149.129.80.92 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Malaysia

Internet Service Provider: AliCloud

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541402358d4bd956 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: d.skk.moe \| User-Agent: Opera/9.80 (Windows NT 6.0) Presto/2.12.388 Version/12.14 \| CF_DC: HKG. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:11:39

Type

Details

Datetime

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541402358d4bd956 | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: d.skk.moe | User-Agent: Opera/9.80 (Windows NT 6.0) Presto/2.12.388 Version/12.14 | CF_DC: HKG. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 06:11:39

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.129.80.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38146
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.129.80.92.			IN	A

;; AUTHORITY SECTION:
.			449	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 127 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 06:11:35 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 92.80.129.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 92.80.129.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.79.19.97	attack	/2018/wp-includes/wlwmanifest.xml	2020-06-06 16:50:48
187.114.216.72	attackspam	Unauthorized connection attempt from IP address 187.114.216.72 on Port 445(SMB)	2020-06-06 17:20:55
118.69.35.115	attackspam	Unauthorized connection attempt from IP address 118.69.35.115 on Port 445(SMB)	2020-06-06 17:24:05
192.155.89.94	attackspam	port scan and connect, tcp 5000 (upnp)	2020-06-06 17:00:55
146.185.163.81	attackspam	Unauthorized connection attempt detected, IP banned.	2020-06-06 16:57:20
49.232.161.243	attack	Jun 6 10:42:23 mout sshd[29045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.161.243 user=root Jun 6 10:42:25 mout sshd[29045]: Failed password for root from 49.232.161.243 port 57262 ssh2	2020-06-06 17:00:26
134.209.90.139	attackbotsspam	20 attempts against mh-ssh on cloud	2020-06-06 16:48:15
107.174.66.229	attackspam	$f2bV_matches	2020-06-06 17:23:15
182.232.236.213	attackspambots	Unauthorized connection attempt from IP address 182.232.236.213 on Port 445(SMB)	2020-06-06 17:17:52
123.20.118.40	attackspam	1591416950 - 06/06/2020 06:15:50 Host: 123.20.118.40/123.20.118.40 Port: 445 TCP Blocked	2020-06-06 17:22:48
217.23.13.125	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-06T08:00:59Z and 2020-06-06T08:28:20Z	2020-06-06 17:28:54
5.236.93.73	attack	Unauthorized connection attempt from IP address 5.236.93.73 on Port 445(SMB)	2020-06-06 17:12:46
132.232.66.227	attackbotsspam	$f2bV_matches	2020-06-06 16:57:44
51.75.66.142	attackbots	Jun 6 09:18:17 DAAP sshd[12980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.66.142 user=root Jun 6 09:18:19 DAAP sshd[12980]: Failed password for root from 51.75.66.142 port 48340 ssh2 Jun 6 09:22:34 DAAP sshd[13034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.66.142 user=root Jun 6 09:22:36 DAAP sshd[13034]: Failed password for root from 51.75.66.142 port 55824 ssh2 Jun 6 09:26:24 DAAP sshd[13069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.66.142 user=root Jun 6 09:26:26 DAAP sshd[13069]: Failed password for root from 51.75.66.142 port 59942 ssh2 ...	2020-06-06 17:07:06
116.247.81.99	attackbots	Jun 6 11:03:21 ift sshd\[47213\]: Failed password for root from 116.247.81.99 port 39770 ssh2Jun 6 11:07:17 ift sshd\[47848\]: Invalid user 123\r from 116.247.81.99Jun 6 11:07:19 ift sshd\[47848\]: Failed password for invalid user 123\r from 116.247.81.99 port 57113 ssh2Jun 6 11:11:08 ift sshd\[48349\]: Invalid user orlando123\r from 116.247.81.99Jun 6 11:11:10 ift sshd\[48349\]: Failed password for invalid user orlando123\r from 116.247.81.99 port 46224 ssh2 ...	2020-06-06 16:54:16

Recently Reported IPs

235.5.212.197	9.87.235.35	217.175.70.221	222.82.52.97
222.82.51.232	56.111.150.231	152.96.163.54	221.13.12.165
221.13.12.76	221.0.21.52	218.62.245.43	205.210.164.245
115.241.202.154	117.82.213.30	203.186.25.39	183.211.73.133
183.157.86.78	182.138.162.253	175.42.1.201	171.12.10.95