城市(city): Amsterdam
省份(region): Noord Holland
国家(country): The Netherlands
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 13.64.0.0 - 13.107.255.255
CIDR: 13.64.0.0/11, 13.96.0.0/13, 13.104.0.0/14
NetName: MSFT
NetHandle: NET-13-64-0-0-1
Parent: NET13 (NET-13-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2015-03-26
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/13.64.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.94.244.156
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28282
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;13.94.244.156. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026032300 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 24 01:31:36 CST 2026
;; MSG SIZE rcvd: 106Host 156.244.94.13.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 156.244.94.13.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 62.234.91.173 | attackbotsspam | 2019-12-04T07:21:00.416868shield sshd\[14348\]: Invalid user dame from 62.234.91.173 port 42639 2019-12-04T07:21:00.421373shield sshd\[14348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.91.173 2019-12-04T07:21:01.869610shield sshd\[14348\]: Failed password for invalid user dame from 62.234.91.173 port 42639 ssh2 2019-12-04T07:27:47.723134shield sshd\[16192\]: Invalid user ssh from 62.234.91.173 port 44042 2019-12-04T07:27:47.727693shield sshd\[16192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.91.173 |
2019-12-04 18:29:09 |
| 117.50.38.246 | attackbotsspam | Fail2Ban - SSH Bruteforce Attempt |
2019-12-04 18:27:28 |
| 218.213.168.133 | attackbotsspam | Dec 4 12:45:55 server sshd\[21637\]: Invalid user ching from 218.213.168.133 Dec 4 12:45:55 server sshd\[21637\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.213.168.133 Dec 4 12:45:58 server sshd\[21637\]: Failed password for invalid user ching from 218.213.168.133 port 37931 ssh2 Dec 4 13:16:07 server sshd\[30242\]: Invalid user rrrrrrrr from 218.213.168.133 Dec 4 13:16:07 server sshd\[30242\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.213.168.133 ... |
2019-12-04 18:48:20 |
| 165.227.80.35 | attack | 165.227.80.35 - - \[04/Dec/2019:06:26:40 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 165.227.80.35 - - \[04/Dec/2019:06:26:40 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ... |
2019-12-04 18:32:46 |
| 49.232.35.211 | attackspam | Dec 4 10:13:51 MK-Soft-VM6 sshd[30389]: Failed password for sshd from 49.232.35.211 port 42158 ssh2 ... |
2019-12-04 18:19:33 |
| 13.94.57.155 | attack | <6 unauthorized SSH connections |
2019-12-04 18:50:35 |
| 218.92.0.200 | attackspambots | Dec 4 11:06:56 dcd-gentoo sshd[1850]: User root from 218.92.0.200 not allowed because none of user's groups are listed in AllowGroups Dec 4 11:06:58 dcd-gentoo sshd[1850]: error: PAM: Authentication failure for illegal user root from 218.92.0.200 Dec 4 11:06:56 dcd-gentoo sshd[1850]: User root from 218.92.0.200 not allowed because none of user's groups are listed in AllowGroups Dec 4 11:06:58 dcd-gentoo sshd[1850]: error: PAM: Authentication failure for illegal user root from 218.92.0.200 Dec 4 11:06:56 dcd-gentoo sshd[1850]: User root from 218.92.0.200 not allowed because none of user's groups are listed in AllowGroups Dec 4 11:06:58 dcd-gentoo sshd[1850]: error: PAM: Authentication failure for illegal user root from 218.92.0.200 Dec 4 11:06:58 dcd-gentoo sshd[1850]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.200 port 27409 ssh2 ... |
2019-12-04 18:20:56 |
| 13.67.91.234 | attackbots | Dec 4 09:49:14 srv01 sshd[9508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.67.91.234 user=root Dec 4 09:49:16 srv01 sshd[9508]: Failed password for root from 13.67.91.234 port 39395 ssh2 Dec 4 09:58:30 srv01 sshd[10187]: Invalid user bootcamp from 13.67.91.234 port 45832 Dec 4 09:58:30 srv01 sshd[10187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.67.91.234 Dec 4 09:58:30 srv01 sshd[10187]: Invalid user bootcamp from 13.67.91.234 port 45832 Dec 4 09:58:32 srv01 sshd[10187]: Failed password for invalid user bootcamp from 13.67.91.234 port 45832 ssh2 ... |
2019-12-04 18:29:52 |
| 139.217.96.76 | attackbots | Dec 4 15:54:57 areeb-Workstation sshd[1628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.96.76 Dec 4 15:54:59 areeb-Workstation sshd[1628]: Failed password for invalid user lucio from 139.217.96.76 port 59586 ssh2 ... |
2019-12-04 18:40:13 |
| 139.59.26.106 | attack | Dec 4 09:39:55 tux-35-217 sshd\[32460\]: Invalid user rolandjeri from 139.59.26.106 port 44052 Dec 4 09:39:55 tux-35-217 sshd\[32460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.26.106 Dec 4 09:39:57 tux-35-217 sshd\[32460\]: Failed password for invalid user rolandjeri from 139.59.26.106 port 44052 ssh2 Dec 4 09:46:14 tux-35-217 sshd\[32539\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.26.106 user=root ... |
2019-12-04 18:44:52 |
| 121.66.224.90 | attackspam | 2019-12-04T08:15:00.605716shield sshd\[23691\]: Invalid user sicco from 121.66.224.90 port 39730 2019-12-04T08:15:00.609907shield sshd\[23691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.66.224.90 2019-12-04T08:15:03.186822shield sshd\[23691\]: Failed password for invalid user sicco from 121.66.224.90 port 39730 ssh2 2019-12-04T08:23:11.367964shield sshd\[24986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.66.224.90 user=root 2019-12-04T08:23:14.015469shield sshd\[24986\]: Failed password for root from 121.66.224.90 port 48786 ssh2 |
2019-12-04 18:30:38 |
| 54.221.88.112 | attackbotsspam | Port scan |
2019-12-04 18:52:50 |
| 188.226.167.212 | attackbots | Fail2Ban - SSH Bruteforce Attempt |
2019-12-04 18:53:37 |
| 118.25.27.102 | attack | Dec 4 09:45:31 legacy sshd[10805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.27.102 Dec 4 09:45:33 legacy sshd[10805]: Failed password for invalid user tildy from 118.25.27.102 port 34696 ssh2 Dec 4 09:53:37 legacy sshd[11219]: Failed password for root from 118.25.27.102 port 38068 ssh2 ... |
2019-12-04 18:28:21 |
| 5.196.73.40 | attackspam | SSH Brute-Force reported by Fail2Ban |
2019-12-04 18:53:17 |