113.14.131.90 - IPInfo

Basic Info

City: Guilin

Region: Guangxi

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
113.14.131.26	attack	2019-12-18 00:26:24 dovecot_login authenticator failed for (kyxczto.com) [113.14.131.26]:58107 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-12-18 00:26:35 dovecot_login authenticator failed for (kyxczto.com) [113.14.131.26]:58536 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-12-18 00:26:48 dovecot_login authenticator failed for (kyxczto.com) [113.14.131.26]:59333 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) ...	2019-12-18 19:01:02
113.14.131.5	attackbots	113.14.131.5 was recorded 5 times by 1 hosts attempting to connect to the following ports: 46143. Incident counter (4h, 24h, all-time): 5, 5, 5	2019-11-10 18:36:09

Type

Details

Datetime

113.14.131.26

attack

2019-12-18 00:26:24 dovecot_login authenticator failed for (kyxczto.com) [113.14.131.26]:58107 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org)
2019-12-18 00:26:35 dovecot_login authenticator failed for (kyxczto.com) [113.14.131.26]:58536 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org)
2019-12-18 00:26:48 dovecot_login authenticator failed for (kyxczto.com) [113.14.131.26]:59333 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org)
...

2019-12-18 19:01:02

113.14.131.5

attackbots

113.14.131.5 was recorded 5 times by 1 hosts attempting to connect to the following ports: 46143. Incident counter (4h, 24h, all-time): 5, 5, 5

2019-11-10 18:36:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.14.131.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19797
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;113.14.131.90.			IN	A

