城市(city): Phoenix
省份(region): Arizona
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 20.160.0.0 - 20.175.255.255
CIDR: 20.160.0.0/12
NetName: MSFT
NetHandle: NET-20-160-0-0-1
Parent: NET20 (NET-20-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2017-02-22
Updated: 2017-02-22
Ref: https://rdap.arin.net/registry/ip/20.160.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.168.127.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26231
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;20.168.127.116. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026032502 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 26 11:30:58 CST 2026
;; MSG SIZE rcvd: 107116.127.168.20.in-addr.arpa domain name pointer azpdwgxu2j06.stretchoid.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
116.127.168.20.in-addr.arpa name = azpdwgxu2j06.stretchoid.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 40.117.231.33 | attackbotsspam | SSH authentication failure x 6 reported by Fail2Ban ... |
2020-06-02 18:22:34 |
| 61.50.99.26 | attackspambots | Jun 1 06:17:27 nbi-636 sshd[18333]: User r.r from 61.50.99.26 not allowed because not listed in AllowUsers Jun 1 06:17:27 nbi-636 sshd[18333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.50.99.26 user=r.r Jun 1 06:17:29 nbi-636 sshd[18333]: Failed password for invalid user r.r from 61.50.99.26 port 2267 ssh2 Jun 1 06:17:31 nbi-636 sshd[18333]: Received disconnect from 61.50.99.26 port 2267:11: Bye Bye [preauth] Jun 1 06:17:31 nbi-636 sshd[18333]: Disconnected from invalid user r.r 61.50.99.26 port 2267 [preauth] Jun 1 06:32:50 nbi-636 sshd[22823]: User r.r from 61.50.99.26 not allowed because not listed in AllowUsers Jun 1 06:32:50 nbi-636 sshd[22823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.50.99.26 user=r.r Jun 1 06:32:52 nbi-636 sshd[22823]: Failed password for invalid user r.r from 61.50.99.26 port 61982 ssh2 Jun 1 06:32:52 nbi-636 sshd[22823]: Received disco........ ------------------------------- |
2020-06-02 18:14:06 |
| 186.84.172.25 | attackspambots | Failed password for root from 186.84.172.25 port 37218 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.84.172.25 user=root Failed password for root from 186.84.172.25 port 42120 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.84.172.25 user=root Failed password for root from 186.84.172.25 port 47084 ssh2 |
2020-06-02 17:53:40 |
| 222.186.42.7 | attackspambots | 2020-06-02T09:56:54.903223abusebot-7.cloudsearch.cf sshd[25542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root 2020-06-02T09:56:56.441317abusebot-7.cloudsearch.cf sshd[25542]: Failed password for root from 222.186.42.7 port 47246 ssh2 2020-06-02T09:56:58.463068abusebot-7.cloudsearch.cf sshd[25542]: Failed password for root from 222.186.42.7 port 47246 ssh2 2020-06-02T09:56:54.903223abusebot-7.cloudsearch.cf sshd[25542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root 2020-06-02T09:56:56.441317abusebot-7.cloudsearch.cf sshd[25542]: Failed password for root from 222.186.42.7 port 47246 ssh2 2020-06-02T09:56:58.463068abusebot-7.cloudsearch.cf sshd[25542]: Failed password for root from 222.186.42.7 port 47246 ssh2 2020-06-02T09:56:54.903223abusebot-7.cloudsearch.cf sshd[25542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rho ... |
2020-06-02 17:58:18 |
| 142.93.216.134 | attack | Jun 2 06:58:04 localhost sshd\[2870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.134 user=root Jun 2 06:58:06 localhost sshd\[2870\]: Failed password for root from 142.93.216.134 port 42150 ssh2 Jun 2 07:02:13 localhost sshd\[2940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.216.134 user=root ... |
2020-06-02 18:18:31 |
| 174.138.34.155 | attackspambots | Brute-force attempt banned |
2020-06-02 17:52:48 |
| 222.186.173.142 | attackspambots | Jun 2 12:17:05 ArkNodeAT sshd\[21671\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root Jun 2 12:17:07 ArkNodeAT sshd\[21671\]: Failed password for root from 222.186.173.142 port 64886 ssh2 Jun 2 12:17:19 ArkNodeAT sshd\[21671\]: Failed password for root from 222.186.173.142 port 64886 ssh2 |
2020-06-02 18:18:07 |
| 117.208.0.145 | attackspam | Unauthorized connection attempt from IP address 117.208.0.145 on Port 445(SMB) |
2020-06-02 18:29:53 |
| 218.92.0.201 | attackspambots | Jun 2 11:47:28 legacy sshd[22482]: Failed password for root from 218.92.0.201 port 39802 ssh2 Jun 2 11:47:30 legacy sshd[22482]: Failed password for root from 218.92.0.201 port 39802 ssh2 Jun 2 11:47:32 legacy sshd[22482]: Failed password for root from 218.92.0.201 port 39802 ssh2 ... |
2020-06-02 18:05:22 |
| 167.172.153.137 | attack | $f2bV_matches |
2020-06-02 17:55:46 |
| 138.197.145.163 | attackspam | May 31 22:46:06 cumulus sshd[17512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.163 user=r.r May 31 22:46:08 cumulus sshd[17512]: Failed password for r.r from 138.197.145.163 port 43564 ssh2 May 31 22:46:08 cumulus sshd[17512]: Received disconnect from 138.197.145.163 port 43564:11: Bye Bye [preauth] May 31 22:46:08 cumulus sshd[17512]: Disconnected from 138.197.145.163 port 43564 [preauth] May 31 22:57:00 cumulus sshd[18577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.163 user=r.r May 31 22:57:03 cumulus sshd[18577]: Failed password for r.r from 138.197.145.163 port 44404 ssh2 May 31 22:57:03 cumulus sshd[18577]: Received disconnect from 138.197.145.163 port 44404:11: Bye Bye [preauth] May 31 22:57:03 cumulus sshd[18577]: Disconnected from 138.197.145.163 port 44404 [preauth] May 31 23:00:33 cumulus sshd[18940]: pam_unix(sshd:auth): authentication failure........ ------------------------------- |
2020-06-02 18:14:26 |
| 212.47.241.15 | attackspam | Jun 2 08:03:21 PorscheCustomer sshd[15104]: Failed password for root from 212.47.241.15 port 54858 ssh2 Jun 2 08:06:57 PorscheCustomer sshd[15229]: Failed password for root from 212.47.241.15 port 59176 ssh2 ... |
2020-06-02 17:58:42 |
| 117.218.220.56 | attack | 1591087040 - 06/02/2020 10:37:20 Host: 117.218.220.56/117.218.220.56 Port: 445 TCP Blocked |
2020-06-02 18:28:33 |
| 37.255.242.67 | attackbots | Unauthorised access (Jun 2) SRC=37.255.242.67 LEN=44 TTL=50 ID=20656 TCP DPT=23 WINDOW=48135 SYN |
2020-06-02 18:17:29 |
| 150.95.148.208 | attackspam | $f2bV_matches |
2020-06-02 18:07:14 |