1.202.114.234 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.202.114.147	attack	Unauthorized connection attempt detected from IP address 1.202.114.147 to port 2222	2020-03-29 15:48:21
1.202.114.10	attackbotsspam	Unauthorized connection attempt detected from IP address 1.202.114.10 to port 80 [J]	2020-01-19 16:17:19
1.202.114.193	attackspam	Unauthorized connection attempt detected from IP address 1.202.114.193 to port 8088 [J]	2020-01-19 15:48:14
1.202.114.146	attackspambots	Unauthorized connection attempt detected from IP address 1.202.114.146 to port 88 [J]	2020-01-16 09:04:22
1.202.114.200	attack	Unauthorized connection attempt detected from IP address 1.202.114.200 to port 801 [T]	2020-01-10 09:05:06
1.202.114.138	attackbotsspam	Unauthorized connection attempt detected from IP address 1.202.114.138 to port 2095	2019-12-31 09:29:04
1.202.114.70	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5430b6e4ef8ad362 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/4.074482891 Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 07:49:03
1.202.114.192	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 5437c8539c4ee502 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:12:59
1.202.114.168	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5434430e1bcbe7e9 \| WAF_Rule_ID: 1122843 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 05:49:20
1.202.114.137	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54321e152bbee7a8 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 04:32:18
1.202.114.63	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 540fd0224c6f991d \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.047745454 Mozilla/4.0 (compatible; MSIE 5.00; Windows 98) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:36:17
1.202.114.139	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5412365b0aae993b \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.066686748 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 05:57:45
1.202.114.51	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 541085ba0972eba5 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.081397758 Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:48:51
1.202.114.227	attackspam	The%20IP%20has%20triggered%20Cloudflare%20WAF.%20Report%20generated%20by%20Cloudflare-WAF-to-AbuseIPDB%20(https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB)	2019-11-19 04:40:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.202.114.234
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18074
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.202.114.234.			IN	A

;; AUTHORITY SECTION:
.			399	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 06:25:19 CST 2022
;; MSG SIZE  rcvd: 106

Host info

234.114.202.1.in-addr.arpa domain name pointer 234.114.202.1.static.bjtelecom.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
234.114.202.1.in-addr.arpa	name = 234.114.202.1.static.bjtelecom.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.130.23.2	attack	Unauthorized connection attempt from IP address 203.130.23.2 on Port 445(SMB)	2020-05-20 20:47:53
158.175.132.234	attackspam	Invalid user jmt from 158.175.132.234 port 60260	2020-05-20 20:31:24
51.158.77.33	attack	16 May 2020 07:42:13 SRC=51.158.77.33 DPT=22 18:19:57 SRC=51.158.77.33 DPT=22 21:12:25 SRC=51.158.77.33 DPT=22	2020-05-20 20:32:01
59.57.153.245	attackbots	Invalid user ti from 59.57.153.245 port 48170	2020-05-20 20:46:49
179.191.65.214	attackspambots	May 20 07:25:53 master sshd[21822]: Failed password for invalid user ecv from 179.191.65.214 port 41160 ssh2 May 20 07:38:04 master sshd[22269]: Failed password for invalid user ziy from 179.191.65.214 port 52180 ssh2 May 20 07:44:10 master sshd[22363]: Failed password for invalid user qmm from 179.191.65.214 port 55086 ssh2 May 20 07:49:53 master sshd[22428]: Failed password for invalid user zzi from 179.191.65.214 port 57990 ssh2 May 20 07:55:43 master sshd[22493]: Failed password for invalid user gpm from 179.191.65.214 port 60896 ssh2 May 20 08:01:32 master sshd[22936]: Failed password for invalid user nkb from 179.191.65.214 port 35566 ssh2 May 20 08:06:59 master sshd[22957]: Failed password for invalid user aiz from 179.191.65.214 port 38475 ssh2 May 20 08:12:32 master sshd[23060]: Failed password for invalid user xsa from 179.191.65.214 port 41378 ssh2 May 20 08:18:03 master sshd[23128]: Failed password for invalid user ep from 179.191.65.214 port 44285 ssh2	2020-05-20 20:55:26
58.27.99.112	attackbotsspam	May 20 10:27:26 lnxded63 sshd[8062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.27.99.112	2020-05-20 20:39:46
202.77.105.110	attackbotsspam	DATE:2020-05-20 14:30:49, IP:202.77.105.110, PORT:ssh SSH brute force auth (docker-dc)	2020-05-20 20:34:25
2.35.180.242	attackbots	Automatic report - Port Scan Attack	2020-05-20 20:38:39
178.46.214.140	attackspam	[WedMay2009:46:24.7148142020][:error][pid20228:tid47673549813504][client178.46.214.140:2392][client178.46.214.140]ModSecurity:Accessdeniedwithcode403$phase2$.detectedSQLiusinglibinjectionwithfingerprint'sc'[file"/etc/apache2/conf.d/modsec_rules/11_asl_adv_rules.conf"][line"87"][id"341245"][rev"43"][msg"Atomicorp.comWAFRules:SQLinjectionattack$detectSQLi$"][data"sc\,ARGS:lang"][severity"CRITICAL"][tag"SQLi"][hostname"appetit-sa.ch"][uri"/"][unique_id"XsTgUAP-xtnYYnr8WtJabgAAAAo"][WedMay2009:46:25.1573732020][:error][pid20228:tid47673549813504][client178.46.214.140:2392][client178.46.214.140]ModSecurity:Accessdeniedwithcode403$phase2$.detectedSQLiusinglibinjectionwithfingerprint'sc'[file"/etc/apache2/conf.d/modsec_rules/11_asl_adv_rules.conf"][line"87"][id"341245"][rev"43"][msg"Atomicorp.comWAFRules:SQLinjectionattack$detectSQLi$"][data"sc\,ARGS:lang"][severity"CRITICAL"][tag"SQLi"][hostname"appetit-sa.ch"][uri"/"][unique_id"XsTgUQP-xtnYYnr8WtJabwAAAAo"]	2020-05-20 20:28:59
49.233.172.85	attackbots	$f2bV_matches	2020-05-20 20:45:26
49.233.180.151	attackspam	May 20 07:35:59 ws12vmsma01 sshd[3198]: Invalid user sit from 49.233.180.151 May 20 07:36:01 ws12vmsma01 sshd[3198]: Failed password for invalid user sit from 49.233.180.151 port 51356 ssh2 May 20 07:45:16 ws12vmsma01 sshd[4633]: Invalid user loc from 49.233.180.151 ...	2020-05-20 20:45:10
202.129.211.211	attackbotsspam	Unauthorized connection attempt from IP address 202.129.211.211 on Port 445(SMB)	2020-05-20 20:35:51
49.233.192.22	attack	$f2bV_matches	2020-05-20 20:43:29
51.38.134.150	attackbotsspam	$f2bV_matches	2020-05-20 20:22:14
103.129.220.40	attackbots	$f2bV_matches	2020-05-20 20:37:11

Recently Reported IPs

1.202.114.198	1.202.114.27	1.202.114.29	1.202.114.4
1.202.114.47	1.202.114.84	1.202.115.169	1.202.115.50
1.202.114.95	1.202.116.4	1.202.116.41	1.202.117.71
1.202.118.203	1.202.116.70	1.202.119.107	1.202.74.102
1.202.9.67	1.203.100.14	1.203.183.73	1.204.100.19