93.99.4.22 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Czech Republic

Internet Service Provider: Ales Krepela - KREPNET

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Aug 27 11:22:42 mail.srvfarm.net postfix/smtps/smtpd[1499868]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed: Aug 27 11:22:42 mail.srvfarm.net postfix/smtps/smtpd[1499868]: lost connection after AUTH from unknown[93.99.4.22] Aug 27 11:24:17 mail.srvfarm.net postfix/smtps/smtpd[1499867]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed: Aug 27 11:24:17 mail.srvfarm.net postfix/smtps/smtpd[1499867]: lost connection after AUTH from unknown[93.99.4.22] Aug 27 11:30:04 mail.srvfarm.net postfix/smtpd[1488223]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed:	2020-08-28 08:15:55
attackspambots	Jul 9 13:50:53 mail.srvfarm.net postfix/smtpd[3819465]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed: Jul 9 13:50:53 mail.srvfarm.net postfix/smtpd[3819465]: lost connection after AUTH from unknown[93.99.4.22] Jul 9 13:52:25 mail.srvfarm.net postfix/smtpd[3817751]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed: Jul 9 13:52:25 mail.srvfarm.net postfix/smtpd[3817751]: lost connection after AUTH from unknown[93.99.4.22] Jul 9 13:56:23 mail.srvfarm.net postfix/smtpd[3825207]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed:	2020-07-10 01:07:15
attackspambots	(smtpauth) Failed SMTP AUTH login from 93.99.4.22 (CZ/Czechia/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-05-10 08:25:06 plain authenticator failed for ([93.99.4.22]) [93.99.4.22]: 535 Incorrect authentication data (set_id=sale@emad-security.com)	2020-05-10 13:30:16

Type

Details

Datetime

attackbotsspam

Aug 27 11:22:42 mail.srvfarm.net postfix/smtps/smtpd[1499868]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed: 
Aug 27 11:22:42 mail.srvfarm.net postfix/smtps/smtpd[1499868]: lost connection after AUTH from unknown[93.99.4.22]
Aug 27 11:24:17 mail.srvfarm.net postfix/smtps/smtpd[1499867]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed: 
Aug 27 11:24:17 mail.srvfarm.net postfix/smtps/smtpd[1499867]: lost connection after AUTH from unknown[93.99.4.22]
Aug 27 11:30:04 mail.srvfarm.net postfix/smtpd[1488223]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed:

2020-08-28 08:15:55

attackspambots

Jul  9 13:50:53 mail.srvfarm.net postfix/smtpd[3819465]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed: 
Jul  9 13:50:53 mail.srvfarm.net postfix/smtpd[3819465]: lost connection after AUTH from unknown[93.99.4.22]
Jul  9 13:52:25 mail.srvfarm.net postfix/smtpd[3817751]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed: 
Jul  9 13:52:25 mail.srvfarm.net postfix/smtpd[3817751]: lost connection after AUTH from unknown[93.99.4.22]
Jul  9 13:56:23 mail.srvfarm.net postfix/smtpd[3825207]: warning: unknown[93.99.4.22]: SASL PLAIN authentication failed:

2020-07-10 01:07:15

attackspambots

(smtpauth) Failed SMTP AUTH login from 93.99.4.22 (CZ/Czechia/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-05-10 08:25:06 plain authenticator failed for ([93.99.4.22]) [93.99.4.22]: 535 Incorrect authentication data (set_id=sale@emad-security.com)

2020-05-10 13:30:16

Comments on same subnet:

IP	Type	Details	Datetime
93.99.4.23	attack	Sep 15 18:40:20 mail.srvfarm.net postfix/smtps/smtpd[2822043]: warning: unknown[93.99.4.23]: SASL PLAIN authentication failed: Sep 15 18:40:20 mail.srvfarm.net postfix/smtps/smtpd[2822043]: lost connection after AUTH from unknown[93.99.4.23] Sep 15 18:40:50 mail.srvfarm.net postfix/smtps/smtpd[2827555]: warning: unknown[93.99.4.23]: SASL PLAIN authentication failed: Sep 15 18:40:50 mail.srvfarm.net postfix/smtps/smtpd[2827555]: lost connection after AUTH from unknown[93.99.4.23] Sep 15 18:48:25 mail.srvfarm.net postfix/smtpd[2827929]: warning: unknown[93.99.4.23]: SASL PLAIN authentication failed:	2020-09-17 02:39:58
93.99.4.23	attack	Sep 15 18:40:20 mail.srvfarm.net postfix/smtps/smtpd[2822043]: warning: unknown[93.99.4.23]: SASL PLAIN authentication failed: Sep 15 18:40:20 mail.srvfarm.net postfix/smtps/smtpd[2822043]: lost connection after AUTH from unknown[93.99.4.23] Sep 15 18:40:50 mail.srvfarm.net postfix/smtps/smtpd[2827555]: warning: unknown[93.99.4.23]: SASL PLAIN authentication failed: Sep 15 18:40:50 mail.srvfarm.net postfix/smtps/smtpd[2827555]: lost connection after AUTH from unknown[93.99.4.23] Sep 15 18:48:25 mail.srvfarm.net postfix/smtpd[2827929]: warning: unknown[93.99.4.23]: SASL PLAIN authentication failed:	2020-09-16 18:58:53
93.99.4.38	attackbots	SASL PLAIN auth failed: ruser=...	2020-07-17 06:37:07
93.99.4.23	attack	Brute force attempt	2020-05-24 01:29:57
93.99.49.50	attackspambots	Unauthorized connection attempt detected from IP address 93.99.49.50 to port 23 [J]	2020-01-22 23:34:06
93.99.42.18	attack	Jul 15 08:16:01 rigel postfix/smtpd[31991]: warning: hostname 18pc.vranet.cz does not resolve to address 93.99.42.18 Jul 15 08:16:01 rigel postfix/smtpd[31991]: connect from unknown[93.99.42.18] Jul 15 08:16:02 rigel postfix/smtpd[31991]: warning: unknown[93.99.42.18]: SASL CRAM-MD5 authentication failed: authentication failure Jul 15 08:16:02 rigel postfix/smtpd[31991]: warning: unknown[93.99.42.18]: SASL PLAIN authentication failed: authentication failure Jul 15 08:16:02 rigel postfix/smtpd[31991]: warning: unknown[93.99.42.18]: SASL LOGIN authentication failed: authentication failure Jul 15 08:16:02 rigel postfix/smtpd[31991]: disconnect from unknown[93.99.42.18] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=93.99.42.18	2019-07-15 21:04:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.99.4.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9928
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.99.4.22.			IN	A

