114.99.131.199

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Anhui Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Forbidden directory scan :: 2019/09/28 22:26:34 [error] 1103#1103: *462338 access forbidden by rule, client: 114.99.131.199, server: [censored_1], request: "GET /.../server-stuff/sql-query-find-invalid-email-addresses HTTP/1.1", host: "www.[censored_1]"	2019-09-29 04:14:36

Type

Details

Datetime

attackbots

Forbidden directory scan :: 2019/09/28 22:26:34 [error] 1103#1103: *462338 access forbidden by rule, client: 114.99.131.199, server: [censored_1], request: "GET /.../server-stuff/sql-query-find-invalid-email-addresses HTTP/1.1", host: "www.[censored_1]"

2019-09-29 04:14:36

Comments on same subnet:

IP	Type	Details	Datetime
114.99.131.70	attackbotsspam	Unauthorized connection attempt detected from IP address 114.99.131.70 to port 6656 [T]	2020-01-27 07:04:48
114.99.131.226	attack	Unauthorized connection attempt detected from IP address 114.99.131.226 to port 6656 [T]	2020-01-27 05:35:42
114.99.131.60	attackbots	Unauthorized connection attempt detected from IP address 114.99.131.60 to port 6656 [T]	2020-01-27 04:11:06
114.99.131.101	attack	Aug 8 23:49:47 localhost postfix/smtpd\[32014\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:49:55 localhost postfix/smtpd\[32031\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:50:06 localhost postfix/smtpd\[32014\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:50:21 localhost postfix/smtpd\[32014\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:50:29 localhost postfix/smtpd\[32031\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-09 09:31:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.99.131.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42161
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.99.131.199.			IN	A

;; AUTHORITY SECTION:
.			439	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092801 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 29 04:14:33 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 199.131.99.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 199.131.99.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
202.155.211.226	attackbotsspam	2020-09-27T08:38:24.874061linuxbox-skyline sshd[188131]: Invalid user peng from 202.155.211.226 port 60882 ...	2020-09-27 22:50:29
51.77.66.35	attackbotsspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-27T14:02:45Z and 2020-09-27T14:39:53Z	2020-09-27 22:52:34
110.168.254.13	attack	2323/tcp [2020-09-26]1pkt	2020-09-27 22:53:28
61.223.236.162	attack	TCP (SYN) 61.223.236.162:37793 -> port 23, len 44	2020-09-27 22:34:24
51.116.112.29	attack	2020-09-26 UTC: (2x) - 13.251.1.166,admin	2020-09-27 22:46:46
37.57.71.39	attack	8080/tcp [2020-09-26]1pkt	2020-09-27 22:15:58
193.41.131.40	attackbots	445/tcp [2020-09-26]1pkt	2020-09-27 22:55:30
102.165.30.1	attackspam	Automatic report - Banned IP Access	2020-09-27 22:45:12
218.92.0.158	attack	Sep 27 09:47:46 ny01 sshd[15773]: Failed password for root from 218.92.0.158 port 7485 ssh2 Sep 27 09:47:59 ny01 sshd[15773]: error: maximum authentication attempts exceeded for root from 218.92.0.158 port 7485 ssh2 [preauth] Sep 27 09:48:05 ny01 sshd[15806]: Failed password for root from 218.92.0.158 port 38930 ssh2	2020-09-27 22:21:51
188.173.97.144	attackbotsspam	Sep 27 13:50:45 con01 sshd[3133222]: Invalid user suporte from 188.173.97.144 port 54938 Sep 27 13:50:45 con01 sshd[3133222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.173.97.144 Sep 27 13:50:45 con01 sshd[3133222]: Invalid user suporte from 188.173.97.144 port 54938 Sep 27 13:50:46 con01 sshd[3133222]: Failed password for invalid user suporte from 188.173.97.144 port 54938 ssh2 Sep 27 13:54:27 con01 sshd[3139813]: Invalid user teamspeak3 from 188.173.97.144 port 34362 ...	2020-09-27 22:22:19
104.239.174.59	attackbots	TCP (SYN) 104.239.174.59:51783 -> port 9897, len 44	2020-09-27 22:46:18
92.222.77.8	attackspambots	(sshd) Failed SSH login from 92.222.77.8 (FR/France/8.ip-92-222-77.eu): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD	2020-09-27 22:32:28
198.71.239.48	attackspam	Automatic report - Banned IP Access	2020-09-27 22:50:52
186.116.2.138	attackbots	445/tcp [2020-09-26]1pkt	2020-09-27 22:39:02
116.74.16.227	attack	37215/tcp 37215/tcp 37215/tcp [2020-09-26]3pkt	2020-09-27 22:49:03

Recently Reported IPs

162.221.88.250	125.164.226.217	197.226.5.199	114.246.142.175
198.23.133.79	59.96.88.57	221.226.8.162	212.83.157.18
188.166.234.31	175.20.38.219	153.36.186.139	91.136.177.159
203.186.148.230	201.114.197.37	5.189.142.120	50.62.177.230
185.185.68.66	162.252.87.187	45.137.84.68	104.236.231.149