City: unknown
Region: unknown
Country: Czechia
Internet Service Provider: PrivatNet s.r.o.
Hostname: unknown
Organization: unknown
Usage Type: Fixed Line ISP
| Type | Details | Datetime |
|---|---|---|
| attack | (smtpauth) Failed SMTP AUTH login from 93.99.210.83 (CZ/Czechia/ip-93-99-210-83.net.privatnet.cz): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-30 10:36:44 plain authenticator failed for ([93.99.210.83]) [93.99.210.83]: 535 Incorrect authentication data (set_id=a.hoseiny@safanicu.com) |
2020-07-30 18:17:14 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 93.99.210.114 | attackspambots | Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:39:48 mail.srvfarm.net postfix/smtps/smtpd[161659]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: |
2020-09-19 02:06:47 |
| 93.99.210.114 | attack | Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:39:48 mail.srvfarm.net postfix/smtps/smtpd[161659]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: |
2020-09-18 18:03:57 |
| 93.99.210.114 | attackbotsspam | Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:30:14 mail.srvfarm.net postfix/smtps/smtpd[159843]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: Sep 17 18:33:36 mail.srvfarm.net postfix/smtpd[143202]: lost connection after AUTH from unknown[93.99.210.114] Sep 17 18:39:48 mail.srvfarm.net postfix/smtps/smtpd[161659]: warning: unknown[93.99.210.114]: SASL PLAIN authentication failed: |
2020-09-18 08:20:08 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.99.210.83
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64902
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.99.210.83. IN A
;; AUTHORITY SECTION:
. 259 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020073000 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 30 18:17:11 CST 2020
;; MSG SIZE rcvd: 11683.210.99.93.in-addr.arpa domain name pointer ip-93-99-210-83.net.privatnet.cz.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
83.210.99.93.in-addr.arpa name = ip-93-99-210-83.net.privatnet.cz.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.54.122.165 | attackspam | Dec 24 10:55:34 pi sshd\[17724\]: Invalid user nfs from 106.54.122.165 port 43760 Dec 24 10:55:34 pi sshd\[17724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.122.165 Dec 24 10:55:37 pi sshd\[17724\]: Failed password for invalid user nfs from 106.54.122.165 port 43760 ssh2 Dec 24 11:14:07 pi sshd\[17940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.122.165 user=root Dec 24 11:14:09 pi sshd\[17940\]: Failed password for root from 106.54.122.165 port 53586 ssh2 ... |
2019-12-24 19:44:16 |
| 91.135.192.134 | attackbots | Unauthorized connection attempt from IP address 91.135.192.134 on Port 445(SMB) |
2019-12-24 19:51:29 |
| 159.203.201.236 | attackbotsspam | Unauthorized connection attempt detected from IP address 159.203.201.236 to imap port |
2019-12-24 19:22:03 |
| 45.136.108.121 | attackbotsspam | Port scan |
2019-12-24 19:44:44 |
| 222.186.180.17 | attackbotsspam | Dec 24 01:20:11 php1 sshd\[17877\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Dec 24 01:20:14 php1 sshd\[17877\]: Failed password for root from 222.186.180.17 port 57592 ssh2 Dec 24 01:20:31 php1 sshd\[17886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Dec 24 01:20:33 php1 sshd\[17886\]: Failed password for root from 222.186.180.17 port 12958 ssh2 Dec 24 01:20:55 php1 sshd\[17925\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root |
2019-12-24 19:31:25 |
| 118.70.124.198 | attackbotsspam | Unauthorized connection attempt from IP address 118.70.124.198 on Port 445(SMB) |
2019-12-24 19:38:40 |
| 218.92.0.156 | attackspam | Dec 24 12:30:19 icinga sshd[616]: Failed password for root from 218.92.0.156 port 55272 ssh2 Dec 24 12:30:22 icinga sshd[616]: Failed password for root from 218.92.0.156 port 55272 ssh2 ... |
2019-12-24 19:34:32 |
| 36.89.232.235 | attackspam | Honeypot attack, port: 445, PTR: PTR record not found |
2019-12-24 19:37:32 |
| 109.1.227.102 | attack | SIP/5060 Probe, BF, Hack - |
2019-12-24 19:33:34 |
| 5.3.6.82 | attackbotsspam | SSH auth scanning - multiple failed logins |
2019-12-24 19:23:18 |
| 195.223.211.242 | attackspam | Dec 24 12:50:28 icinga sshd[2860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.223.211.242 Dec 24 12:50:30 icinga sshd[2860]: Failed password for invalid user navarrette from 195.223.211.242 port 50708 ssh2 ... |
2019-12-24 19:57:04 |
| 14.230.55.160 | attack | Unauthorized connection attempt from IP address 14.230.55.160 on Port 445(SMB) |
2019-12-24 19:19:57 |
| 185.153.197.149 | attackspambots | Port scan: Attack repeated for 24 hours |
2019-12-24 19:48:26 |
| 212.156.92.82 | attack | Unauthorized connection attempt from IP address 212.156.92.82 on Port 445(SMB) |
2019-12-24 19:50:28 |
| 1.55.219.103 | attackbots | Unauthorized connection attempt from IP address 1.55.219.103 on Port 445(SMB) |
2019-12-24 19:45:18 |