34.242.159.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Ireland

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
34.242.159.34	attackbotsspam	34.242.159.34 - - \[24/Nov/2019:16:17:48 +0100\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 34.242.159.34 - - \[24/Nov/2019:16:17:49 +0100\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 34.242.159.34 - - \[24/Nov/2019:16:17:49 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-25 00:21:48

类型

评论内容

时间

34.242.159.34

attackbotsspam

34.242.159.34 - - \[24/Nov/2019:16:17:48 +0100\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
34.242.159.34 - - \[24/Nov/2019:16:17:49 +0100\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
34.242.159.34 - - \[24/Nov/2019:16:17:49 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"

2019-11-25 00:21:48

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 34.242.159.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33305
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;34.242.159.14.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 20:49:45 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

14.159.242.34.in-addr.arpa domain name pointer ec2-34-242-159-14.eu-west-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.159.242.34.in-addr.arpa	name = ec2-34-242-159-14.eu-west-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.78.236.238	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 00:29:02
149.28.33.157	attackspambots	Telnet brute force and port scan	2019-07-01 23:49:00
82.45.67.77	attackbots	Jul 1 16:38:50 srv-4 sshd\[26939\]: Invalid user stpi from 82.45.67.77 Jul 1 16:38:50 srv-4 sshd\[26939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.45.67.77 Jul 1 16:38:52 srv-4 sshd\[26939\]: Failed password for invalid user stpi from 82.45.67.77 port 55902 ssh2 ...	2019-07-02 00:16:52
223.80.191.128	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 00:32:18
140.143.249.134	attack	Jul 1 15:39:49 web2 sshd[20183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.249.134 Jul 1 15:39:52 web2 sshd[20183]: Failed password for invalid user nagios from 140.143.249.134 port 52076 ssh2	2019-07-01 23:39:35
218.20.55.227	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-01 23:34:06
89.248.174.201	attackspam	01.07.2019 15:27:22 Connection to port 33041 blocked by firewall	2019-07-01 23:57:17
221.142.110.184	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-01 23:59:02
222.129.228.24	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 00:17:31
221.219.245.157	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 00:04:52
222.77.215.66	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 00:27:45
31.216.36.24	attackbotsspam	utm - spam	2019-07-01 23:41:30
223.80.97.254	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 00:33:41
185.40.4.228	attack	[MonJul0115:51:56.2042592019][:error][pid13101:tid47246657722112][client185.40.4.228:53298][client185.40.4.228]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"206"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hostname"81.17.25.251"][uri"/"][unique_id"XRoP-FYk3WJqKDh8ufvIrgAAAEg"][MonJul0115:53:05.7704632019][:error][pid13304:tid47246655620864][client185.40.4.228:56472][client185.40.4.228]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"206"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hostname"81.17.25.250"][u	2019-07-02 00:50:43
118.25.48.254	attackspambots	SSH invalid-user multiple login attempts	2019-07-02 00:35:16

最近上报的IP列表

147.142.173.162	237.25.245.56	83.54.33.177	74.174.192.1
76.96.163.124	154.20.140.113	161.246.131.98	65.180.122.140
35.255.34.11	9.49.203.52	189.190.31.50	143.244.203.182
67.58.7.6	88.113.225.46	21.114.239.139	81.103.145.56
48.214.210.10	124.224.96.50	93.34.247.152	68.84.57.236