117.14.154.136

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.14.154.53	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 54330981d9a4d342 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.047745454 Mozilla/4.0 (compatible; MSIE 5.00; Windows 98) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 01:05:33

Type

Details

Datetime

117.14.154.53

attackspambots

The IP has triggered Cloudflare WAF. CF-Ray: 54330981d9a4d342 | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/4.047745454 Mozilla/4.0 (compatible; MSIE 5.00; Windows 98) | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 01:05:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.14.154.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37865
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.14.154.136.			IN	A

;; AUTHORITY SECTION:
.			22	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 19:50:55 CST 2022
;; MSG SIZE  rcvd: 107

Host info

136.154.14.117.in-addr.arpa domain name pointer dns136.online.tj.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
136.154.14.117.in-addr.arpa	name = dns136.online.tj.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.88.112.67	attackspambots	Apr 26 20:39:08 dns1 sshd[11709]: Failed password for root from 49.88.112.67 port 35555 ssh2 Apr 26 20:39:12 dns1 sshd[11709]: Failed password for root from 49.88.112.67 port 35555 ssh2 Apr 26 20:39:16 dns1 sshd[11709]: Failed password for root from 49.88.112.67 port 35555 ssh2	2020-04-27 07:48:31
95.213.194.166	attack	Apr 27 02:04:50 pkdns2 sshd\[56047\]: Address 95.213.194.166 maps to lizetto.ru, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Apr 27 02:04:50 pkdns2 sshd\[56047\]: Invalid user mk from 95.213.194.166Apr 27 02:04:52 pkdns2 sshd\[56047\]: Failed password for invalid user mk from 95.213.194.166 port 46808 ssh2Apr 27 02:09:08 pkdns2 sshd\[56248\]: Address 95.213.194.166 maps to lizetto.ru, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Apr 27 02:09:08 pkdns2 sshd\[56248\]: Invalid user ifc from 95.213.194.166Apr 27 02:09:09 pkdns2 sshd\[56248\]: Failed password for invalid user ifc from 95.213.194.166 port 56496 ssh2 ...	2020-04-27 07:21:27
210.123.141.241	attack	2020-04-26T23:01:22.744687abusebot-8.cloudsearch.cf sshd[4149]: Invalid user chandra from 210.123.141.241 port 55796 2020-04-26T23:01:22.751821abusebot-8.cloudsearch.cf sshd[4149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.123.141.241 2020-04-26T23:01:22.744687abusebot-8.cloudsearch.cf sshd[4149]: Invalid user chandra from 210.123.141.241 port 55796 2020-04-26T23:01:24.946652abusebot-8.cloudsearch.cf sshd[4149]: Failed password for invalid user chandra from 210.123.141.241 port 55796 ssh2 2020-04-26T23:07:59.635131abusebot-8.cloudsearch.cf sshd[4612]: Invalid user test from 210.123.141.241 port 60290 2020-04-26T23:07:59.644231abusebot-8.cloudsearch.cf sshd[4612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.123.141.241 2020-04-26T23:07:59.635131abusebot-8.cloudsearch.cf sshd[4612]: Invalid user test from 210.123.141.241 port 60290 2020-04-26T23:08:01.673442abusebot-8.cloudsearch.cf sshd[461 ...	2020-04-27 07:28:29
125.113.162.150	attack	Telnetd brute force attack detected by fail2ban	2020-04-27 07:17:14
194.99.22.105	attackbots	trying to access non-authorized port	2020-04-27 07:23:16
59.27.124.26	attack	Invalid user perpetua from 59.27.124.26 port 39232	2020-04-27 07:40:27
45.143.220.216	attack	[2020-04-26 19:08:07] NOTICE[1170][C-0000637a] chan_sip.c: Call from '' (45.143.220.216:50498) to extension '01146406820532' rejected because extension not found in context 'public'. [2020-04-26 19:08:07] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-26T19:08:07.733-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146406820532",SessionID="0x7f6c083b5ae8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.216/50498",ACLName="no_extension_match" [2020-04-26 19:18:07] NOTICE[1170][C-00006391] chan_sip.c: Call from '' (45.143.220.216:55079) to extension '01146633915843' rejected because extension not found in context 'public'. [2020-04-26 19:18:07] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-26T19:18:07.360-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146633915843",SessionID="0x7f6c080ab528",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/4 ...	2020-04-27 07:38:56
180.166.117.254	attackbotsspam	Invalid user raf from 180.166.117.254 port 19095	2020-04-27 07:27:08
34.67.145.173	attack	Invalid user hgrepo from 34.67.145.173 port 35728	2020-04-27 07:29:19
159.89.197.1	attack	odoo8 ...	2020-04-27 07:54:25
34.231.130.6	attack	WordPress login Brute force / Web App Attack on client site.	2020-04-27 07:23:45
173.234.249.10	attackspambots	REQUESTED PAGE: /	2020-04-27 07:39:31
165.227.182.180	attack	165.227.182.180 - - [26/Apr/2020:22:37:06 +0200] "GET /wp-login.php HTTP/1.1" 200 6435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.227.182.180 - - [26/Apr/2020:22:37:07 +0200] "POST /wp-login.php HTTP/1.1" 200 6740 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.227.182.180 - - [26/Apr/2020:22:37:09 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-27 07:35:37
141.98.9.160	attackspam	Apr 27 06:50:54 webhost01 sshd[3969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.160 Apr 27 06:50:56 webhost01 sshd[3969]: Failed password for invalid user user from 141.98.9.160 port 46517 ssh2 ...	2020-04-27 07:52:40
185.234.217.66	attack	Apr 27 00:55:05 web01.agentur-b-2.de postfix/smtpd[1678962]: warning: unknown[185.234.217.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 00:55:05 web01.agentur-b-2.de postfix/smtpd[1678962]: lost connection after AUTH from unknown[185.234.217.66] Apr 27 00:58:09 web01.agentur-b-2.de postfix/smtpd[1682789]: warning: unknown[185.234.217.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 00:58:09 web01.agentur-b-2.de postfix/smtpd[1682789]: lost connection after AUTH from unknown[185.234.217.66] Apr 27 01:00:15 web01.agentur-b-2.de postfix/smtpd[1683273]: warning: unknown[185.234.217.66]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 01:00:15 web01.agentur-b-2.de postfix/smtpd[1683273]: lost connection after AUTH from unknown[185.234.217.66]	2020-04-27 07:49:18

Recently Reported IPs

117.14.153.184	117.14.153.141	114.111.151.39	117.14.153.64
117.14.154.177	117.14.154.168	117.14.154.138	117.14.154.180
117.14.154.238	117.14.154.49	117.14.154.70	117.14.154.253
117.14.154.89	114.111.153.63	117.14.155.203	117.14.155.102
117.14.155.130	117.14.155.197	117.14.155.2	117.14.155.1