117.14.113.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.14.113.141	attack	The IP has triggered Cloudflare WAF. CF-Ray: 543664407c06e7f5 \| WAF_Rule_ID: 1025440 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:46:46
117.14.113.96	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 5436cc9a8c84eef2 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.096783921 Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 01:05:50
117.14.113.177	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 54151bbd088aed0f \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:03:48
117.14.113.153	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5413b85498596c1a \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:57:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.14.113.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57923
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.14.113.48.			IN	A

;; AUTHORITY SECTION:
.			2	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 143 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 06:49:01 CST 2022
;; MSG SIZE  rcvd: 106

Host info

48.113.14.117.in-addr.arpa domain name pointer dns48.online.tj.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.113.14.117.in-addr.arpa	name = dns48.online.tj.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.207.139.203	attack	Jul 23 15:00:36 wp sshd[6135]: Invalid user support from 114.207.139.203 Jul 23 15:00:36 wp sshd[6135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 Jul 23 15:00:37 wp sshd[6135]: Failed password for invalid user support from 114.207.139.203 port 60022 ssh2 Jul 23 15:00:37 wp sshd[6135]: Received disconnect from 114.207.139.203: 11: Bye Bye [preauth] Jul 23 15:05:41 wp sshd[6207]: Invalid user cmt from 114.207.139.203 Jul 23 15:05:41 wp sshd[6207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 Jul 23 15:05:43 wp sshd[6207]: Failed password for invalid user cmt from 114.207.139.203 port 55144 ssh2 Jul 23 15:05:43 wp sshd[6207]: Received disconnect from 114.207.139.203: 11: Bye Bye [preauth] Jul 23 15:10:31 wp sshd[6263]: Invalid user usuario from 114.207.139.203 Jul 23 15:10:31 wp sshd[6263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu........ -------------------------------	2019-07-24 09:06:38
165.227.11.2	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-07-24 08:44:51
85.144.226.170	attack	Jul 23 23:22:28 MK-Soft-VM5 sshd\[8459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.144.226.170 user=root Jul 23 23:22:30 MK-Soft-VM5 sshd\[8459\]: Failed password for root from 85.144.226.170 port 60910 ssh2 Jul 23 23:27:15 MK-Soft-VM5 sshd\[8482\]: Invalid user fuckyou from 85.144.226.170 port 56324 ...	2019-07-24 08:23:31
37.115.184.19	attack	WordPress brute force	2019-07-24 08:37:19
122.195.200.36	attack	2019-07-24T00:21:59.322083abusebot-2.cloudsearch.cf sshd\[31292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.36 user=root	2019-07-24 08:22:30
193.92.49.162	attack	WordPress brute force	2019-07-24 08:40:19
185.85.239.110	attack	Automatic report - Banned IP Access	2019-07-24 08:54:19
112.35.46.21	attackspambots	Jul 24 02:36:19 mail sshd\[26506\]: Invalid user administrator from 112.35.46.21 port 50292 Jul 24 02:36:19 mail sshd\[26506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.46.21 Jul 24 02:36:21 mail sshd\[26506\]: Failed password for invalid user administrator from 112.35.46.21 port 50292 ssh2 Jul 24 02:38:12 mail sshd\[26724\]: Invalid user co from 112.35.46.21 port 49070 Jul 24 02:38:12 mail sshd\[26724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.46.21	2019-07-24 08:47:41
103.10.169.144	attackspam	WordPress brute force	2019-07-24 08:53:28
194.87.150.220	attackspambots	[portscan] Port scan	2019-07-24 08:56:10
185.234.218.36	attackspam	WordPress brute force	2019-07-24 08:42:47
109.195.197.173	attack	WordPress brute force	2019-07-24 08:52:43
46.105.110.79	attackbotsspam	Jul 24 02:19:31 icinga sshd[2792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.110.79 Jul 24 02:19:32 icinga sshd[2792]: Failed password for invalid user oracle from 46.105.110.79 port 34010 ssh2 ...	2019-07-24 08:28:17
104.248.177.184	attackbotsspam	Jul 24 03:06:54 lcl-usvr-02 sshd[27091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.177.184 user=root Jul 24 03:06:56 lcl-usvr-02 sshd[27091]: Failed password for root from 104.248.177.184 port 35218 ssh2 Jul 24 03:11:16 lcl-usvr-02 sshd[28160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.177.184 user=nagios Jul 24 03:11:18 lcl-usvr-02 sshd[28160]: Failed password for nagios from 104.248.177.184 port 58962 ssh2 Jul 24 03:15:36 lcl-usvr-02 sshd[29161]: Invalid user testuser from 104.248.177.184 port 54472 ...	2019-07-24 08:32:59
141.98.80.71	attack	Jul 24 00:39:00 localhost sshd\[3004\]: Invalid user admin from 141.98.80.71 port 47332 Jul 24 00:39:00 localhost sshd\[3004\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.80.71 Jul 24 00:39:02 localhost sshd\[3004\]: Failed password for invalid user admin from 141.98.80.71 port 47332 ssh2	2019-07-24 08:51:32

Recently Reported IPs

117.14.113.82	117.14.113.11	117.14.114.125	117.14.114.131
117.14.114.173	117.14.114.244	117.14.144.179	117.14.13.112
117.14.145.67	117.14.149.89	117.14.151.82	117.14.151.229
117.14.152.107	117.14.153.225	117.14.153.236	117.14.155.133
117.14.155.224	117.14.155.173	117.14.155.41	117.14.156.184