JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 191.235.99.14

191.235.99.14 was found in our database!

This IP was reported 321 times. Confidence of Abuse is 100%: ?

100%

ISP	Microsoft do Brasil Imp. e Com. Software e Video G
Usage Type	Data Center/Web Hosting/Transit
ASN	AS8075
Domain Name	microsoft.com
Country	🇧🇷 Brazil
City	Campinas, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 191.235.99.14

Whois 191.235.99.14

IP Abuse Reports for 191.235.99.14:

This IP address has been reported a total of 321 times from 268 distinct sources. 191.235.99.14 was first reported on May 29th 2026, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 openstrike.co.uk	2026-05-30 05:13:34 (5 days ago)	557 attacks on PHP URLs: GET /flower.php HTTP/1.1	Web App Attack
🇺🇸 octageeks.com	2026-05-30 04:06:37 (5 days ago)	Wordpress malicious attack:[octascan]	Web App Attack
Anonymous	2026-05-30 01:50:55 (5 days ago)	Repeated unauthorized connection attempts to restricted service observed.	Port Scan Hacking Bad Web Bot Web App Attack
🇺🇸 antlac1	2026-05-30 01:49:28 (5 days ago)	crowdsecurity/http-probing	Brute-Force Web App Attack
🇩🇪 Trueforce Threat Report	2026-05-30 01:48:20 (5 days ago)	Automated report, trolling for resource vulnerabilities	Bad Web Bot Web App Attack
🇩🇪 itsolon	2026-05-30 01:45:34 (5 days ago)	[30/May/2026:03:45:28 +0200] 178010552829.467583 191.235.99.14 16344 217.154.7.177 443 [30/May/2026: ... show more [30/May/2026:03:45:28 +0200] 178010552829.467583 191.235.99.14 16344 217.154.7.177 443 [30/May/2026:03:45:30 +0200] 178010553070.623319 191.235.99.14 16272 217.154.7.177 80 [30/May/2026:03:45:30 +0200] 178010553071.528605 191.235.99.14 16344 217.154.7.177 443 [30/May/2026:03:45:32 +0200] 178010553270.847558 191.235.99.14 16272 217.154.7.177 80 [30/May/2026:03:45:32 +0200] 178010553292.039339 191.235.99.14 16344 217.154.7.177 443 ... show less	Port Scan Hacking Brute-Force Web App Attack
🇳🇱 thedreamer.nl	2026-05-30 01:42:54 (5 days ago)	191.235.99.14 - - [30/May/2026:03:37:37 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 191.235.99.14 - - [30/May/2026:03:37:37 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 404 27 "-" "-" "BR" "Campinas" "-22.90350" "-47.05650" 191.235.99.14 - - [30/May/2026:03:37:38 +0200] "GET /x.php HTTP/1.1" 404 27 "-" "-" "BR" "Campinas" "-22.90350" "-47.05650" 191.235.99.14 - - [30/May/2026:03:37:38 +0200] "GET /wpconf.php HTTP/1.1" 404 27 "-" "-" "BR" "Campinas" "-22.90350" "-47.05650" 191.235.99.14 - - [30/May/2026:03:37:39 +0200] "GET /aaf.php HTTP/1.1" 404 27 "-" "-" "BR" "Campinas" "-22.90350" "-47.05650" ... show less	Brute-Force Bad Web Bot
🇩🇪 Jarda_H	2026-05-30 01:40:56 (5 days ago)	http-probing	Web App Attack
🇩🇪 igerman	2026-05-30 01:39:16 (5 days ago)	caddy probes: web: GET /155.php(DROP), GET /201.php(DROP), GET /25d653587fdfd1.php(DROP), GET /aaf.p ... show more caddy probes: web: GET /155.php(DROP), GET /201.php(DROP), GET /25d653587fdfd1.php(DROP), GET /aaf.php(DROP), GET /alfa403.php(DROP), GET /c55cdler.php(DROP), GET /eid.php(DROP), GET /error_log.php(DROP), GET /ha.php(DROP), GET /hellcut.php(DROP), GET /htt.php(DROP), GET /ingfo.php(DROP), GET /koala.php(DROP), GET /mac.php(DROP), GET /ops.php(DROP), GET /ppp.php(DROP), GET /samll.php(DROP), GET /tdd.php(DROP), GET /test11.php(DROP), GET /tw0.php(DROP), GET /wander.php(DROP), GET /wpconf.php(DROP), GET /x.php(DROP), GET /xenon1337.php(DROP) \| wordpress: GET /wp-content/plugins/hellopress/wp_filemanager.php(DROP) show less	Web App Attack
🇩🇪 ITSNF	2026-05-30 01:30:06 (5 days ago)	Blocked by os-abuseipdb; 5 hits, proto=tcp, ports=80	Port Scan Hacking
Anonymous	2026-05-30 01:27:28 (5 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-probing	Web App Attack Hacking
🇩🇪 Philister11	2026-05-30 01:26:59 (5 days ago)	CrowdSec: crowdsecurity/http-probing (BR/AS8075)	Web App Attack Hacking
Anonymous	2026-05-30 01:25:16 (5 days ago)	191.235.99.14 - - [30/May/2026:03:25:15 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.ph ... show more 191.235.99.14 - - [30/May/2026:03:25:15 +0200] "GET /wp-content/plugins/hellopress/wp_filemanager.php HTTP/1.1" 402 805 "-" "-" ... show less	Web App Attack
🇳🇱 debestelapp	2026-05-30 01:20:01 (5 days ago)		Web App Attack
🇱🇺 conseilgouz	2026-05-30 01:10:54 (5 days ago)	are-7 : Trying access unauthorized files/dir=>/wp-content/plugins/hellopress/wp_filemanager.php	Hacking

Showing 16 to 30 of 321 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 152.32.150.26

🇪🇸 141.109.168.149

🇷🇺 81.23.173.32

🇨🇳 60.13.7.139

🇧🇷 201.77.124.248

🇵🇱 162.158.102.31

🇹🇷 131.222.247.53

🇨🇳 101.96.234.229

🇭🇰 101.36.124.127

🇳🇱 81.19.216.72

🇸🇪 65.99.181.123

🇺🇸 52.190.140.97

🇺🇸 23.22.99.102

🇺🇸 2607:f8b0:4023:1006::12c

🇸🇾 193.43.145.226

🇧🇷 177.86.21.41

🇳🇱 159.223.238.255

🇺🇦 95.158.29.196

🇰🇷 59.16.212.232

🇹🇿 41.59.229.33