City: Los Angeles
Region: California
Country: United States
Internet Service Provider: Zenlayer Inc
Hostname: unknown
Organization: Zenlayer Inc
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspambots | REQUESTED PAGE: /webfig/ |
2020-08-18 04:57:08 |
| attackspam | nginx/IPasHostname/a4a6f |
2020-08-08 04:09:43 |
| attackspambots | 128.14.209.242 - - [30/Jul/2020:09:06:15 -0500] "GET https://www.ad5gb.com/ HTTP/1.1" 400 346 400 346 0 0 225 416 406 295 1 DIRECT FIN FIN TCP_MISS |
2020-07-30 22:15:59 |
| attackbotsspam |
|
2020-05-27 01:28:00 |
| attack | Malicious brute force vulnerability hacking attacks |
2019-10-29 21:45:08 |
| attackspam | 8443/tcp [2019-10-23]1pkt |
2019-10-23 20:12:26 |
| attack | Microsoft Windows HTTP.sys Remote Code Execution Vulnerability, PTR: survey.internet-census.org. |
2019-10-11 20:35:54 |
| attackspam | [18/Sep/2019:14:07:10 +0200] proxy attempt from Zenlayer (US) server |
2019-09-19 22:39:58 |
| attack | Microsoft Windows HTTP.sys Remote Code Execution Vulnerability, PTR: survey.internet-census.org. |
2019-09-12 04:23:54 |
| attackspam | Microsoft Windows HTTP.sys Remote Code Execution Vulnerability, PTR: survey.internet-census.org. |
2019-08-29 02:43:33 |
| attackspam | Microsoft Windows HTTP.sys Remote Code Execution Vulnerability, PTR: survey.internet-census.org. |
2019-08-20 02:35:29 |
| attackspambots | Port scan and direct access per IP instead of hostname |
2019-07-28 16:40:35 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 128.14.209.30 | attackproxy | Brute-force attacker IP |
2024-05-16 12:46:00 |
| 128.14.209.34 | attack | Malicious IP |
2024-04-21 01:52:16 |
| 128.14.209.42 | botsattack | hacking |
2024-02-19 13:52:38 |
| 128.14.209.178 | attackbots | MultiHost/MultiPort Probe, Scan, Hack - |
2020-10-08 06:15:22 |
| 128.14.209.154 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2020-10-08 05:52:50 |
| 128.14.209.178 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2020-10-07 22:34:44 |
| 128.14.209.178 | attackspam |
|
2020-10-07 14:36:13 |
| 128.14.209.154 | attackspam | 8080/tcp 8443/tcp... [2020-08-06/10-06]5pkt,3pt.(tcp) |
2020-10-07 14:10:08 |
| 128.14.209.178 | attackbotsspam | Unwanted checking 80 or 443 port ... |
2020-10-02 00:41:51 |
| 128.14.209.178 | attack | 2020/06/29 14:39:19 [error] 14439#14439: *16658 open() "/var/services/web/version" failed (2: No such file or directory), client: 128.14.209.178, server: , request: "GET /version HTTP/1.1", host: "80.0.208.108" |
2020-10-01 16:47:27 |
| 128.14.209.250 | attack | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: survey.internet-census.org. |
2020-08-17 22:34:07 |
| 128.14.209.178 | attackspambots | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: survey.internet-census.org. |
2020-08-17 22:22:33 |
| 128.14.209.250 | attackspam |
|
2020-08-14 04:40:25 |
| 128.14.209.154 | attack | Unauthorized connection attempt detected from IP address 128.14.209.154 to port 443 [T] |
2020-08-14 04:22:53 |
| 128.14.209.154 | attack | scan |
2020-08-12 15:50:26 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.14.209.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54062
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;128.14.209.242. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019050300 1800 900 604800 86400
;; Query time: 5 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri May 03 20:02:52 +08 2019
;; MSG SIZE rcvd: 118
Host 242.209.14.128.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 242.209.14.128.in-addr.arpa: SERVFAIL
| IP | Type | Details | Datetime |
|---|---|---|---|
| 103.114.107.129 | attackspambots | TCP 3389 (RDP) |
2019-06-27 06:39:44 |
