117.14.154.116

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.14.154.53	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 54330981d9a4d342 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.047745454 Mozilla/4.0 (compatible; MSIE 5.00; Windows 98) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 01:05:33

Type

Details

Datetime

117.14.154.53

attackspambots

The IP has triggered Cloudflare WAF. CF-Ray: 54330981d9a4d342 | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/4.047745454 Mozilla/4.0 (compatible; MSIE 5.00; Windows 98) | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 01:05:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.14.154.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13589
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.14.154.116.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 14:52:03 CST 2022
;; MSG SIZE  rcvd: 107

Host info

116.154.14.117.in-addr.arpa domain name pointer dns116.online.tj.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
116.154.14.117.in-addr.arpa	name = dns116.online.tj.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.170.220.66	attack	DATE:2020-03-23 07:34:27, IP:45.170.220.66, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-03-23 14:45:21
36.66.237.103	attackspam	Unauthorized connection attempt detected from IP address 36.66.237.103 to port 445	2020-03-23 14:28:44
188.121.108.179	attackspambots	Unauthorized IMAP connection attempt	2020-03-23 14:21:54
119.42.72.226	attack	1584941832 - 03/23/2020 06:37:12 Host: 119.42.72.226/119.42.72.226 Port: 445 TCP Blocked	2020-03-23 14:34:39
128.199.173.127	attackbots	Mar 22 19:53:59 web9 sshd\[14053\]: Invalid user lichengzhang from 128.199.173.127 Mar 22 19:53:59 web9 sshd\[14053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.173.127 Mar 22 19:54:01 web9 sshd\[14053\]: Failed password for invalid user lichengzhang from 128.199.173.127 port 59251 ssh2 Mar 22 20:02:44 web9 sshd\[15308\]: Invalid user furutani from 128.199.173.127 Mar 22 20:02:44 web9 sshd\[15308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.173.127	2020-03-23 14:08:42
51.91.79.232	attackbots	2020-03-23T07:34:30.867994struts4.enskede.local sshd\[18659\]: Invalid user sm from 51.91.79.232 port 48518 2020-03-23T07:34:30.877332struts4.enskede.local sshd\[18659\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=232.ip-51-91-79.eu 2020-03-23T07:34:34.059851struts4.enskede.local sshd\[18659\]: Failed password for invalid user sm from 51.91.79.232 port 48518 ssh2 2020-03-23T07:38:32.532499struts4.enskede.local sshd\[18774\]: Invalid user halflife from 51.91.79.232 port 36788 2020-03-23T07:38:32.541026struts4.enskede.local sshd\[18774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=232.ip-51-91-79.eu ...	2020-03-23 14:51:44
223.91.198.43	attackspambots	Host Scan	2020-03-23 14:25:31
60.248.137.211	attack	Honeypot attack, port: 81, PTR: 60-248-137-211.HINET-IP.hinet.net.	2020-03-23 14:05:55
137.74.44.162	attackspambots	Mar 23 07:06:36 minden010 sshd[8893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.44.162 Mar 23 07:06:38 minden010 sshd[8893]: Failed password for invalid user ursim from 137.74.44.162 port 56466 ssh2 Mar 23 07:10:12 minden010 sshd[10686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.44.162 ...	2020-03-23 14:26:03
117.92.126.66	attack	Telnet Server BruteForce Attack	2020-03-23 14:35:19
138.68.93.14	attackbots	Mar 23 05:29:37 XXXXXX sshd[18100]: Invalid user shu from 138.68.93.14 port 49770	2020-03-23 14:11:11
45.227.255.119	attack	2020-03-23T06:16:39.622794dmca.cloudsearch.cf sshd[19389]: Invalid user guest from 45.227.255.119 port 58853 2020-03-23T06:16:39.633835dmca.cloudsearch.cf sshd[19389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.227.255.119 2020-03-23T06:16:39.622794dmca.cloudsearch.cf sshd[19389]: Invalid user guest from 45.227.255.119 port 58853 2020-03-23T06:16:41.372962dmca.cloudsearch.cf sshd[19389]: Failed password for invalid user guest from 45.227.255.119 port 58853 ssh2 2020-03-23T06:16:42.664828dmca.cloudsearch.cf sshd[19395]: Invalid user admin from 45.227.255.119 port 59381 2020-03-23T06:16:42.678074dmca.cloudsearch.cf sshd[19395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.227.255.119 2020-03-23T06:16:42.664828dmca.cloudsearch.cf sshd[19395]: Invalid user admin from 45.227.255.119 port 59381 2020-03-23T06:16:44.161144dmca.cloudsearch.cf sshd[19395]: Failed password for invalid user admin from 45. ...	2020-03-23 14:20:13
13.78.49.156	attack	SSH invalid-user multiple login attempts	2020-03-23 14:08:03
218.56.11.181	attack	Mar 23 06:12:15 ns382633 sshd\[24608\]: Invalid user andra from 218.56.11.181 port 55587 Mar 23 06:12:15 ns382633 sshd\[24608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.11.181 Mar 23 06:12:17 ns382633 sshd\[24608\]: Failed password for invalid user andra from 218.56.11.181 port 55587 ssh2 Mar 23 06:37:21 ns382633 sshd\[30202\]: Invalid user robina from 218.56.11.181 port 57840 Mar 23 06:37:21 ns382633 sshd\[30202\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.11.181	2020-03-23 14:08:16
58.87.90.156	attackbots	Mar 23 09:32:40 server sshd\[26865\]: Invalid user www from 58.87.90.156 Mar 23 09:32:40 server sshd\[26865\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.90.156 Mar 23 09:32:42 server sshd\[26865\]: Failed password for invalid user www from 58.87.90.156 port 42512 ssh2 Mar 23 09:37:59 server sshd\[27989\]: Invalid user news from 58.87.90.156 Mar 23 09:37:59 server sshd\[27989\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.90.156 ...	2020-03-23 14:52:12

Recently Reported IPs

103.162.197.155	200.69.18.40	54.183.187.191	23.105.163.131
103.106.35.41	89.201.244.173	223.87.178.174	202.124.204.254
222.137.50.2	83.239.35.254	24.185.66.107	121.54.32.138
106.105.250.184	103.137.192.86	42.234.6.124	111.18.213.39
170.231.120.64	187.161.188.102	213.81.178.190	138.197.173.206