114.99.131.234

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
114.99.131.70	attackbotsspam	Unauthorized connection attempt detected from IP address 114.99.131.70 to port 6656 [T]	2020-01-27 07:04:48
114.99.131.226	attack	Unauthorized connection attempt detected from IP address 114.99.131.226 to port 6656 [T]	2020-01-27 05:35:42
114.99.131.60	attackbots	Unauthorized connection attempt detected from IP address 114.99.131.60 to port 6656 [T]	2020-01-27 04:11:06
114.99.131.199	attackbots	Forbidden directory scan :: 2019/09/28 22:26:34 [error] 1103#1103: *462338 access forbidden by rule, client: 114.99.131.199, server: [censored_1], request: "GET /.../server-stuff/sql-query-find-invalid-email-addresses HTTP/1.1", host: "www.[censored_1]"	2019-09-29 04:14:36
114.99.131.101	attack	Aug 8 23:49:47 localhost postfix/smtpd\[32014\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:49:55 localhost postfix/smtpd\[32031\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:50:06 localhost postfix/smtpd\[32014\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:50:21 localhost postfix/smtpd\[32014\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 23:50:29 localhost postfix/smtpd\[32031\]: warning: unknown\[114.99.131.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-09 09:31:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.99.131.234
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9324
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.99.131.234.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032900 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 29 13:46:05 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 234.131.99.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 234.131.99.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.190.2	attackspambots	Sep 11 18:46:27 gw1 sshd[3912]: Failed password for root from 222.186.190.2 port 53132 ssh2 Sep 11 18:46:40 gw1 sshd[3912]: error: maximum authentication attempts exceeded for root from 222.186.190.2 port 53132 ssh2 [preauth] ...	2020-09-11 21:47:08
45.149.76.100	attack	45.149.76.100 - - [10/Sep/2020:18:48:43 +0200] "POST /xmlrpc.php HTTP/1.1" 403 4104 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.149.76.100 - - [10/Sep/2020:18:57:38 +0200] "POST /xmlrpc.php HTTP/1.1" 403 31 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-11 21:42:15
116.75.118.164	attackspambots	" "	2020-09-11 21:45:28
140.143.5.72	attackbotsspam	Sep 11 11:30:07 root sshd[25604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.5.72 ...	2020-09-11 21:31:38
54.38.55.136	attack	Sep 11 15:10:04 ns382633 sshd\[8526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.55.136 user=root Sep 11 15:10:06 ns382633 sshd\[8526\]: Failed password for root from 54.38.55.136 port 59212 ssh2 Sep 11 15:14:24 ns382633 sshd\[9245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.55.136 user=root Sep 11 15:14:26 ns382633 sshd\[9245\]: Failed password for root from 54.38.55.136 port 42236 ssh2 Sep 11 15:18:48 ns382633 sshd\[10103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.55.136 user=root	2020-09-11 21:56:16
183.131.126.58	attack	Sep 11 11:12:11 melroy-server sshd[4838]: Failed password for root from 183.131.126.58 port 49786 ssh2 ...	2020-09-11 21:28:25
46.101.220.225	attackspam	TCP port : 5634	2020-09-11 21:28:01
172.105.43.21	attackbotsspam	TCP (SYN) 172.105.43.21:34013 -> port 110, len 44	2020-09-11 21:52:03
185.220.101.201	attackspam	xmlrpc attack	2020-09-11 21:35:32
188.173.80.134	attackspam	Sep 11 15:22:59 mellenthin sshd[19251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.173.80.134 user=root Sep 11 15:23:01 mellenthin sshd[19251]: Failed password for invalid user root from 188.173.80.134 port 49478 ssh2	2020-09-11 21:48:31
192.99.35.113	attackspambots	192.99.35.113 - - [11/Sep/2020:11:08:00 +0200] "POST /wp-login.php HTTP/1.0" 200 4794 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-11 21:32:51
45.95.168.96	attack	2020-09-11 16:02:31 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=postgres@opso.it\) 2020-09-11 16:02:31 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=postgres@nophost.com\) 2020-09-11 16:04:57 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=postgres@nopcommerce.it\) 2020-09-11 16:06:05 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=postgres@opso.it\) 2020-09-11 16:06:05 dovecot_login authenticator failed for pr.predictams.live \(USER\) \[45.95.168.96\]: 535 Incorrect authentication data \(set_id=postgres@nophost.com\)	2020-09-11 22:06:59
43.225.71.121	attackbotsspam	SMTP brute force	2020-09-11 21:52:37
142.93.242.246	attack	Listed on rbldns-ru also zen-spamhaus and abuseat-org / proto=6 . srcport=51117 . dstport=2451 . (890)	2020-09-11 21:29:36
61.105.207.143	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-11T11:21:33Z and 2020-09-11T11:21:58Z	2020-09-11 21:32:29

Recently Reported IPs

114.99.131.127	114.99.17.50	114.99.18.147	114.99.19.245
114.99.20.107	115.112.175.12	21.1.105.202	149.28.142.233
151.149.46.128	203.158.27.70	159.205.144.103	178.37.172.177
25.254.119.19	147.161.185.95	173.248.248.94	81.165.214.224
250.62.1.134	27.241.174.89	201.169.67.163	79.96.56.5