13.71.191.191 - IPInfo

基本信息:

城市(city): Toronto

省份(region): Ontario

国家(country): Canada

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       13.64.0.0 - 13.107.255.255
CIDR:           13.64.0.0/11, 13.96.0.0/13, 13.104.0.0/14
NetName:        MSFT
NetHandle:      NET-13-64-0-0-1
Parent:         NET13 (NET-13-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Microsoft Corporation (MSFT)
RegDate:        2015-03-26
Updated:        2021-12-14
Ref:            https://rdap.arin.net/registry/ip/13.64.0.0



OrgName:        Microsoft Corporation
OrgId:          MSFT
Address:        One Microsoft Way
City:           Redmond
StateProv:      WA
PostalCode:     98052
Country:        US
RegDate:        1998-07-10
Updated:        2025-06-10
Comment:        To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment:        * https://cert.microsoft.com.  
Comment:        
Comment:        For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment:        * abuse@microsoft.com.  
Comment:        
Comment:        To report security vulnerabilities in Microsoft products and services, please contact:
Comment:        * secure@microsoft.com.  
Comment:        
Comment:        For legal and law enforcement-related requests, please contact:
Comment:        * msndcc@microsoft.com
Comment:        
Comment:        For routing, peering or DNS issues, please 
Comment:        contact:
Comment:        * IOC@microsoft.com
Ref:            https://rdap.arin.net/registry/entity/MSFT


OrgTechHandle: BEDAR6-ARIN
OrgTechName:   Bedard, Dawn 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  dabedard@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/BEDAR6-ARIN

OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName:   Chaturmohta, Somesh 
OrgRoutingPhone:  +1-425-882-8080 
OrgRoutingEmail:  someshch@microsoft.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/CHATU3-ARIN

OrgTechHandle: SINGH683-ARIN
OrgTechName:   Singh, Prachi 
OrgTechPhone:  +1-425-707-5601 
OrgTechEmail:  pracsin@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/SINGH683-ARIN

OrgTechHandle: MRPD-ARIN
OrgTechName:   Microsoft Routing, Peering, and DNS
OrgTechPhone:  +1-425-882-8080 
OrgTechEmail:  IOC@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/MRPD-ARIN

OrgTechHandle: IPHOS5-ARIN
OrgTechName:   IPHostmaster, IPHostmaster 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  iphostmaster@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPHOS5-ARIN

OrgAbuseHandle: MAC74-ARIN
OrgAbuseName:   Microsoft Abuse Contact
OrgAbusePhone:  +1-425-882-8080 
OrgAbuseEmail:  abuse@microsoft.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/MAC74-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.71.191.191
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45484
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.71.191.191.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026022801 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 01 01:30:01 CST 2026
;; MSG SIZE  rcvd: 106

HOST信息:

