117.14.149.162

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.14.149.159	attackspam	Unauthorized connection attempt detected from IP address 117.14.149.159 to port 9999 [T]	2020-01-10 08:22:57
117.14.149.239	attackbots	Unauthorized connection attempt detected from IP address 117.14.149.239 to port 2053	2019-12-31 06:29:30
117.14.149.210	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 54311a65ec56e4cc \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 04:44:12

Type

Details

Datetime

117.14.149.159

attackspam

Unauthorized connection attempt detected from IP address 117.14.149.159 to port 9999 [T]

2020-01-10 08:22:57

117.14.149.239

attackbots

Unauthorized connection attempt detected from IP address 117.14.149.239 to port 2053

2019-12-31 06:29:30

117.14.149.210

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 54311a65ec56e4cc | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 04:44:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.14.149.162
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51570
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.14.149.162.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 13:54:56 CST 2022
;; MSG SIZE  rcvd: 107

Host info

162.149.14.117.in-addr.arpa domain name pointer dns162.online.tj.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
162.149.14.117.in-addr.arpa	name = dns162.online.tj.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.64.127.106	attackspambots	Invalid user ip from 212.64.127.106 port 50565	2019-12-28 16:33:11
80.82.70.239	attackbots	Dec 28 08:20:40 h2177944 kernel: \[716340.506099\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.70.239 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=29606 PROTO=TCP SPT=51819 DPT=3873 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 28 08:20:40 h2177944 kernel: \[716340.506112\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.70.239 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=29606 PROTO=TCP SPT=51819 DPT=3873 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 28 08:27:49 h2177944 kernel: \[716768.908260\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.70.239 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=38285 PROTO=TCP SPT=51819 DPT=3885 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 28 09:07:26 h2177944 kernel: \[719146.197920\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.70.239 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=30334 PROTO=TCP SPT=51819 DPT=3881 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 28 09:07:26 h2177944 kernel: \[719146.197934\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.70.239 DST=85.214.117.9 LEN=40 TO	2019-12-28 16:20:05
14.192.24.66	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-28 16:09:34
24.51.198.19	attack	Honeypot attack, port: 23, PTR: crlspr-24.51.198.19.myacc.net.	2019-12-28 16:33:34
176.126.167.111	attackbots	Honeypot attack, port: 445, PTR: devfasterkg.kg.	2019-12-28 16:02:04
51.38.186.207	attackbotsspam	SSH auth scanning - multiple failed logins	2019-12-28 16:04:10
145.131.21.209	attackbots	Dec 28 07:27:31 lnxmail61 sshd[13728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.131.21.209 Dec 28 07:27:31 lnxmail61 sshd[13728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.131.21.209 Dec 28 07:27:33 lnxmail61 sshd[13728]: Failed password for invalid user kroska from 145.131.21.209 port 58894 ssh2	2019-12-28 16:26:46
159.65.137.23	attack	Dec 28 07:27:18 localhost sshd\[129319\]: Invalid user monroe from 159.65.137.23 port 52002 Dec 28 07:27:18 localhost sshd\[129319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.137.23 Dec 28 07:27:20 localhost sshd\[129319\]: Failed password for invalid user monroe from 159.65.137.23 port 52002 ssh2 Dec 28 07:30:27 localhost sshd\[129411\]: Invalid user freund from 159.65.137.23 port 55976 Dec 28 07:30:27 localhost sshd\[129411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.137.23 ...	2019-12-28 16:35:03
213.147.113.131	attack	Dec 28 08:06:55 debian-2gb-nbg1-2 kernel: \[1169534.707184\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=213.147.113.131 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=35567 PROTO=TCP SPT=53608 DPT=1624 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-28 16:15:52
223.17.240.180	attackspam	Honeypot attack, port: 23, PTR: 180-240-17-223-on-nets.com.	2019-12-28 16:05:26
178.63.11.212	attackbots	Automated report (2019-12-28T06:43:22+00:00). Misbehaving bot detected at this address.	2019-12-28 16:07:32
218.92.0.138	attackspam	Dec 28 04:28:51 server sshd\[15313\]: Failed password for root from 218.92.0.138 port 31336 ssh2 Dec 28 04:28:51 server sshd\[15325\]: Failed password for root from 218.92.0.138 port 32642 ssh2 Dec 28 11:10:48 server sshd\[30835\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root Dec 28 11:10:50 server sshd\[30835\]: Failed password for root from 218.92.0.138 port 44523 ssh2 Dec 28 11:10:53 server sshd\[30835\]: Failed password for root from 218.92.0.138 port 44523 ssh2 ...	2019-12-28 16:11:17
129.204.198.172	attackspambots	Dec 28 07:06:01 herz-der-gamer sshd[12417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.198.172 user=uucp Dec 28 07:06:03 herz-der-gamer sshd[12417]: Failed password for uucp from 129.204.198.172 port 40692 ssh2 Dec 28 07:28:08 herz-der-gamer sshd[12755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.198.172 user=backup Dec 28 07:28:09 herz-der-gamer sshd[12755]: Failed password for backup from 129.204.198.172 port 46660 ssh2 ...	2019-12-28 16:17:58
180.166.229.46	attackbotsspam	firewall-block, port(s): 1433/tcp	2019-12-28 16:29:21
5.135.253.172	attackbotsspam	Dec 28 07:40:29 minden010 sshd[2452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.253.172 Dec 28 07:40:31 minden010 sshd[2452]: Failed password for invalid user clarrissa from 5.135.253.172 port 43400 ssh2 Dec 28 07:42:26 minden010 sshd[3100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.253.172 ...	2019-12-28 16:06:48

Recently Reported IPs

117.14.147.193	117.14.149.171	117.14.150.172	117.14.149.33
117.14.150.130	117.14.151.76	117.14.150.182	117.14.150.249
117.14.152.170	117.14.154.141	117.14.154.199	117.14.154.249
117.14.152.79	117.14.153.74	117.14.154.55	117.14.154.98
117.14.150.108	117.14.155.181	117.14.155.99	117.14.156.255