159.138.27.133

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Huawei International Pte Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	xmlrpc attack	2019-06-24 17:34:14

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.138.27.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10744
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.138.27.133.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jun 24 17:34:04 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

133.27.138.159.in-addr.arpa domain name pointer apollo.hongkongserver.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
133.27.138.159.in-addr.arpa	name = apollo.hongkongserver.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
78.128.113.66	attackbotsspam	2020-03-01 19:11:28 dovecot_login authenticator failed for \(\[78.128.113.66\]\) \[78.128.113.66\]: 535 Incorrect authentication data \(set_id=harald.schueller@jugend-ohne-grenzen.net\) 2020-03-01 19:11:35 dovecot_login authenticator failed for \(\[78.128.113.66\]\) \[78.128.113.66\]: 535 Incorrect authentication data \(set_id=harald.schueller\) 2020-03-01 19:12:00 dovecot_login authenticator failed for \(\[78.128.113.66\]\) \[78.128.113.66\]: 535 Incorrect authentication data \(set_id=harald.schueller@jugend-ohne-grenzen.net\) 2020-03-01 19:12:07 dovecot_login authenticator failed for \(\[78.128.113.66\]\) \[78.128.113.66\]: 535 Incorrect authentication data \(set_id=harald.schueller\) 2020-03-01 19:21:09 dovecot_login authenticator failed for \(\[78.128.113.66\]\) \[78.128.113.66\]: 535 Incorrect authentication data \(set_id=harald.schueller@jugend-ohne-grenzen.net\) ...	2020-03-02 02:35:31
45.252.250.13	attack	Automatic report - XMLRPC Attack	2020-03-02 02:14:12
82.78.209.53	attackspambots	Automatic report - Port Scan Attack	2020-03-02 02:10:18
85.192.130.250	attack	Unauthorized connection attempt detected from IP address 85.192.130.250 to port 23 [J]	2020-03-02 02:13:25
190.2.143.60	attackbotsspam	firewall-block, port(s): 3308/tcp	2020-03-02 02:06:41
217.16.12.208	attack	Microsoft SQL Server User Authentication Brute Force Attempt, PTR: SOPHIAFTP02.nicox.com.	2020-03-02 02:33:42
201.184.169.106	attack	Mar 1 14:21:48 webmail sshd[11193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.184.169.106 Mar 1 14:21:50 webmail sshd[11193]: Failed password for invalid user william from 201.184.169.106 port 34404 ssh2	2020-03-02 02:15:52
113.173.85.224	attackbots	Mar 1 14:10:38 mxgate1 postfix/postscreen[14684]: CONNECT from [113.173.85.224]:40727 to [176.31.12.44]:25 Mar 1 14:10:38 mxgate1 postfix/dnsblog[14696]: addr 113.173.85.224 listed by domain bl.spamcop.net as 127.0.0.2 Mar 1 14:10:38 mxgate1 postfix/dnsblog[14688]: addr 113.173.85.224 listed by domain cbl.abuseat.org as 127.0.0.2 Mar 1 14:10:38 mxgate1 postfix/dnsblog[14686]: addr 113.173.85.224 listed by domain b.barracudacentral.org as 127.0.0.2 Mar 1 14:10:39 mxgate1 postfix/dnsblog[14687]: addr 113.173.85.224 listed by domain zen.spamhaus.org as 127.0.0.11 Mar 1 14:10:39 mxgate1 postfix/dnsblog[14687]: addr 113.173.85.224 listed by domain zen.spamhaus.org as 127.0.0.4 Mar 1 14:10:44 mxgate1 postfix/postscreen[14684]: DNSBL rank 5 for [113.173.85.224]:40727 Mar x@x Mar 1 14:10:46 mxgate1 postfix/postscreen[14684]: HANGUP after 1.5 from [113.173.85.224]:40727 in tests after SMTP handshake Mar 1 14:10:46 mxgate1 postfix/postscreen[14684]: DISCONNECT [113.173.8........ -------------------------------	2020-03-02 02:37:46
69.122.115.65	attack	Unauthorized connection attempt detected from IP address 69.122.115.65 to port 3389 [J]	2020-03-02 02:09:38
175.208.0.44	attackbots	TCP Port: 25 invalid blocked dnsbl-sorbs also abuseat-org and barracuda (325)	2020-03-02 02:42:33
138.197.131.249	attackspambots	Mar 1 20:28:06 webhost01 sshd[10548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.131.249 Mar 1 20:28:08 webhost01 sshd[10548]: Failed password for invalid user confluence from 138.197.131.249 port 59296 ssh2 ...	2020-03-02 02:11:35
51.68.160.122	attackbots	[2020-03-01 12:22:38] NOTICE[1148] chan_sip.c: Registration from '"405" ' failed for '51.68.160.122:5070' - Wrong password [2020-03-01 12:22:38] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-01T12:22:38.512-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="405",SessionID="0x7fd82c538db8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/51.68.160.122/5070",Challenge="0a17e16a",ReceivedChallenge="0a17e16a",ReceivedHash="5c02d70adfc93de6fc81e456d98b9480" [2020-03-01 12:22:38] NOTICE[1148] chan_sip.c: Registration from '"405" ' failed for '51.68.160.122:5070' - Wrong password [2020-03-01 12:22:38] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-01T12:22:38.669-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="405",SessionID="0x7fd82c172f58",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/51.68.16 ...	2020-03-02 02:42:18
1.53.216.65	attackbots	Lines containing failures of 1.53.216.65 Mar 1 14:02:40 omfg postfix/smtpd[8381]: connect from unknown[1.53.216.65] Mar x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=1.53.216.65	2020-03-02 02:24:40
182.161.69.114	attackbots	ECShop Remote Code Execution Vulnerability, PTR: PTR record not found	2020-03-02 02:38:58
137.226.113.56	attackbots	Unauthorized connection attempt detected from IP address 137.226.113.56 to port 4840 [J]	2020-03-02 02:31:27

最近上报的IP列表

85.117.234.218	170.211.196.1	218.28.234.53	187.252.221.18
108.4.217.174	5.89.118.223	210.173.160.27	103.253.25.181
220.191.181.150	177.130.136.210	213.230.112.33	180.121.190.194
103.3.171.156	191.242.232.46	207.154.211.36	217.47.18.44
117.165.112.102	221.207.54.181	121.232.65.184	125.212.226.135