;; AUTHORITY SECTION:
.			306	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050901 1800 900 604800 86400

;; Query time: 92 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 10 13:30:10 CST 2020
;; MSG SIZE  rcvd: 114

Host info

Host 22.4.99.93.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 22.4.99.93.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.78.53.37	attack	Brute-force attempt banned	2019-12-24 17:32:59
185.176.27.178	attack	Dec 24 10:25:22 debian-2gb-nbg1-2 kernel: \[832262.903219\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=23142 PROTO=TCP SPT=44088 DPT=24812 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-24 17:37:29
143.92.53.7	attackspambots	Brute-force attempt banned	2019-12-24 17:22:16
218.92.0.171	attackbotsspam	Dec 24 10:22:56 MK-Soft-VM5 sshd[30724]: Failed password for root from 218.92.0.171 port 63819 ssh2 Dec 24 10:22:59 MK-Soft-VM5 sshd[30724]: Failed password for root from 218.92.0.171 port 63819 ssh2 ...	2019-12-24 17:35:28
112.85.42.174	attackspambots	Dec 24 03:55:12 mail sshd\[16846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root ...	2019-12-24 17:42:32
222.186.180.9	attack	Dec 24 10:06:19 v22018076622670303 sshd\[16580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.9 user=root Dec 24 10:06:21 v22018076622670303 sshd\[16580\]: Failed password for root from 222.186.180.9 port 27238 ssh2 Dec 24 10:06:24 v22018076622670303 sshd\[16580\]: Failed password for root from 222.186.180.9 port 27238 ssh2 ...	2019-12-24 17:16:45
45.56.74.27	attackspam	2019-12-24T07:18:53Z - RDP login failed multiple times. (45.56.74.27)	2019-12-24 17:19:04
88.247.137.21	attackbots	Telnet/23 MH Probe, BF, Hack -	2019-12-24 17:28:15
97.118.242.140	attackbotsspam	Hits on port : 5555	2019-12-24 17:09:52
164.132.44.25	attackbots	Dec 24 08:13:29 ns382633 sshd\[12700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.44.25 user=root Dec 24 08:13:31 ns382633 sshd\[12700\]: Failed password for root from 164.132.44.25 port 44276 ssh2 Dec 24 08:17:03 ns382633 sshd\[13461\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.44.25 user=root Dec 24 08:17:05 ns382633 sshd\[13461\]: Failed password for root from 164.132.44.25 port 40672 ssh2 Dec 24 08:18:36 ns382633 sshd\[13542\]: Invalid user operator from 164.132.44.25 port 56998 Dec 24 08:18:36 ns382633 sshd\[13542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.44.25	2019-12-24 17:29:48
196.188.114.135	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-12-24 17:30:30
95.243.47.131	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-12-24 17:20:40
51.68.123.192	attack	Dec 24 08:18:52 pornomens sshd\[623\]: Invalid user www from 51.68.123.192 port 54060 Dec 24 08:18:52 pornomens sshd\[623\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.192 Dec 24 08:18:54 pornomens sshd\[623\]: Failed password for invalid user www from 51.68.123.192 port 54060 ssh2 ...	2019-12-24 17:18:42
128.199.132.137	attackspambots	Hits on port : 3388	2019-12-24 17:09:26
83.12.69.226	attackbotsspam	Telnet/23 MH Probe, BF, Hack -	2019-12-24 17:30:06

Recently Reported IPs

140.143.125.241	119.28.143.95	180.241.45.249	84.17.43.99
2001:41d0:8:e77e::1	142.93.10.247	177.156.226.147	130.90.134.131
36.228.81.28	113.170.207.92	13.90.44.92	36.68.5.190
69.30.223.2	36.6.56.35	0.179.241.230	101.27.61.110
8.6.134.137	60.135.116.159	176.28.13.152	14.54.29.225