114.99.131.199

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Anhui Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Forbidden directory scan :: 2019/09/28 22:26:34 [error] 1103#1103: *462338 access forbidden by rule, client: 114.99.131.199, server: [censored_1], request: "GET /.../server-stuff/sql-query-find-invalid-email-addresses HTTP/1.1", host: "www.[censored_1]"	2019-09-29 04:14:36

Type

Details

Datetime

attackbots

Forbidden directory scan :: 2019/09/28 22:26:34 [error] 1103#1103: *462338 access forbidden by rule, client: 114.99.131.199, server: [censored_1], request: "GET /.../server-stuff/sql-query-find-invalid-email-addresses HTTP/1.1", host: "www.[censored_1]"

2019-09-29 04:14:36

Comments on same subnet:

IP	Type	Details	Datetime
114.99.131.70	attackbotsspam	Unauthorized connection attempt detected from IP address 114.99.131.70 to port 6656 [T]	2020-01-27 07:04:48
114.99.131.226	attack	Unauthorized connection attempt detected from IP address 114.99.131.226 to port 6656 [T]	2020-01-27 05:35:42
114.99.131.60	attackbots	Unauthorized connection attempt detected from IP address 114.99.131.60 to port 6656 [T]	2020-01-27 04:11:06
114.99.131.101	attack	Aug 8 23:49:47 localhost postfix/smtpd\[32014\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:49:55 localhost postfix/smtpd\[32031\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:50:06 localhost postfix/smtpd\[32014\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:50:21 localhost postfix/smtpd\[32014\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:50:29 localhost postfix/smtpd\[32031\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-09 09:31:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.99.131.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42161
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.99.131.199.			IN	A

