128.14.134.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Zenlayer Inc

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	web Attack on Website at 2020-02-05.	2020-02-06 17:14:19
attackbots	web Attack on Website	2019-11-30 06:35:40

相同子网IP讨论:

IP	类型	评论内容	时间
128.14.134.170	attackspambots	TCP (SYN) 128.14.134.170:38735 -> port 80, len 44	2020-09-19 23:04:33
128.14.134.170	attack	Hit honeypot r.	2020-09-19 14:53:50
128.14.134.170	attack	HTTP_USER_AGENT Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36	2020-09-19 06:30:40
128.14.134.58	attackspambots	" "	2020-09-15 22:32:38
128.14.134.58	attackspambots	" "	2020-09-15 14:29:16
128.14.134.58	attack	" "	2020-09-15 06:38:28
128.14.134.134	attackbots	TCP (SYN) 128.14.134.134:33409 -> port 443, len 44	2020-09-15 01:27:48
128.14.134.134	attack	SIP/5060 Probe, BF, Hack -	2020-09-14 17:11:10
128.14.134.134	attackbots	TCP (SYN) 128.14.134.134:11256 -> port 443, len 40	2020-09-02 22:00:09
128.14.134.134	attack	2020-09-01 04:45 Unauthorized connection attempt to IMAP/POP	2020-09-02 13:51:33
128.14.134.134	attackbotsspam	TCP (SYN) 128.14.134.134:42288 -> port 443, len 44	2020-09-02 06:52:11
128.14.134.134	attackspam	[20/Aug/2020:12:41:42 -0400] "GET / HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" [20/Aug/2020:12:41:43 -0400] "GET / HTTP/1.1" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"	2020-08-22 01:50:24
128.14.134.134	attack	HTTP_USER_AGENT Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36	2020-08-12 07:37:21
128.14.134.134	attackspambots	Fail2Ban Ban Triggered	2020-07-15 02:35:59
128.14.134.170	attack	IP 128.14.134.170 attacked honeypot on port: 80 at 7/7/2020 8:40:24 PM	2020-07-08 18:50:36

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 128.14.134.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20753
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;128.14.134.1.			IN	A

;; AUTHORITY SECTION:
.			468	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112901 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 06:35:37 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 1.134.14.128.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.134.14.128.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
108.160.199.217	attackbots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-04-03 22:42:35
52.89.111.6	attackbotsspam	Apr 3 15:09:44 ns382633 sshd\[6909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.89.111.6 user=root Apr 3 15:09:45 ns382633 sshd\[6909\]: Failed password for root from 52.89.111.6 port 34446 ssh2 Apr 3 15:23:39 ns382633 sshd\[9859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.89.111.6 user=root Apr 3 15:23:40 ns382633 sshd\[9859\]: Failed password for root from 52.89.111.6 port 59680 ssh2 Apr 3 15:27:43 ns382633 sshd\[10775\]: Invalid user ce from 52.89.111.6 port 43940 Apr 3 15:27:43 ns382633 sshd\[10775\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.89.111.6	2020-04-03 22:24:19
82.64.32.76	attack	SSH_attack	2020-04-03 22:26:54
192.99.110.161	attack	Time: Fri Apr 3 09:48:21 2020 -0300 IP: 192.99.110.161 (CA/Canada/-) Failures: 15 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block	2020-04-03 22:30:17
45.134.179.57	attackspam	firewall-block, port(s): 689/tcp, 793/tcp, 1087/tcp, 1093/tcp, 1388/tcp, 1590/tcp, 1987/tcp, 1996/tcp, 2187/tcp, 2482/tcp, 3593/tcp	2020-04-03 22:37:01
91.99.60.211	attackspambots	1585918780 - 04/03/2020 14:59:40 Host: 91.99.60.211/91.99.60.211 Port: 445 TCP Blocked	2020-04-03 22:53:24
125.26.15.28	attack	SSH bruteforce (Triggered fail2ban)	2020-04-03 22:50:16
106.12.27.107	attackbotsspam	Apr 3 16:22:32 vps647732 sshd[18588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.27.107 Apr 3 16:22:35 vps647732 sshd[18588]: Failed password for invalid user test from 106.12.27.107 port 49571 ssh2 ...	2020-04-03 22:34:13
222.186.180.147	attackbots	Apr 3 16:26:11 vmanager6029 sshd\[12533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Apr 3 16:26:13 vmanager6029 sshd\[12531\]: error: PAM: Authentication failure for root from 222.186.180.147 Apr 3 16:26:16 vmanager6029 sshd\[12534\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root	2020-04-03 22:29:21
122.144.134.27	attackspambots	2020-04-03T15:34:03.205217struts4.enskede.local sshd\[13755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.134.27 user=root 2020-04-03T15:34:06.628396struts4.enskede.local sshd\[13755\]: Failed password for root from 122.144.134.27 port 5447 ssh2 2020-04-03T15:36:45.498438struts4.enskede.local sshd\[13795\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.134.27 user=root 2020-04-03T15:36:48.281595struts4.enskede.local sshd\[13795\]: Failed password for root from 122.144.134.27 port 5448 ssh2 2020-04-03T15:42:43.277004struts4.enskede.local sshd\[13911\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.134.27 user=root ...	2020-04-03 22:15:08
173.82.116.94	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 03-04-2020 14:00:10.	2020-04-03 22:18:24
167.99.48.123	attack	Apr 3 15:48:38 meumeu sshd[3022]: Failed password for root from 167.99.48.123 port 37874 ssh2 Apr 3 15:54:20 meumeu sshd[4008]: Failed password for root from 167.99.48.123 port 46044 ssh2 ...	2020-04-03 22:01:25
213.163.104.63	attackbotsspam	Unauthorized connection attempt from IP address 213.163.104.63 on Port 445(SMB)	2020-04-03 22:09:58
188.226.167.212	attack	Apr 3 14:46:41 XXX sshd[39851]: Invalid user tx from 188.226.167.212 port 35860	2020-04-03 22:34:55
205.185.125.140	attackspambots	Invalid user admin from 205.185.125.140 port 48784	2020-04-03 22:16:46

最近上报的IP列表

114.118.96.2	114.112.58.1	119.90.3.21	113.200.236.6
111.93.200.5	111.68.104.1	221.232.130.26	111.231.119.1
109.102.158.1	162.135.184.115	109.86.213.5	94.6.146.134
106.52.106.6	106.52.17.2	106.51.98.1	106.51.0.4
87.99.159.145	3.88.143.18	210.66.20.116	143.255.241.105