14.116.199.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2020-04-13T03:55:55.459968upcloud.m0sh1x2.com sshd[27963]: Invalid user flynn from 14.116.199.99 port 39004	2020-04-13 14:00:56
attackspam	2020-04-11T03:47:17.794840shield sshd\[8553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.199.99 user=root 2020-04-11T03:47:19.961347shield sshd\[8553\]: Failed password for root from 14.116.199.99 port 41948 ssh2 2020-04-11T03:50:21.237198shield sshd\[8918\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.199.99 user=root 2020-04-11T03:50:23.664573shield sshd\[8918\]: Failed password for root from 14.116.199.99 port 45560 ssh2 2020-04-11T03:56:24.426217shield sshd\[9735\]: Invalid user mdpi from 14.116.199.99 port 52784	2020-04-11 12:12:26
attack	Invalid user ode from 14.116.199.99 port 56924	2020-04-03 17:41:19
attackspam	Mar 28 13:48:28 dev0-dcde-rnet sshd[1426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.199.99 Mar 28 13:48:30 dev0-dcde-rnet sshd[1426]: Failed password for invalid user wmp from 14.116.199.99 port 50172 ssh2 Mar 28 14:05:30 dev0-dcde-rnet sshd[1634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.199.99	2020-03-29 03:01:11
attackbotsspam	Mar 19 06:27:12 itv-usvr-02 sshd[7274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.199.99 user=root Mar 19 06:30:04 itv-usvr-02 sshd[7376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.199.99 user=root Mar 19 06:32:48 itv-usvr-02 sshd[7468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.199.99	2020-03-19 08:12:03
attack	Feb 18 03:10:34 firewall sshd[9003]: Invalid user agent from 14.116.199.99 Feb 18 03:10:36 firewall sshd[9003]: Failed password for invalid user agent from 14.116.199.99 port 56014 ssh2 Feb 18 03:12:27 firewall sshd[9070]: Invalid user mpws from 14.116.199.99 ...	2020-02-18 17:25:56
attackspambots	Invalid user idaa from 14.116.199.99 port 41248 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.199.99 Failed password for invalid user idaa from 14.116.199.99 port 41248 ssh2 Invalid user spread from 14.116.199.99 port 56222 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.199.99	2020-02-14 22:33:55
attack	Feb 4 06:17:23 plex sshd[17608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.199.99 user=root Feb 4 06:17:25 plex sshd[17608]: Failed password for root from 14.116.199.99 port 41142 ssh2	2020-02-04 14:46:38

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.116.199.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38627
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.116.199.99.			IN	A

;; AUTHORITY SECTION:
.			219	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020400 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 14:46:34 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 99.199.116.14.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 99.199.116.14.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.167.10.23	attack	mail auth brute force	2020-10-06 14:50:54
116.196.90.254	attackspambots	SSH login attempts.	2020-10-06 14:21:53
141.98.9.34	attack	Oct 6 07:37:36 sshgateway sshd\[26082\]: Invalid user Administrator from 141.98.9.34 Oct 6 07:37:36 sshgateway sshd\[26082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.34 Oct 6 07:37:38 sshgateway sshd\[26082\]: Failed password for invalid user Administrator from 141.98.9.34 port 33405 ssh2	2020-10-06 14:09:48
27.151.196.236	attack	Oct 6 03:59:06 iago sshd[1777]: Address 27.151.196.236 maps to 236.196.151.27.broad.qz.fj.dynamic.163data.com.cn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 6 03:59:06 iago sshd[1777]: Invalid user oracle from 27.151.196.236 Oct 6 03:59:06 iago sshd[1777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.151.196.236 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.151.196.236	2020-10-06 14:15:42
192.162.178.41	attackspambots	Attempted Brute Force (dovecot)	2020-10-06 14:51:44
49.233.130.95	attack	Oct 6 05:51:19 localhost sshd\[15235\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.130.95 user=root Oct 6 05:51:21 localhost sshd\[15235\]: Failed password for root from 49.233.130.95 port 32920 ssh2 Oct 6 05:54:37 localhost sshd\[15299\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.130.95 user=root Oct 6 05:54:39 localhost sshd\[15299\]: Failed password for root from 49.233.130.95 port 50012 ssh2 Oct 6 05:57:44 localhost sshd\[15539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.130.95 user=root ...	2020-10-06 14:29:51
92.118.161.37	attackbots	Port scan denied	2020-10-06 14:35:28
50.28.1.193	attack	tadpole.exacthosting.com - - [05/Oct/2020:16:37:16 -0400] "GET /wp-content/meta.php HTTP/1.1"	2020-10-06 14:10:37
51.254.156.114	attackspambots	srv02 Mass scanning activity detected Target: 12183 ..	2020-10-06 14:31:19
134.209.24.117	attackspambots	Automatic report BANNED IP	2020-10-06 14:08:23
114.231.105.191	attack	Oct 6 00:04:04 srv01 postfix/smtpd\[13775\]: warning: unknown\[114.231.105.191\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 00:17:49 srv01 postfix/smtpd\[5435\]: warning: unknown\[114.231.105.191\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 00:18:01 srv01 postfix/smtpd\[5435\]: warning: unknown\[114.231.105.191\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 00:18:17 srv01 postfix/smtpd\[5435\]: warning: unknown\[114.231.105.191\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 00:18:35 srv01 postfix/smtpd\[5435\]: warning: unknown\[114.231.105.191\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-06 14:29:27
116.85.31.216	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-10-06 14:48:25
91.192.206.13	attackbotsspam	$f2bV_matches	2020-10-06 14:49:39
218.21.240.24	attack	Oct 5 19:52:50 lanister sshd[12754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.21.240.24 user=root Oct 5 19:52:52 lanister sshd[12754]: Failed password for root from 218.21.240.24 port 32917 ssh2 Oct 5 19:56:30 lanister sshd[12811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.21.240.24 user=root Oct 5 19:56:32 lanister sshd[12811]: Failed password for root from 218.21.240.24 port 25937 ssh2	2020-10-06 14:39:13
103.83.38.233	attack	Automatic report BANNED IP	2020-10-06 14:30:22

Recently Reported IPs

185.185.115.36	211.241.8.136	214.253.71.136	87.252.96.203
100.31.166.234	177.211.121.135	61.190.145.130	71.170.135.251
198.77.229.30	35.184.43.93	14.162.125.62	32.243.189.220
251.25.172.57	53.163.146.126	1.174.61.174	253.181.166.35
1.162.144.109	224.224.234.230	241.132.64.230	221.248.63.24