城市(city): Dublin
省份(region): Leinster
国家(country): Ireland
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 20.33.0.0 - 20.128.255.255
CIDR: 20.64.0.0/10, 20.48.0.0/12, 20.34.0.0/15, 20.36.0.0/14, 20.40.0.0/13, 20.128.0.0/16, 20.33.0.0/16
NetName: MSFT
NetHandle: NET-20-33-0-0-1
Parent: NET20 (NET-20-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2017-10-18
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/20.33.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.123.33.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38888
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;20.123.33.13. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026041500 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 15 21:30:02 CST 2026
;; MSG SIZE rcvd: 105Host 13.33.123.20.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 13.33.123.20.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 139.59.57.2 | attackbots | 31353/tcp 5324/tcp 16525/tcp... [2020-06-22/08-08]123pkt,48pt.(tcp) |
2020-08-09 06:31:58 |
| 222.186.15.62 | attackspam | 2020-08-08T22:24:36.312689vps1033 sshd[18222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62 user=root 2020-08-08T22:24:38.376143vps1033 sshd[18222]: Failed password for root from 222.186.15.62 port 56009 ssh2 2020-08-08T22:24:36.312689vps1033 sshd[18222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62 user=root 2020-08-08T22:24:38.376143vps1033 sshd[18222]: Failed password for root from 222.186.15.62 port 56009 ssh2 2020-08-08T22:24:40.621376vps1033 sshd[18222]: Failed password for root from 222.186.15.62 port 56009 ssh2 ... |
2020-08-09 06:32:28 |
| 59.151.43.20 | attackspambots | Unauthorised access (Aug 8) SRC=59.151.43.20 LEN=40 TTL=43 ID=60563 TCP DPT=8080 WINDOW=13634 SYN Unauthorised access (Aug 7) SRC=59.151.43.20 LEN=40 TTL=43 ID=2749 TCP DPT=8080 WINDOW=13634 SYN Unauthorised access (Aug 6) SRC=59.151.43.20 LEN=40 TTL=43 ID=58973 TCP DPT=8080 WINDOW=20125 SYN Unauthorised access (Aug 6) SRC=59.151.43.20 LEN=40 TTL=43 ID=1704 TCP DPT=8080 WINDOW=13634 SYN Unauthorised access (Aug 6) SRC=59.151.43.20 LEN=40 TTL=39 ID=57747 TCP DPT=8080 WINDOW=13634 SYN Unauthorised access (Aug 5) SRC=59.151.43.20 LEN=40 TTL=43 ID=39179 TCP DPT=8080 WINDOW=20125 SYN Unauthorised access (Aug 5) SRC=59.151.43.20 LEN=40 TTL=43 ID=59888 TCP DPT=8080 WINDOW=13634 SYN Unauthorised access (Aug 4) SRC=59.151.43.20 LEN=40 TTL=43 ID=20824 TCP DPT=8080 WINDOW=20125 SYN |
2020-08-09 06:04:04 |
| 222.186.42.57 | attackspam | Aug 9 00:09:01 minden010 sshd[18697]: Failed password for root from 222.186.42.57 port 54030 ssh2 Aug 9 00:09:03 minden010 sshd[18697]: Failed password for root from 222.186.42.57 port 54030 ssh2 Aug 9 00:09:05 minden010 sshd[18697]: Failed password for root from 222.186.42.57 port 54030 ssh2 ... |
2020-08-09 06:09:47 |
| 194.190.22.90 | attack | Aug 8 23:04:43 *hidden* sshd[41874]: Failed password for *hidden* from 194.190.22.90 port 38620 ssh2 Aug 8 23:08:29 *hidden* sshd[51609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.190.22.90 user=root Aug 8 23:08:31 *hidden* sshd[51609]: Failed password for *hidden* from 194.190.22.90 port 48914 ssh2 Aug 8 23:12:16 *hidden* sshd[60497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.190.22.90 user=root Aug 8 23:12:19 *hidden* sshd[60497]: Failed password for *hidden* from 194.190.22.90 port 59208 ssh2 |
2020-08-09 06:34:01 |
| 198.199.73.87 | attack | WordPress login Brute force / Web App Attack on client site. |
2020-08-09 06:19:10 |
| 185.175.93.104 | attackbotsspam | 08/08/2020-18:16:15.083524 185.175.93.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-08-09 06:21:21 |
| 199.229.249.188 | attack | 1 attempts against mh-modsecurity-ban on mist |
2020-08-09 06:10:49 |
| 209.126.124.203 | attack | Aug 8 22:29:21 ns382633 sshd\[30175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.126.124.203 user=root Aug 8 22:29:23 ns382633 sshd\[30175\]: Failed password for root from 209.126.124.203 port 35282 ssh2 Aug 8 22:39:17 ns382633 sshd\[32029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.126.124.203 user=root Aug 8 22:39:19 ns382633 sshd\[32029\]: Failed password for root from 209.126.124.203 port 48652 ssh2 Aug 8 22:42:52 ns382633 sshd\[378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.126.124.203 user=root |
2020-08-09 06:14:11 |
| 49.88.112.112 | attack | Aug 8 18:17:55 plusreed sshd[14455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.112 user=root Aug 8 18:17:57 plusreed sshd[14455]: Failed password for root from 49.88.112.112 port 10828 ssh2 ... |
2020-08-09 06:21:05 |
| 50.21.189.251 | attackspambots | Aug 8 22:26:57 rancher-0 sshd[929307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.21.189.251 user=root Aug 8 22:26:58 rancher-0 sshd[929307]: Failed password for root from 50.21.189.251 port 38594 ssh2 ... |
2020-08-09 06:09:10 |
| 110.78.19.34 | attackspambots | 20/8/8@17:04:05: FAIL: Alarm-Network address from=110.78.19.34 20/8/8@17:04:05: FAIL: Alarm-Network address from=110.78.19.34 ... |
2020-08-09 06:27:53 |
| 79.6.216.208 | attackbots | Lines containing failures of 79.6.216.208 Aug 3 14:59:16 neweola sshd[16388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.6.216.208 user=r.r Aug 3 14:59:17 neweola sshd[16388]: Failed password for r.r from 79.6.216.208 port 51069 ssh2 Aug 3 14:59:18 neweola sshd[16388]: Received disconnect from 79.6.216.208 port 51069:11: Bye Bye [preauth] Aug 3 14:59:18 neweola sshd[16388]: Disconnected from authenticating user r.r 79.6.216.208 port 51069 [preauth] Aug 3 15:03:16 neweola sshd[16588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.6.216.208 user=r.r Aug 3 15:03:18 neweola sshd[16588]: Failed password for r.r from 79.6.216.208 port 59073 ssh2 Aug 3 15:03:18 neweola sshd[16588]: Received disconnect from 79.6.216.208 port 59073:11: Bye Bye [preauth] Aug 3 15:03:18 neweola sshd[16588]: Disconnected from authenticating user r.r 79.6.216.208 port 59073 [preauth] Aug 3 15:07:17........ ------------------------------ |
2020-08-09 06:12:39 |
| 104.168.190.54 | attack | Automatic report - Port Scan Attack |
2020-08-09 06:24:05 |
| 103.129.223.98 | attack | Aug 9 00:46:53 hosting sshd[24185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.129.223.98 user=root Aug 9 00:46:55 hosting sshd[24185]: Failed password for root from 103.129.223.98 port 52850 ssh2 ... |
2020-08-09 06:23:49 |