222.154.228.125

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): New Zealand

运营商(isp): Spark New Zealand Trading Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Mobile ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	UTC: 2019-11-26 port: 23/tcp	2019-11-28 01:39:53

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.154.228.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39961
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.154.228.125.		IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112700 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Thu Nov 28 01:42:38 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

125.228.154.222.in-addr.arpa domain name pointer 222-154-228-125.adsl.xtra.co.nz.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
125.228.154.222.in-addr.arpa	name = 222-154-228-125.adsl.xtra.co.nz.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
60.130.173.117	attack	SSH login attempts with user root.	2020-03-19 05:10:45
78.187.133.26	attackspam	Mar 18 22:05:18 host sshd[33045]: Invalid user postgres from 78.187.133.26 port 41118 ...	2020-03-19 05:25:33
104.19.144.113	spam	AGAIN and AGAIN and ALWAYS the same REGISTRAR as 1api.net TO STOP IMMEDIATELY for keeping SPAMMERS, LIERS, ROBERS and else since too many years ! The cheapest service, as usual... Dossier transmis aux autorités Européennes et Françaises pour CONDAMNATION à 750 € par POURRIEL émis les SOUS MERDES, OK ? From: Joka Date: Wed, 18 Mar 2020 16:46:18 +0000 Subject: LE CASINO JOKA. =?utf-8?b?T8OZ?= LES FORTUNES SE PROFILENT Message-Id: <4WMA.BA1D.F33KVOH670.20200318164618859@bestoffer-today.com> live@bestoffer-today.com which send to « https://bestoffer-today.com/4WMA-BA1D-F33KVOH670/uauto.aspx » to BURN / CLOSE / DELETTE / STOP IMMEDIATELY for SPAM, PHISHING and SCAM on STOLLEN List ! ! ! bestoffer-today.com => 1api.net bestoffer-today.com => 104.16.209.86 104.16.209.86 => cloudflare.com AS USUAL... 1api.net => 84.200.110.124 84.200.110.124 => accelerated.de live@bestoffer-today.com => 94.143.106.199 94.143.106.199 => dotmailer.com dotmailer.com => 104.18.70.28 104.18.70.28 => cloudflare.com AS USUAL... dotmailer.com send to dotdigital.com dotdigital.com => 104.19.144.113 104.19.144.113 => cloudflare.com https://www.mywot.com/scorecard/dotmailer.com https://www.mywot.com/scorecard/dotdigital.com https://www.mywot.com/scorecard/bestoffer-today.com https://www.mywot.com/scorecard/1api.net AS USUAL... https://en.asytech.cn/check-ip/104.16.209.86 https://en.asytech.cn/check-ip/84.200.110.124 https://en.asytech.cn/check-ip/94.143.106.199 https://en.asytech.cn/check-ip/104.18.70.28 https://en.asytech.cn/check-ip/104.19.144.113	2020-03-19 05:04:41
34.73.237.110	attack	34.73.237.110 - - [18/Mar/2020:19:47:58 +0100] "GET /wp-login.php HTTP/1.1" 200 5807 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.73.237.110 - - [18/Mar/2020:19:47:59 +0100] "POST /wp-login.php HTTP/1.1" 200 6587 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.73.237.110 - - [18/Mar/2020:19:48:00 +0100] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-19 05:38:13
189.234.39.146	attackbotsspam	SIP/5060 Probe, BF, Hack -	2020-03-19 05:25:58
85.202.163.235	attack	Mar 18 17:22:23 tuotantolaitos sshd[28076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.202.163.235 Mar 18 17:22:26 tuotantolaitos sshd[28076]: Failed password for invalid user web from 85.202.163.235 port 40920 ssh2 ...	2020-03-19 05:31:39
156.218.142.80	attack	Telnet Server BruteForce Attack	2020-03-19 05:15:56
154.89.4.76	attackspam	Invalid user oikawa from 154.89.4.76 port 38487	2020-03-19 05:34:31
78.162.201.207	attack	Honeypot attack, port: 81, PTR: 78.162.201.207.dynamic.ttnet.com.tr.	2020-03-19 05:04:01
184.13.240.142	attackbotsspam	Mar 18 15:05:59 sd-53420 sshd\[8290\]: User root from 184.13.240.142 not allowed because none of user's groups are listed in AllowGroups Mar 18 15:05:59 sd-53420 sshd\[8290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.13.240.142 user=root Mar 18 15:06:02 sd-53420 sshd\[8290\]: Failed password for invalid user root from 184.13.240.142 port 47476 ssh2 Mar 18 15:09:12 sd-53420 sshd\[9429\]: Invalid user laojiang from 184.13.240.142 Mar 18 15:09:12 sd-53420 sshd\[9429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.13.240.142 ...	2020-03-19 05:23:38
103.220.72.117	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-19 05:02:52
93.151.181.192	attackspam	20/3/18@09:05:15: FAIL: Alarm-Telnet address from=93.151.181.192 ...	2020-03-19 05:10:13
134.209.158.24	attack	Invalid user git from 134.209.158.24 port 38918	2020-03-19 05:14:38
106.52.121.64	attack	Jan 13 23:32:53 woltan sshd[2554]: Failed password for root from 106.52.121.64 port 49912 ssh2	2020-03-19 05:20:12
217.112.142.211	attackspam	Bad mail behaviour	2020-03-19 05:29:40

最近上报的IP列表

145.181.253.198	141.140.194.122	56.107.112.90	221.212.169.165
239.5.51.233	73.28.230.45	76.33.126.57	170.82.73.244
89.39.107.201	222.238.150.173	122.136.136.92	185.58.195.232
5.160.128.107	192.3.205.105	109.184.99.185	122.160.167.110
36.230.17.117	3.133.100.203	87.72.41.197	81.219.210.251