;; AUTHORITY SECTION:
.			439	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092801 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 29 04:14:33 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 199.131.99.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 199.131.99.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.173.186.148	attack	Oct 19 16:28:47 xtremcommunity sshd\[690856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.173.186.148 user=root Oct 19 16:28:48 xtremcommunity sshd\[690856\]: Failed password for root from 95.173.186.148 port 51978 ssh2 Oct 19 16:32:39 xtremcommunity sshd\[690936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.173.186.148 user=root Oct 19 16:32:41 xtremcommunity sshd\[690936\]: Failed password for root from 95.173.186.148 port 34824 ssh2 Oct 19 16:36:36 xtremcommunity sshd\[691001\]: Invalid user ar from 95.173.186.148 port 45900 Oct 19 16:36:36 xtremcommunity sshd\[691001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.173.186.148 ...	2019-10-20 04:47:32
178.128.61.239	attackspam	Oct 19 16:17:52 plusreed sshd[8879]: Invalid user hadoop from 178.128.61.239 ...	2019-10-20 04:27:15
114.67.68.30	attackbots	2019-10-19T20:11:02.594552shield sshd\[10115\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.68.30 user=root 2019-10-19T20:11:04.539452shield sshd\[10115\]: Failed password for root from 114.67.68.30 port 34620 ssh2 2019-10-19T20:17:36.335047shield sshd\[12260\]: Invalid user web10 from 114.67.68.30 port 33024 2019-10-19T20:17:36.341186shield sshd\[12260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.68.30 2019-10-19T20:17:37.709184shield sshd\[12260\]: Failed password for invalid user web10 from 114.67.68.30 port 33024 ssh2	2019-10-20 04:35:18
31.185.104.21	attackspambots	Oct 19 22:17:27 rotator sshd\[715\]: Failed password for root from 31.185.104.21 port 37551 ssh2Oct 19 22:17:29 rotator sshd\[715\]: Failed password for root from 31.185.104.21 port 37551 ssh2Oct 19 22:17:32 rotator sshd\[715\]: Failed password for root from 31.185.104.21 port 37551 ssh2Oct 19 22:17:34 rotator sshd\[715\]: Failed password for root from 31.185.104.21 port 37551 ssh2Oct 19 22:17:36 rotator sshd\[715\]: Failed password for root from 31.185.104.21 port 37551 ssh2Oct 19 22:17:39 rotator sshd\[715\]: Failed password for root from 31.185.104.21 port 37551 ssh2 ...	2019-10-20 04:33:39
196.38.70.24	attackspambots	Invalid user nb from 196.38.70.24 port 44626	2019-10-20 04:21:28
106.13.59.20	attackspambots	Oct 19 20:09:44 ip-172-31-62-245 sshd\[519\]: Invalid user helpdesk from 106.13.59.20\ Oct 19 20:09:46 ip-172-31-62-245 sshd\[519\]: Failed password for invalid user helpdesk from 106.13.59.20 port 43022 ssh2\ Oct 19 20:13:51 ip-172-31-62-245 sshd\[541\]: Invalid user postgres from 106.13.59.20\ Oct 19 20:13:53 ip-172-31-62-245 sshd\[541\]: Failed password for invalid user postgres from 106.13.59.20 port 50062 ssh2\ Oct 19 20:17:51 ip-172-31-62-245 sshd\[567\]: Invalid user lazare from 106.13.59.20\	2019-10-20 04:27:42
157.230.215.106	attack	2019-10-19T20:28:37.135484shield sshd\[15621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.215.106 user=root 2019-10-19T20:28:39.581733shield sshd\[15621\]: Failed password for root from 157.230.215.106 port 35744 ssh2 2019-10-19T20:32:14.425615shield sshd\[16503\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.215.106 user=root 2019-10-19T20:32:16.661275shield sshd\[16503\]: Failed password for root from 157.230.215.106 port 47122 ssh2 2019-10-19T20:36:08.567169shield sshd\[18002\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.215.106 user=root	2019-10-20 04:49:58
51.75.247.13	attackbots	vps1:pam-generic	2019-10-20 04:44:16
222.186.175.220	attackbots	Oct 19 22:25:43 h2177944 sshd\[2373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220 user=root Oct 19 22:25:45 h2177944 sshd\[2373\]: Failed password for root from 222.186.175.220 port 61128 ssh2 Oct 19 22:25:49 h2177944 sshd\[2373\]: Failed password for root from 222.186.175.220 port 61128 ssh2 Oct 19 22:25:53 h2177944 sshd\[2373\]: Failed password for root from 222.186.175.220 port 61128 ssh2 ...	2019-10-20 04:30:30
14.170.168.14	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-20 04:59:37
121.142.111.226	attackspambots	frenzy	2019-10-20 04:40:35
193.112.62.85	attackspam	Oct 19 12:43:05 firewall sshd[20961]: Invalid user service from 193.112.62.85 Oct 19 12:43:06 firewall sshd[20961]: Failed password for invalid user service from 193.112.62.85 port 42516 ssh2 Oct 19 12:48:44 firewall sshd[21143]: Invalid user ali from 193.112.62.85 ...	2019-10-20 04:21:52
110.35.173.103	attack	Oct 19 21:08:03 vps58358 sshd\[15655\]: Invalid user games123 from 110.35.173.103Oct 19 21:08:06 vps58358 sshd\[15655\]: Failed password for invalid user games123 from 110.35.173.103 port 50186 ssh2Oct 19 21:12:47 vps58358 sshd\[15754\]: Invalid user 123456 from 110.35.173.103Oct 19 21:12:49 vps58358 sshd\[15754\]: Failed password for invalid user 123456 from 110.35.173.103 port 60942 ssh2Oct 19 21:17:31 vps58358 sshd\[15796\]: Invalid user siddharth from 110.35.173.103Oct 19 21:17:33 vps58358 sshd\[15796\]: Failed password for invalid user siddharth from 110.35.173.103 port 43468 ssh2 ...	2019-10-20 04:39:54
62.148.142.202	attackspambots	2019-10-19T20:17:46.036730abusebot-7.cloudsearch.cf sshd\[20445\]: Invalid user rodger from 62.148.142.202 port 53178	2019-10-20 04:31:39
211.243.236.21	attackspam	Oct 19 09:22:22 web9 sshd\[499\]: Invalid user pi from 211.243.236.21 Oct 19 09:22:22 web9 sshd\[500\]: Invalid user pi from 211.243.236.21 Oct 19 09:22:22 web9 sshd\[499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.243.236.21 Oct 19 09:22:22 web9 sshd\[500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.243.236.21 Oct 19 09:22:24 web9 sshd\[499\]: Failed password for invalid user pi from 211.243.236.21 port 52915 ssh2	2019-10-20 04:18:40

Recently Reported IPs

162.221.88.250	125.164.226.217	197.226.5.199	114.246.142.175
198.23.133.79	59.96.88.57	221.226.8.162	212.83.157.18
188.166.234.31	175.20.38.219	153.36.186.139	91.136.177.159
203.186.148.230	201.114.197.37	5.189.142.120	50.62.177.230
185.185.68.66	162.252.87.187	45.137.84.68	104.236.231.149