;; AUTHORITY SECTION:
.			201	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022070200 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 02 17:02:37 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 90.131.14.113.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 90.131.14.113.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.234.33.229	attackbots	Dec 13 19:33:35 php1 sshd\[764\]: Invalid user wwwrun from 49.234.33.229 Dec 13 19:33:35 php1 sshd\[764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.33.229 Dec 13 19:33:36 php1 sshd\[764\]: Failed password for invalid user wwwrun from 49.234.33.229 port 44054 ssh2 Dec 13 19:41:28 php1 sshd\[2100\]: Invalid user ecaterina from 49.234.33.229 Dec 13 19:41:28 php1 sshd\[2100\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.33.229	2019-12-14 13:47:06
177.189.244.193	attackspambots	Dec 13 19:12:08 kapalua sshd\[30452\]: Invalid user zx2222 from 177.189.244.193 Dec 13 19:12:08 kapalua sshd\[30452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.189.244.193 Dec 13 19:12:10 kapalua sshd\[30452\]: Failed password for invalid user zx2222 from 177.189.244.193 port 36088 ssh2 Dec 13 19:19:56 kapalua sshd\[31206\]: Invalid user marti from 177.189.244.193 Dec 13 19:19:57 kapalua sshd\[31206\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.189.244.193	2019-12-14 13:37:31
122.51.204.222	attackspambots	Dec 13 19:33:02 web9 sshd\[10769\]: Invalid user dovecot from 122.51.204.222 Dec 13 19:33:02 web9 sshd\[10769\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.222 Dec 13 19:33:03 web9 sshd\[10769\]: Failed password for invalid user dovecot from 122.51.204.222 port 38012 ssh2 Dec 13 19:40:20 web9 sshd\[11969\]: Invalid user voice from 122.51.204.222 Dec 13 19:40:20 web9 sshd\[11969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.204.222	2019-12-14 13:45:35
178.62.36.116	attack	Dec 13 19:16:53 auw2 sshd\[9362\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.36.116 user=root Dec 13 19:16:55 auw2 sshd\[9362\]: Failed password for root from 178.62.36.116 port 48688 ssh2 Dec 13 19:22:19 auw2 sshd\[9919\]: Invalid user samset from 178.62.36.116 Dec 13 19:22:19 auw2 sshd\[9919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.36.116 Dec 13 19:22:21 auw2 sshd\[9919\]: Failed password for invalid user samset from 178.62.36.116 port 56748 ssh2	2019-12-14 13:29:18
163.172.63.244	attack	Lines containing failures of 163.172.63.244 Dec 12 20:29:21 mailserver sshd[16507]: Invalid user postgres from 163.172.63.244 port 44688 Dec 12 20:29:21 mailserver sshd[16507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.63.244 Dec 12 20:29:24 mailserver sshd[16507]: Failed password for invalid user postgres from 163.172.63.244 port 44688 ssh2 Dec 12 20:29:24 mailserver sshd[16507]: Received disconnect from 163.172.63.244 port 44688:11: Bye Bye [preauth] Dec 12 20:29:24 mailserver sshd[16507]: Disconnected from invalid user postgres 163.172.63.244 port 44688 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=163.172.63.244	2019-12-14 13:55:37
118.70.190.38	attackbotsspam	1576299316 - 12/14/2019 05:55:16 Host: 118.70.190.38/118.70.190.38 Port: 445 TCP Blocked	2019-12-14 14:01:36
118.89.249.95	attackbotsspam	Dec 14 06:09:08 localhost sshd\[24651\]: Invalid user rpm from 118.89.249.95 Dec 14 06:09:08 localhost sshd\[24651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.249.95 Dec 14 06:09:10 localhost sshd\[24651\]: Failed password for invalid user rpm from 118.89.249.95 port 56630 ssh2 Dec 14 06:16:09 localhost sshd\[25048\]: Invalid user uito from 118.89.249.95 Dec 14 06:16:09 localhost sshd\[25048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.249.95 ...	2019-12-14 13:27:05
193.112.130.28	attackbotsspam	Invalid user solvar from 193.112.130.28 port 37388	2019-12-14 14:00:57
45.55.38.39	attack	Dec 13 19:11:18 sachi sshd\[11121\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root Dec 13 19:11:20 sachi sshd\[11121\]: Failed password for root from 45.55.38.39 port 37552 ssh2 Dec 13 19:19:32 sachi sshd\[11817\]: Invalid user medias from 45.55.38.39 Dec 13 19:19:32 sachi sshd\[11817\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Dec 13 19:19:33 sachi sshd\[11817\]: Failed password for invalid user medias from 45.55.38.39 port 41011 ssh2	2019-12-14 13:34:00
123.20.50.184	attack	Dec 14 05:55:40 ns3367391 sshd[8844]: Invalid user guest from 123.20.50.184 port 47799 Dec 14 05:55:40 ns3367391 sshd[8844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.20.50.184 Dec 14 05:55:40 ns3367391 sshd[8844]: Invalid user guest from 123.20.50.184 port 47799 Dec 14 05:55:42 ns3367391 sshd[8844]: Failed password for invalid user guest from 123.20.50.184 port 47799 ssh2 ...	2019-12-14 13:39:54
210.202.8.64	attackbots	SSH auth scanning - multiple failed logins	2019-12-14 13:24:19
79.41.166.69	attackspam	1576299327 - 12/14/2019 05:55:27 Host: 79.41.166.69/79.41.166.69 Port: 445 TCP Blocked	2019-12-14 13:51:28
118.89.247.74	attack	Dec 13 19:31:52 web1 sshd\[10445\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.247.74 user=mysql Dec 13 19:31:53 web1 sshd\[10445\]: Failed password for mysql from 118.89.247.74 port 36296 ssh2 Dec 13 19:39:07 web1 sshd\[11180\]: Invalid user tccuser from 118.89.247.74 Dec 13 19:39:07 web1 sshd\[11180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.247.74 Dec 13 19:39:09 web1 sshd\[11180\]: Failed password for invalid user tccuser from 118.89.247.74 port 59158 ssh2	2019-12-14 13:46:21
102.114.10.97	attackspam	TCP Port Scanning	2019-12-14 13:22:46
49.88.112.64	attackbotsspam	Dec 14 05:21:03 hcbbdb sshd\[12716\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.64 user=root Dec 14 05:21:05 hcbbdb sshd\[12716\]: Failed password for root from 49.88.112.64 port 37010 ssh2 Dec 14 05:21:09 hcbbdb sshd\[12716\]: Failed password for root from 49.88.112.64 port 37010 ssh2 Dec 14 05:21:12 hcbbdb sshd\[12716\]: Failed password for root from 49.88.112.64 port 37010 ssh2 Dec 14 05:21:15 hcbbdb sshd\[12716\]: Failed password for root from 49.88.112.64 port 37010 ssh2	2019-12-14 13:25:11

Recently Reported IPs

26.46.88.2	89.104.101.120	61.230.168.233	125.123.236.87
113.14.131.229	90.187.38.141	112.185.223.65	125.228.9.229
111.76.141.226	117.65.110.5	125.160.105.234	112.133.246.148
113.14.131.13	113.206.224.205	135.181.213.219	131.100.131.64
91.43.234.145	114.104.227.59	128.199.19.105	81.159.118.2