Host 191.191.71.13.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 191.191.71.13.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.52.124	attack	Too many connections or unauthorized access detected from Arctic banned ip	2019-09-14 20:13:38
162.218.64.59	attack	Sep 14 01:59:06 hiderm sshd\[29160\]: Invalid user monitor from 162.218.64.59 Sep 14 01:59:06 hiderm sshd\[29160\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.218.64.59 Sep 14 01:59:08 hiderm sshd\[29160\]: Failed password for invalid user monitor from 162.218.64.59 port 43683 ssh2 Sep 14 02:03:05 hiderm sshd\[29461\]: Invalid user mohsin from 162.218.64.59 Sep 14 02:03:05 hiderm sshd\[29461\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.218.64.59	2019-09-14 20:30:34
185.104.185.96	attackbotsspam	SQL injection:/index.php?menu_selected=144&sub_menu_selected=1024&language=FR&START_PRJ=20141001&orderby=START_PRJ&numero_page=461'	2019-09-14 19:49:37
140.143.15.169	attack	Sep 14 04:39:35 vps200512 sshd\[31572\]: Invalid user ukJ33W_QoO from 140.143.15.169 Sep 14 04:39:35 vps200512 sshd\[31572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.15.169 Sep 14 04:39:37 vps200512 sshd\[31572\]: Failed password for invalid user ukJ33W_QoO from 140.143.15.169 port 51844 ssh2 Sep 14 04:42:20 vps200512 sshd\[31667\]: Invalid user kjh123 from 140.143.15.169 Sep 14 04:42:20 vps200512 sshd\[31667\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.15.169	2019-09-14 20:07:33
178.62.108.111	attackspambots	Sep 13 21:21:29 php1 sshd\[9119\]: Invalid user patrick from 178.62.108.111 Sep 13 21:21:29 php1 sshd\[9119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.108.111 Sep 13 21:21:32 php1 sshd\[9119\]: Failed password for invalid user patrick from 178.62.108.111 port 56320 ssh2 Sep 13 21:25:46 php1 sshd\[9511\]: Invalid user user from 178.62.108.111 Sep 13 21:25:46 php1 sshd\[9511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.108.111	2019-09-14 20:29:02
125.106.75.230	attack	Sep 14 08:40:38 toyboy sshd[12418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.106.75.230 user=r.r Sep 14 08:40:40 toyboy sshd[12418]: Failed password for r.r from 125.106.75.230 port 50288 ssh2 Sep 14 08:40:43 toyboy sshd[12418]: Failed password for r.r from 125.106.75.230 port 50288 ssh2 Sep 14 08:40:45 toyboy sshd[12418]: Failed password for r.r from 125.106.75.230 port 50288 ssh2 Sep 14 08:40:47 toyboy sshd[12418]: Failed password for r.r from 125.106.75.230 port 50288 ssh2 Sep 14 08:40:49 toyboy sshd[12418]: Failed password for r.r from 125.106.75.230 port 50288 ssh2 Sep 14 08:40:51 toyboy sshd[12418]: Failed password for r.r from 125.106.75.230 port 50288 ssh2 Sep 14 08:40:51 toyboy sshd[12418]: Disconnecting: Too many authentication failures for r.r from 125.106.75.230 port 50288 ssh2 [preauth] Sep 14 08:40:51 toyboy sshd[12418]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.10........ -------------------------------	2019-09-14 20:05:34
218.207.195.169	attackbots	Sep 14 14:05:27 core sshd[31103]: Invalid user jira from 218.207.195.169 port 14454 Sep 14 14:05:29 core sshd[31103]: Failed password for invalid user jira from 218.207.195.169 port 14454 ssh2 ...	2019-09-14 20:19:12
222.76.187.88	attackspambots	k+ssh-bruteforce	2019-09-14 20:31:16
163.53.255.65	attack	Automatic report - Port Scan Attack	2019-09-14 20:38:27
193.32.163.182	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-14 19:58:35
134.209.124.237	attackbots	Sep 14 13:51:48 eventyay sshd[23578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.124.237 Sep 14 13:51:50 eventyay sshd[23578]: Failed password for invalid user team1 from 134.209.124.237 port 34306 ssh2 Sep 14 13:56:05 eventyay sshd[23637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.124.237 ...	2019-09-14 20:05:10
218.22.180.146	attackbotsspam	'IP reached maximum auth failures for a one day block'	2019-09-14 19:47:19
218.73.143.234	attack	Sep 14 08:40:27 garuda postfix/smtpd[9451]: warning: hostname 234.143.73.218.broad.wz.zj.dynamic.163data.com.cn does not resolve to address 218.73.143.234: Name or service not known Sep 14 08:40:27 garuda postfix/smtpd[9451]: connect from unknown[218.73.143.234] Sep 14 08:40:28 garuda postfix/smtpd[9453]: warning: hostname 234.143.73.218.broad.wz.zj.dynamic.163data.com.cn does not resolve to address 218.73.143.234: Name or service not known Sep 14 08:40:28 garuda postfix/smtpd[9453]: connect from unknown[218.73.143.234] Sep 14 08:40:32 garuda postfix/smtpd[9453]: warning: unknown[218.73.143.234]: SASL LOGIN authentication failed: authentication failure Sep 14 08:40:33 garuda postfix/smtpd[9453]: lost connection after AUTH from unknown[218.73.143.234] Sep 14 08:40:33 garuda postfix/smtpd[9453]: disconnect from unknown[218.73.143.234] ehlo=1 auth=0/1 commands=1/2 Sep 14 08:40:34 garuda postfix/smtpd[9453]: warning: hostname 234.143.73.218.broad.wz.zj.dynamic.163data.com.c........ -------------------------------	2019-09-14 20:02:10
106.12.213.138	attack	Sep 14 01:19:54 php1 sshd\[31279\]: Invalid user abc123 from 106.12.213.138 Sep 14 01:19:54 php1 sshd\[31279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.213.138 Sep 14 01:19:55 php1 sshd\[31279\]: Failed password for invalid user abc123 from 106.12.213.138 port 36904 ssh2 Sep 14 01:25:07 php1 sshd\[31876\]: Invalid user bootcamp from 106.12.213.138 Sep 14 01:25:07 php1 sshd\[31876\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.213.138	2019-09-14 19:56:52
223.241.2.224	attack	2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x 2019-09-14 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=223.241.2.224	2019-09-14 20:20:15

最近上报的IP列表

221.131.2.3	100.83.140.80	198.54.100.19	45.207.139.44
160.25.71.114	211.142.118.106	202.156.27.103	87.106.187.78
144.202.21.16	144.202.21.45	148.153.56.145	148.153.56.18
154.29.145.39	152.42.181.232	1.9.206.253	20.151.11.236
171.118.61.12	116.172.249.34	82.180.147.64	103.39.221.249