123.145.5.92 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Chongqing Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	The IP has triggered Cloudflare WAF. CF-Ray: 541222f6f808ed47 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.062334851 Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-07 23:37:05

Type

Details

Datetime

attack

The IP has triggered Cloudflare WAF. CF-Ray: 541222f6f808ed47 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: ip.skk.moe | User-Agent: Mozilla/5.062334851 Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 | CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-07 23:37:05

Comments on same subnet:

IP	Type	Details	Datetime
123.145.5.55	attackbots	Unauthorized connection attempt detected from IP address 123.145.5.55 to port 1521	2020-03-29 13:22:33
123.145.56.144	attackbotsspam	Brute force blocker - service: proftpd1 - aantal: 94 - Tue May 1 23:55:15 2018	2020-02-25 07:20:13
123.145.5.26	attackbots	Unauthorized connection attempt detected from IP address 123.145.5.26 to port 8000 [J]	2020-01-27 14:43:35

Type

Details

Datetime

123.145.5.55

attackbots

Unauthorized connection attempt detected from IP address 123.145.5.55 to port 1521

2020-03-29 13:22:33

123.145.56.144

attackbotsspam

Brute force blocker - service: proftpd1 - aantal: 94 - Tue May  1 23:55:15 2018

2020-02-25 07:20:13

123.145.5.26

attackbots

Unauthorized connection attempt detected from IP address 123.145.5.26 to port 8000 [J]

2020-01-27 14:43:35

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.145.5.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56731
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.145.5.92.			IN	A

;; AUTHORITY SECTION:
.			469	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120700 1800 900 604800 86400

;; Query time: 1113 msec
;; SERVER: 183.60.82.98#53(183.60.82.98)
;; WHEN: Sat Dec 07 23:40:46 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 92.5.145.123.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 92.5.145.123.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
27.68.119.115	attackspam	Telnet/23 MH Probe, BF, Hack -	2020-02-12 21:48:05
222.186.42.136	attackspam	Feb 12 13:16:52 marvibiene sshd[1895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root Feb 12 13:16:54 marvibiene sshd[1895]: Failed password for root from 222.186.42.136 port 16337 ssh2 Feb 12 13:16:56 marvibiene sshd[1895]: Failed password for root from 222.186.42.136 port 16337 ssh2 Feb 12 13:16:52 marvibiene sshd[1895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.136 user=root Feb 12 13:16:54 marvibiene sshd[1895]: Failed password for root from 222.186.42.136 port 16337 ssh2 Feb 12 13:16:56 marvibiene sshd[1895]: Failed password for root from 222.186.42.136 port 16337 ssh2 ...	2020-02-12 21:20:26
46.38.144.49	attack	Scanning and Vuln Attempts	2020-02-12 21:37:19
222.186.42.136	attackspam	IP blocked	2020-02-12 22:00:26
104.236.52.94	attackspam	SSH Login Failed	2020-02-12 21:31:02
27.74.51.242	attackspambots	Automatic report - Port Scan Attack	2020-02-12 21:31:44
186.95.69.107	attack	20/2/12@08:47:10: FAIL: Alarm-Network address from=186.95.69.107 ...	2020-02-12 21:53:52
35.172.236.234	attack	Feb 12 06:00:59 silence02 sshd[2122]: Failed password for root from 35.172.236.234 port 54106 ssh2 Feb 12 06:04:00 silence02 sshd[2374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.172.236.234 Feb 12 06:04:02 silence02 sshd[2374]: Failed password for invalid user rokiah from 35.172.236.234 port 55298 ssh2	2020-02-12 21:26:37
219.239.47.66	attackspambots	Feb 12 14:43:15 legacy sshd[389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.239.47.66 Feb 12 14:43:18 legacy sshd[389]: Failed password for invalid user dysis from 219.239.47.66 port 49374 ssh2 Feb 12 14:47:07 legacy sshd[618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.239.47.66 ...	2020-02-12 21:57:15
193.112.67.137	attack	Brute force SMTP login attempted. ...	2020-02-12 21:18:38
92.118.27.202	attack	Invalid user admin from 92.118.27.202 port 41928	2020-02-12 21:23:58
46.101.224.184	attackbotsspam	$f2bV_matches	2020-02-12 21:49:38
3.115.48.1	attack	SSH bruteforce (Triggered fail2ban)	2020-02-12 21:38:37
220.133.88.86	attackspambots	firewall-block, port(s): 23/tcp	2020-02-12 22:02:03
185.85.190.132	attackspam	CMS brute force ...	2020-02-12 21:33:04

Recently Reported IPs

13.129.127.247	192.244.95.151	175.184.167.54	171.34.179.71
149.129.108.175	125.118.4.30	124.225.47.233	123.232.225.10
123.160.174.146	123.145.32.68	122.96.73.26	116.252.0.40
113.128.104.210	113.77.1.91	112.230.42.241	112.193.168.107
110.177.73.178	133.185.23.5	82.202.226.102	60.186.110.203