117.14.149.7 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.14.149.159	attackspam	Unauthorized connection attempt detected from IP address 117.14.149.159 to port 9999 [T]	2020-01-10 08:22:57
117.14.149.239	attackbots	Unauthorized connection attempt detected from IP address 117.14.149.239 to port 2053	2019-12-31 06:29:30
117.14.149.210	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 54311a65ec56e4cc \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 04:44:12

Type

Details

Datetime

117.14.149.159

attackspam

Unauthorized connection attempt detected from IP address 117.14.149.159 to port 9999 [T]

2020-01-10 08:22:57

117.14.149.239

attackbots

Unauthorized connection attempt detected from IP address 117.14.149.239 to port 2053

2019-12-31 06:29:30

117.14.149.210

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 54311a65ec56e4cc | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 04:44:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.14.149.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41967
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.14.149.7.			IN	A

;; AUTHORITY SECTION:
.			542	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061200 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 12 20:01:53 CST 2022
;; MSG SIZE  rcvd: 105

Host info

7.149.14.117.in-addr.arpa domain name pointer dns7.online.tj.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
7.149.14.117.in-addr.arpa	name = dns7.online.tj.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.177.53	attack	Aug 19 22:49:31 onepixel sshd[977477]: Invalid user a from 106.13.177.53 port 59590 Aug 19 22:49:31 onepixel sshd[977477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.177.53 Aug 19 22:49:31 onepixel sshd[977477]: Invalid user a from 106.13.177.53 port 59590 Aug 19 22:49:33 onepixel sshd[977477]: Failed password for invalid user a from 106.13.177.53 port 59590 ssh2 Aug 19 22:53:57 onepixel sshd[980005]: Invalid user admin from 106.13.177.53 port 34284	2020-08-20 07:29:52
182.150.44.41	attack	Aug 19 23:54:09 eventyay sshd[30611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.150.44.41 Aug 19 23:54:11 eventyay sshd[30611]: Failed password for invalid user ester from 182.150.44.41 port 35986 ssh2 Aug 19 23:58:20 eventyay sshd[30798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.150.44.41 ...	2020-08-20 07:16:32
119.45.142.15	attackspambots	Invalid user shuchang from 119.45.142.15 port 41616	2020-08-20 07:02:04
72.129.173.3	attackspambots	SSH login attempts.	2020-08-20 07:25:34
2001:41d0:8:6a34::	attack	WordPress wp-login brute force :: 2001:41d0:8:6a34:: 0.076 BYPASS [19/Aug/2020:20:51:03 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2573 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-20 07:18:11
198.12.227.90	attack	198.12.227.90 - - [19/Aug/2020:22:51:08 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [19/Aug/2020:22:51:09 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [19/Aug/2020:22:51:11 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [19/Aug/2020:22:51:12 +0200] "POST /wp-login.php HTTP/1.1" 200 1799 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [19/Aug/2020:22:51:12 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.227.90 - - [19/Aug/2020:22:51:13 +0200] "POST /wp-login.php HTTP/1.1" 200 1798 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Fir ...	2020-08-20 07:06:33
75.112.68.166	attackspambots	SSH login attempts.	2020-08-20 07:34:25
75.105.196.189	attackbotsspam	SSH login attempts.	2020-08-20 07:19:18
58.246.174.74	attack	Aug 20 01:10:21 cosmoit sshd[10732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.246.174.74	2020-08-20 07:21:42
171.34.78.111	attackbotsspam	2020-08-19T21:57:14.996701shield sshd\[24549\]: Invalid user zhanghw from 171.34.78.111 port 4495 2020-08-19T21:57:15.020460shield sshd\[24549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.34.78.111 2020-08-19T21:57:16.836953shield sshd\[24549\]: Failed password for invalid user zhanghw from 171.34.78.111 port 4495 ssh2 2020-08-19T22:01:52.330863shield sshd\[26035\]: Invalid user leandro from 171.34.78.111 port 4496 2020-08-19T22:01:52.358066shield sshd\[26035\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.34.78.111	2020-08-20 07:05:45
222.186.175.167	attackspam	Aug 19 19:07:04 ny01 sshd[28565]: Failed password for root from 222.186.175.167 port 33438 ssh2 Aug 19 19:07:16 ny01 sshd[28565]: error: maximum authentication attempts exceeded for root from 222.186.175.167 port 33438 ssh2 [preauth] Aug 19 19:07:22 ny01 sshd[28597]: Failed password for root from 222.186.175.167 port 39344 ssh2	2020-08-20 07:31:51
106.12.91.36	attackspambots	Aug 20 01:23:46 cosmoit sshd[11985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.91.36	2020-08-20 07:30:13
182.61.138.203	attackspam	Invalid user elastic from 182.61.138.203 port 44134	2020-08-20 07:10:43
74.91.16.210	attack	SSH login attempts.	2020-08-20 07:06:54
75.105.198.90	attackspam	SSH login attempts.	2020-08-20 07:21:15

Recently Reported IPs

116.48.130.137	178.137.16.35	216.152.252.40	114.238.145.38
124.72.32.52	169.229.1.53	178.137.16.142	140.213.7.48
117.94.79.203	137.226.43.76	137.226.43.35	137.226.64.176
190.138.132.235	190.52.36.190	137.226.44.158	137.226.44.9
188.143.233.157	114.98.26.176	178.137.16.98	178.137.16.160