| 49.67.164.133 | attackspam | 2019-06-26T23:10:49.290433 X postfix/smtpd[25018]: warning: unknown[49.67.164.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-26T23:11:19.377783 X postfix/smtpd[25154]: warning: unknown[49.67.164.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-27T00:59:03.178743 X postfix/smtpd[38972]: warning: unknown[49.67.164.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-06-27 07:10:06 |
| 177.154.237.249 | attack | smtp auth brute force |
2019-06-27 06:45:29 |
| 159.65.92.3 | attackspambots | k+ssh-bruteforce |
2019-06-27 06:38:04 |
| 36.111.194.22 | attack | scan z |
2019-06-27 06:55:53 |
| 191.53.223.239 | attackbots | SASL PLAIN auth failed: ruser=... |
2019-06-27 06:54:06 |
| 2.179.39.131 | attackspam | " " |
2019-06-27 06:28:51 |
| 5.79.120.69 | attackspam | Jun 26 21:02:00 TCP Attack: SRC=5.79.120.69 DST=[Masked] LEN=40 TOS=0x00 PREC=0x00 TTL=69 DF PROTO=TCP SPT=59129 DPT=993 WINDOW=29200 RES=0x00 SYN URGP=0 |
2019-06-27 06:30:15 |
| 123.125.71.36 | attackbotsspam | Automatic report - Web App Attack |
2019-06-27 06:54:37 |
| 188.31.135.85 | attackbots | this site is hacked/evidence of that/accessing the house via illegally installed access panels/only one builder/2 females/audio/sat outside -so close/illegally installed networks fall into place/tampered build/links to neighbour/matter of days/solicitor field day with this one. https://www.abuseipdb.com/report?ip=188.31.135.85/network monitors etc pick up users of ????====/seeking compensation for the whole to be reworked by builder of my choice/paying another builder to rework the mess/well done - crossed the line -time allocated and determination - no get out clause -broken law and review structure integrity -weakened due to illegally installed panels etc - nearly done/plenty of evidence and number plates of neighbour sending his weirdos down - they are on tampered dvr controlled by yet another alb mc/alb i.e. alb cyrmu partners of alb -as is alb ch alb fr alb es alb de alb etc |
2019-06-27 06:29:23 |
| 190.111.239.48 | attackbots | Jun 27 01:01:30 vserver sshd\[10055\]: Invalid user moon from 190.111.239.48Jun 27 01:01:32 vserver sshd\[10055\]: Failed password for invalid user moon from 190.111.239.48 port 59958 ssh2Jun 27 01:03:57 vserver sshd\[10083\]: Invalid user toor from 190.111.239.48Jun 27 01:03:59 vserver sshd\[10083\]: Failed password for invalid user toor from 190.111.239.48 port 53710 ssh2 ... |
2019-06-27 07:07:02 |
| 104.248.121.67 | attack | Jun 26 23:32:29 tuxlinux sshd[29808]: Invalid user weblogic from 104.248.121.67 port 49265 Jun 26 23:32:29 tuxlinux sshd[29808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.121.67 Jun 26 23:32:29 tuxlinux sshd[29808]: Invalid user weblogic from 104.248.121.67 port 49265 Jun 26 23:32:29 tuxlinux sshd[29808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.121.67 Jun 26 23:32:29 tuxlinux sshd[29808]: Invalid user weblogic from 104.248.121.67 port 49265 Jun 26 23:32:29 tuxlinux sshd[29808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.121.67 Jun 26 23:32:30 tuxlinux sshd[29808]: Failed password for invalid user weblogic from 104.248.121.67 port 49265 ssh2 ... |
2019-06-27 06:42:04 |
| 138.197.167.5 | attackspambots | Invalid user fake from 138.197.167.5 port 60794 |
2019-06-27 06:47:29 |
| 164.132.47.139 | attackspam | $f2bV_matches |
2019-06-27 06:46:29 |
| 192.241.249.53 | attack | Jun 26 20:14:12 ip-172-31-1-72 sshd\[22052\]: Invalid user alvaro from 192.241.249.53 Jun 26 20:14:12 ip-172-31-1-72 sshd\[22052\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.249.53 Jun 26 20:14:14 ip-172-31-1-72 sshd\[22052\]: Failed password for invalid user alvaro from 192.241.249.53 port 46613 ssh2 Jun 26 20:16:26 ip-172-31-1-72 sshd\[22059\]: Invalid user chris from 192.241.249.53 Jun 26 20:16:26 ip-172-31-1-72 sshd\[22059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.249.53 |
2019-06-27 06:35:31 |