1.202.114.163 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.202.114.147	attack	Unauthorized connection attempt detected from IP address 1.202.114.147 to port 2222	2020-03-29 15:48:21
1.202.114.10	attackbotsspam	Unauthorized connection attempt detected from IP address 1.202.114.10 to port 80 [J]	2020-01-19 16:17:19
1.202.114.193	attackspam	Unauthorized connection attempt detected from IP address 1.202.114.193 to port 8088 [J]	2020-01-19 15:48:14
1.202.114.146	attackspambots	Unauthorized connection attempt detected from IP address 1.202.114.146 to port 88 [J]	2020-01-16 09:04:22
1.202.114.200	attack	Unauthorized connection attempt detected from IP address 1.202.114.200 to port 801 [T]	2020-01-10 09:05:06
1.202.114.138	attackbotsspam	Unauthorized connection attempt detected from IP address 1.202.114.138 to port 2095	2019-12-31 09:29:04
1.202.114.70	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5430b6e4ef8ad362 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/4.074482891 Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 07:49:03
1.202.114.192	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 5437c8539c4ee502 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:12:59
1.202.114.168	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5434430e1bcbe7e9 \| WAF_Rule_ID: 1122843 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 05:49:20
1.202.114.137	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54321e152bbee7a8 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 04:32:18
1.202.114.63	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 540fd0224c6f991d \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.047745454 Mozilla/4.0 (compatible; MSIE 5.00; Windows 98) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:36:17
1.202.114.139	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5412365b0aae993b \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.066686748 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 05:57:45
1.202.114.51	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 541085ba0972eba5 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.081397758 Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:48:51
1.202.114.227	attackspam	The%20IP%20has%20triggered%20Cloudflare%20WAF.%20Report%20generated%20by%20Cloudflare-WAF-to-AbuseIPDB%20(https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB)	2019-11-19 04:40:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.202.114.163
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22396
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.202.114.163.			IN	A

;; AUTHORITY SECTION:
.			306	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 12:51:48 CST 2022
;; MSG SIZE  rcvd: 106

Host info

163.114.202.1.in-addr.arpa domain name pointer 163.114.202.1.static.bjtelecom.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
163.114.202.1.in-addr.arpa	name = 163.114.202.1.static.bjtelecom.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.196.198.39	attackbotsspam	SIPVicious Scanner Detection	2020-03-23 23:23:54
49.204.83.2	attackbots	SSH brute force attempt	2020-03-23 23:23:01
117.102.77.122	attackbotsspam	Unauthorized connection attempt from IP address 117.102.77.122 on Port 445(SMB)	2020-03-23 23:24:56
103.78.215.150	attackbots	Mar 23 15:12:14 OPSO sshd\[14550\]: Invalid user xs from 103.78.215.150 port 41824 Mar 23 15:12:14 OPSO sshd\[14550\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.78.215.150 Mar 23 15:12:16 OPSO sshd\[14550\]: Failed password for invalid user xs from 103.78.215.150 port 41824 ssh2 Mar 23 15:16:59 OPSO sshd\[15512\]: Invalid user tiglas from 103.78.215.150 port 53258 Mar 23 15:16:59 OPSO sshd\[15512\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.78.215.150	2020-03-23 23:38:48
190.94.253.90	attackbots	[Fri Feb 21 09:05:22 2020] - Syn Flood From IP: 190.94.253.90 Port: 51887	2020-03-23 23:31:38
112.78.179.187	attack	Unauthorized connection attempt from IP address 112.78.179.187 on Port 445(SMB)	2020-03-23 23:44:54
37.9.113.46	attackspambots	[Mon Mar 23 13:33:17.040678 2020] [:error] [pid 12025:tid 140082296121088] [client 37.9.113.46:39081] [client 37.9.113.46] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XnhYLZTvzXcW1ZBn8PPmIQAAARA"] ...	2020-03-23 22:57:18
180.183.29.37	attackspam	Unauthorized connection attempt from IP address 180.183.29.37 on Port 445(SMB)	2020-03-23 23:13:05
123.146.23.143	attackspam	[Fri Mar 13 20:23:48 2020] - Syn Flood From IP: 123.146.23.143 Port: 6000	2020-03-23 23:26:24
62.30.143.34	attack	Honeypot attack, port: 81, PTR: 34.143-30-62.static.virginmediabusiness.co.uk.	2020-03-23 23:00:42
176.33.139.206	attackspam	Unauthorized connection attempt from IP address 176.33.139.206 on Port 445(SMB)	2020-03-23 23:10:07
148.72.232.30	attack	xmlrpc attack	2020-03-23 23:38:31
49.146.34.120	attack	Unauthorized connection attempt from IP address 49.146.34.120 on Port 445(SMB)	2020-03-23 23:30:34
36.70.12.85	attackbots	[Wed Mar 11 06:00:07 2020] - Syn Flood From IP: 36.70.12.85 Port: 61913	2020-03-23 22:55:34
195.24.140.254	attackspam	[Mon Mar 09 08:13:32 2020] - Syn Flood From IP: 195.24.140.254 Port: 53130	2020-03-23 23:47:46

Recently Reported IPs

1.202.114.162	1.202.114.164	1.202.114.155	1.202.114.118
1.202.114.206	1.202.114.197	1.202.114.214	1.202.114.159
1.202.114.16	1.202.114.195	1.202.114.24	1.202.114.221
1.202.114.232	1.202.114.167	1.202.114.32	1.202.114.215
1.202.114.250	1.202.114.60	1.202.114.61	1.202.114.85