128.14.134.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Zenlayer Inc

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	web Attack on Website at 2020-02-05.	2020-02-06 17:14:19
attackbots	web Attack on Website	2019-11-30 06:35:40

Comments on same subnet:

IP	Type	Details	Datetime
128.14.134.170	attackspambots	TCP (SYN) 128.14.134.170:38735 -> port 80, len 44	2020-09-19 23:04:33
128.14.134.170	attack	Hit honeypot r.	2020-09-19 14:53:50
128.14.134.170	attack	HTTP_USER_AGENT Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36	2020-09-19 06:30:40
128.14.134.58	attackspambots	" "	2020-09-15 22:32:38
128.14.134.58	attackspambots	" "	2020-09-15 14:29:16
128.14.134.58	attack	" "	2020-09-15 06:38:28
128.14.134.134	attackbots	TCP (SYN) 128.14.134.134:33409 -> port 443, len 44	2020-09-15 01:27:48
128.14.134.134	attack	SIP/5060 Probe, BF, Hack -	2020-09-14 17:11:10
128.14.134.134	attackbots	TCP (SYN) 128.14.134.134:11256 -> port 443, len 40	2020-09-02 22:00:09
128.14.134.134	attack	2020-09-01 04:45 Unauthorized connection attempt to IMAP/POP	2020-09-02 13:51:33
128.14.134.134	attackbotsspam	TCP (SYN) 128.14.134.134:42288 -> port 443, len 44	2020-09-02 06:52:11
128.14.134.134	attackspam	[20/Aug/2020:12:41:42 -0400] "GET / HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" [20/Aug/2020:12:41:43 -0400] "GET / HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"	2020-08-22 01:50:24
128.14.134.134	attack	HTTP_USER_AGENT Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36	2020-08-12 07:37:21
128.14.134.134	attackspambots	Fail2Ban Ban Triggered	2020-07-15 02:35:59
128.14.134.170	attack	IP 128.14.134.170 attacked honeypot on port: 80 at 7/7/2020 8:40:24 PM	2020-07-08 18:50:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.14.134.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20753
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;128.14.134.1.			IN	A

;; AUTHORITY SECTION:
.			468	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112901 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 06:35:37 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 1.134.14.128.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.134.14.128.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.217.199.20	attackspambots	SSH Invalid Login	2020-04-26 05:50:53
139.59.32.156	attack	Invalid user dr from 139.59.32.156 port 36548	2020-04-26 06:27:37
106.12.209.81	attackbots	SSH Invalid Login	2020-04-26 05:51:53
71.78.234.85	attackspambots	Automatic report - Port Scan Attack	2020-04-26 06:17:34
59.36.148.44	attackbotsspam	Invalid user dk from 59.36.148.44 port 49436	2020-04-26 06:10:48
182.61.165.46	attackbots	20 attempts against mh-misbehave-ban on pluto	2020-04-26 06:19:11
110.49.73.50	attack	Lines containing failures of 110.49.73.50 Apr 24 05:49:27 neweola sshd[20522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.73.50 user=r.r Apr 24 05:49:30 neweola sshd[20522]: Failed password for r.r from 110.49.73.50 port 35788 ssh2 Apr 24 05:49:32 neweola sshd[20522]: Received disconnect from 110.49.73.50 port 35788:11: Bye Bye [preauth] Apr 24 05:49:32 neweola sshd[20522]: Disconnected from authenticating user r.r 110.49.73.50 port 35788 [preauth] Apr 24 05:57:57 neweola sshd[20875]: Invalid user appuser from 110.49.73.50 port 40646 Apr 24 05:57:57 neweola sshd[20875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.73.50 Apr 24 05:57:59 neweola sshd[20875]: Failed password for invalid user appuser from 110.49.73.50 port 40646 ssh2 Apr 24 05:57:59 neweola sshd[20875]: Received disconnect from 110.49.73.50 port 40646:11: Bye Bye [preauth] Apr 24 05:57:59 neweola sshd[2087........ ------------------------------	2020-04-26 06:18:51
175.183.19.74	attackbotsspam	1587846400 - 04/25/2020 22:26:40 Host: 175.183.19.74/175.183.19.74 Port: 445 TCP Blocked	2020-04-26 05:54:39
223.240.70.4	attackspambots	Invalid user ul from 223.240.70.4 port 34266	2020-04-26 06:30:11
159.89.183.168	attackspambots	159.89.183.168 - - [25/Apr/2020:22:25:53 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.183.168 - - [25/Apr/2020:22:25:53 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.183.168 - - [25/Apr/2020:22:25:56 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.183.168 - - [25/Apr/2020:22:25:58 +0200] "POST /wp-login.php HTTP/1.1" 200 1799 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.183.168 - - [25/Apr/2020:22:25:59 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.183.168 - - [25/Apr/2020:22:26:00 +0200] "POST /wp-login.php HTTP/1.1" 200 1798 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-04-26 06:20:56
213.222.34.200	attackspambots	T: f2b postfix aggressive 3x	2020-04-26 06:05:42
58.75.126.235	attackspam	Unauthorized IMAP connection attempt	2020-04-26 06:04:11
106.13.13.188	attackbots	Invalid user pv from 106.13.13.188 port 50636	2020-04-26 06:26:15
27.128.236.189	attackspambots	Invalid user saveonoffers from 27.128.236.189 port 58982	2020-04-26 06:02:20
180.166.141.58	attackspambots	Apr 25 23:46:21 debian-2gb-nbg1-2 kernel: \[10110119.235963\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=180.166.141.58 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x00 TTL=237 ID=14543 PROTO=TCP SPT=50029 DPT=19884 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-26 05:53:19

Recently Reported IPs

114.118.96.2	114.112.58.1	119.90.3.21	113.200.236.6
111.93.200.5	111.68.104.1	221.232.130.26	111.231.119.1
109.102.158.1	162.135.184.115	109.86.213.5	94.6.146.134
106.52.106.6	106.52.17.2	106.51.98.1	106.51.0.4
87.99.159.145	3.88.143.18	210.66.20.116	143.255.241.105