117.14.149.56 - IPInfo

基本信息:

城市(city): Tianjin

省份(region): Tianjin

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
117.14.149.159	attackspam	Unauthorized connection attempt detected from IP address 117.14.149.159 to port 9999 [T]	2020-01-10 08:22:57
117.14.149.239	attackbots	Unauthorized connection attempt detected from IP address 117.14.149.239 to port 2053	2019-12-31 06:29:30
117.14.149.210	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 54311a65ec56e4cc \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 04:44:12

类型

评论内容

时间

117.14.149.159

attackspam

Unauthorized connection attempt detected from IP address 117.14.149.159 to port 9999 [T]

2020-01-10 08:22:57

117.14.149.239

attackbots

Unauthorized connection attempt detected from IP address 117.14.149.239 to port 2053

2019-12-31 06:29:30

117.14.149.210

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 54311a65ec56e4cc | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 04:44:12

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.14.149.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49827
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.14.149.56.			IN	A

;; AUTHORITY SECTION:
.			543	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060101 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 02 07:40:00 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

56.149.14.117.in-addr.arpa domain name pointer dns56.online.tj.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
56.149.14.117.in-addr.arpa	name = dns56.online.tj.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
178.62.60.233	attackbots	Port Scan detected from 178.62.60.233 (GB/United Kingdom/England/London/exxonmobil.online). 4 hits in the last 240 seconds	2020-07-31 13:44:52
222.186.180.223	attackbotsspam	Jul 31 07:53:23 ucs sshd\[17533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.223 user=root Jul 31 07:53:25 ucs sshd\[17528\]: error: PAM: User not known to the underlying authentication module for root from 222.186.180.223 Jul 31 07:53:27 ucs sshd\[17534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.223 user=root ...	2020-07-31 14:01:12
103.76.175.130	attackspambots	Jul 31 12:37:44 itv-usvr-02 sshd[29799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.175.130 user=root Jul 31 12:42:30 itv-usvr-02 sshd[30063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.175.130 user=root Jul 31 12:47:06 itv-usvr-02 sshd[30236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.175.130 user=root	2020-07-31 14:17:22
1.186.57.150	attackspam	Jul 30 19:27:10 php1 sshd\[32423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.186.57.150 user=root Jul 30 19:27:13 php1 sshd\[32423\]: Failed password for root from 1.186.57.150 port 54856 ssh2 Jul 30 19:31:46 php1 sshd\[400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.186.57.150 user=root Jul 30 19:31:48 php1 sshd\[400\]: Failed password for root from 1.186.57.150 port 37916 ssh2 Jul 30 19:36:15 php1 sshd\[931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.186.57.150 user=root	2020-07-31 13:52:58
103.119.30.193	attack	2020-07-30T23:48:30.666930devel sshd[13871]: Failed password for root from 103.119.30.193 port 54762 ssh2 2020-07-30T23:54:34.907032devel sshd[14503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.119.30.193 user=root 2020-07-30T23:54:36.622864devel sshd[14503]: Failed password for root from 103.119.30.193 port 40398 ssh2	2020-07-31 14:07:58
192.241.221.159	attack	2020-07-30 04:13:42 Reject access to port(s):873 1 times a day	2020-07-31 14:18:16
139.59.75.111	attackbots	Jul 31 09:04:47 hosting sshd[12400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.75.111 user=root Jul 31 09:04:48 hosting sshd[12400]: Failed password for root from 139.59.75.111 port 33832 ssh2 ...	2020-07-31 14:16:17
178.128.90.9	attackbots	Automatic report - Banned IP Access	2020-07-31 14:05:06
218.92.0.168	attackbots	Jul 31 07:55:02 vps sshd[962712]: Failed password for root from 218.92.0.168 port 25495 ssh2 Jul 31 07:55:04 vps sshd[962712]: Failed password for root from 218.92.0.168 port 25495 ssh2 Jul 31 07:55:07 vps sshd[962712]: Failed password for root from 218.92.0.168 port 25495 ssh2 Jul 31 07:55:11 vps sshd[962712]: Failed password for root from 218.92.0.168 port 25495 ssh2 Jul 31 07:55:15 vps sshd[962712]: Failed password for root from 218.92.0.168 port 25495 ssh2 ...	2020-07-31 13:56:05
121.229.48.89	attackspambots	Jul 31 07:44:38 ip106 sshd[29683]: Failed password for root from 121.229.48.89 port 37280 ssh2 ...	2020-07-31 14:16:46
112.85.42.104	attackspam	Jul 31 07:49:32 abendstille sshd\[18465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.104 user=root Jul 31 07:49:34 abendstille sshd\[18465\]: Failed password for root from 112.85.42.104 port 23023 ssh2 Jul 31 07:49:40 abendstille sshd\[18696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.104 user=root Jul 31 07:49:42 abendstille sshd\[18696\]: Failed password for root from 112.85.42.104 port 56694 ssh2 Jul 31 07:49:49 abendstille sshd\[18824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.104 user=root ...	2020-07-31 13:54:32
191.102.51.5	attack	Tried sshing with brute force.	2020-07-31 13:43:07
45.43.36.191	attackspam	Invalid user baoyonglian from 45.43.36.191 port 59802	2020-07-31 13:53:42
106.12.13.20	attackspam	Invalid user jirong from 106.12.13.20 port 60650	2020-07-31 14:09:12
222.186.173.226	attack	Jul 31 10:41:50 gw1 sshd[19031]: Failed password for root from 222.186.173.226 port 37493 ssh2 Jul 31 10:42:03 gw1 sshd[19031]: error: maximum authentication attempts exceeded for root from 222.186.173.226 port 37493 ssh2 [preauth] ...	2020-07-31 13:46:42

最近上报的IP列表

14.112.253.84	5.12.60.240	167.116.51.55	54.67.247.113
143.136.24.101	92.37.66.189	184.3.49.74	121.210.5.206
178.231.116.144	41.160.100.138	176.238.123.254	91.122.42.156
152.179.63.196	172.248.60.79	145.90.174.194	186.1.132.81
89.246.167.181	213.114.192.137	74.89.183.223	34.197.193.170