149.129.80.92 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Malaysia

Internet Service Provider: AliCloud

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541402358d4bd956 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: d.skk.moe \| User-Agent: Opera/9.80 (Windows NT 6.0) Presto/2.12.388 Version/12.14 \| CF_DC: HKG. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:11:39

Type

Details

Datetime

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 541402358d4bd956 | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: d.skk.moe | User-Agent: Opera/9.80 (Windows NT 6.0) Presto/2.12.388 Version/12.14 | CF_DC: HKG. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 06:11:39

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.129.80.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38146
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.129.80.92.			IN	A

;; AUTHORITY SECTION:
.			449	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 127 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 06:11:35 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 92.80.129.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 92.80.129.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.62.75.211	attackspam	failed_logins	2019-07-05 10:57:03
111.231.63.14	attackbotsspam	Jul 5 01:37:20 SilenceServices sshd[6748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.63.14 Jul 5 01:37:22 SilenceServices sshd[6748]: Failed password for invalid user edward from 111.231.63.14 port 37406 ssh2 Jul 5 01:38:41 SilenceServices sshd[7354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.63.14	2019-07-05 11:04:03
199.195.249.6	attackbots	Jul 4 19:13:36 vps200512 sshd\[17434\]: Invalid user demo from 199.195.249.6 Jul 4 19:13:36 vps200512 sshd\[17434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.249.6 Jul 4 19:13:39 vps200512 sshd\[17434\]: Failed password for invalid user demo from 199.195.249.6 port 54058 ssh2 Jul 4 19:15:47 vps200512 sshd\[17458\]: Invalid user shop1 from 199.195.249.6 Jul 4 19:15:47 vps200512 sshd\[17458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.249.6	2019-07-05 11:29:02
107.170.239.109	attackspam	Port scan attempt detected by AWS-CCS, CTS, India	2019-07-05 11:31:15
176.31.251.177	attackspam	Jul 4 19:00:09 aat-srv002 sshd[19830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.251.177 Jul 4 19:00:11 aat-srv002 sshd[19830]: Failed password for invalid user quan from 176.31.251.177 port 33842 ssh2 Jul 4 19:05:14 aat-srv002 sshd[19905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.251.177 Jul 4 19:05:17 aat-srv002 sshd[19905]: Failed password for invalid user rancid from 176.31.251.177 port 58470 ssh2 ...	2019-07-05 11:34:17
220.118.0.221	attackspambots	2019-07-04T22:47:32.456195hub.schaetter.us sshd\[1690\]: Invalid user prueba from 220.118.0.221 2019-07-04T22:47:32.496315hub.schaetter.us sshd\[1690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=netmania.co.kr 2019-07-04T22:47:34.531155hub.schaetter.us sshd\[1690\]: Failed password for invalid user prueba from 220.118.0.221 port 44344 ssh2 2019-07-04T22:50:14.878132hub.schaetter.us sshd\[1699\]: Invalid user trivial from 220.118.0.221 2019-07-04T22:50:14.915643hub.schaetter.us sshd\[1699\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=netmania.co.kr ...	2019-07-05 11:36:18
148.235.92.34	attackbotsspam	firewall-block, port(s): 33894/tcp	2019-07-05 11:45:01
132.148.129.180	attackspam	Jul 5 04:54:14 [munged] sshd[13305]: Invalid user www from 132.148.129.180 port 56042 Jul 5 04:54:14 [munged] sshd[13305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180	2019-07-05 11:30:40
165.227.67.64	attackspambots	Jul 5 04:24:41 host sshd\[14156\]: Invalid user gm from 165.227.67.64 port 49726 Jul 5 04:24:41 host sshd\[14156\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.67.64 ...	2019-07-05 11:35:10
213.148.198.36	attack	Jul 5 04:45:23 lnxmail61 sshd[12479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.148.198.36 Jul 5 04:45:23 lnxmail61 sshd[12479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.148.198.36	2019-07-05 10:54:44
96.75.52.245	attack	Automatic report	2019-07-05 11:16:08
52.176.110.203	attackbotsspam	Jul 5 05:45:45 itv-usvr-01 sshd[13537]: Invalid user sysadmin from 52.176.110.203 Jul 5 05:45:45 itv-usvr-01 sshd[13537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.176.110.203 Jul 5 05:45:45 itv-usvr-01 sshd[13537]: Invalid user sysadmin from 52.176.110.203 Jul 5 05:45:46 itv-usvr-01 sshd[13537]: Failed password for invalid user sysadmin from 52.176.110.203 port 34980 ssh2 Jul 5 05:50:13 itv-usvr-01 sshd[13678]: Invalid user sa from 52.176.110.203	2019-07-05 11:39:16
210.211.96.112	attack	Jul 5 03:05:49 MK-Soft-VM5 sshd\[18920\]: Invalid user cron from 210.211.96.112 port 33624 Jul 5 03:05:49 MK-Soft-VM5 sshd\[18920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.211.96.112 Jul 5 03:05:51 MK-Soft-VM5 sshd\[18920\]: Failed password for invalid user cron from 210.211.96.112 port 33624 ssh2 ...	2019-07-05 11:35:52
51.38.176.147	attack	Jul 5 00:49:35 vps691689 sshd[22226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.176.147 Jul 5 00:49:37 vps691689 sshd[22226]: Failed password for invalid user wpyan from 51.38.176.147 port 55262 ssh2 ...	2019-07-05 11:18:33
202.112.237.228	attackbots	Jul 5 00:50:07 cvbmail sshd\[8021\]: Invalid user u from 202.112.237.228 Jul 5 00:50:07 cvbmail sshd\[8021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.112.237.228 Jul 5 00:50:10 cvbmail sshd\[8021\]: Failed password for invalid user u from 202.112.237.228 port 39104 ssh2	2019-07-05 11:40:10

Recently Reported IPs

235.5.212.197	9.87.235.35	217.175.70.221	222.82.52.97
222.82.51.232	56.111.150.231	152.96.163.54	221.13.12.165
221.13.12.76	221.0.21.52	218.62.245.43	205.210.164.245
115.241.202.154	117.82.213.30	203.186.25.39	183.211.73.133
183.157.86.78	182.138.162.253	175.42.1.201	171.12.10.95