04-25 12:40:38
101.227.82.219	attack	Apr 24 18:40:10 kapalua sshd\[1562\]: Invalid user franklin from 101.227.82.219 Apr 24 18:40:10 kapalua sshd\[1562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.227.82.219 Apr 24 18:40:12 kapalua sshd\[1562\]: Failed password for invalid user franklin from 101.227.82.219 port 16479 ssh2 Apr 24 18:42:34 kapalua sshd\[1781\]: Invalid user cele from 101.227.82.219 Apr 24 18:42:34 kapalua sshd\[1781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.227.82.219	2020-04-25 13:07:56
118.24.173.104	attack	Apr 25 11:30:11 webhost01 sshd[22639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.173.104 Apr 25 11:30:13 webhost01 sshd[22639]: Failed password for invalid user ovh from 118.24.173.104 port 32911 ssh2 ...	2020-04-25 12:49:54
180.89.58.27	attackspam	prod8 ...	2020-04-25 13:03:55
94.138.208.158	attack	Apr 25 06:30:43 vps sshd[173233]: Failed password for invalid user admin from 94.138.208.158 port 49304 ssh2 Apr 25 06:34:38 vps sshd[190248]: Invalid user albino from 94.138.208.158 port 34212 Apr 25 06:34:38 vps sshd[190248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.138.208.158 Apr 25 06:34:39 vps sshd[190248]: Failed password for invalid user albino from 94.138.208.158 port 34212 ssh2 Apr 25 06:38:38 vps sshd[211354]: Invalid user accepted from 94.138.208.158 port 47414 ...	2020-04-25 12:45:30
114.119.165.122	attackbotsspam	Robots ignored. Multiple log-reports "Access denied"_	2020-04-25 12:53:45
106.12.206.233	attack	Invalid user test3 from 106.12.206.233 port 45742	2020-04-25 13:05:39
77.232.100.146	attackbotsspam	Apr 25 06:35:37 srv01 sshd[9667]: Invalid user ovhuser from 77.232.100.146 port 44192 Apr 25 06:35:37 srv01 sshd[9667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.232.100.146 Apr 25 06:35:37 srv01 sshd[9667]: Invalid user ovhuser from 77.232.100.146 port 44192 Apr 25 06:35:39 srv01 sshd[9667]: Failed password for invalid user ovhuser from 77.232.100.146 port 44192 ssh2 Apr 25 06:40:13 srv01 sshd[10129]: Invalid user test123 from 77.232.100.146 port 59002 ...	2020-04-25 12:43:25

Recently Reported IPs

211.57.93.49	134.122.111.36	141.206.228.90	122.116.155.191
168.61.45.191	219.159.239.66	91.106.67.186	217.150.25.8
168.194.162.141	113.66.254.178	58.219.129.104	18.132.245.54
115.75.42.233	120.10.205.117	203.251.73.188	2001:1b50::82:195:225:157
40.117.209.114	18.228.4.248	14.166.112.99	106.104.151.170