城市(city): Phoenix
省份(region): Arizona
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 20.160.0.0 - 20.175.255.255
CIDR: 20.160.0.0/12
NetName: MSFT
NetHandle: NET-20-160-0-0-1
Parent: NET20 (NET-20-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2017-02-22
Updated: 2017-02-22
Ref: https://rdap.arin.net/registry/ip/20.160.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.168.7.24
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64096
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;20.168.7.24. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026050102 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 02 06:00:30 CST 2026
;; MSG SIZE rcvd: 10424.7.168.20.in-addr.arpa domain name pointer azpdwgoh16ah.stretchoid.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
24.7.168.20.in-addr.arpa name = azpdwgoh16ah.stretchoid.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 178.128.42.36 | attackspam | Sep 21 18:41:08 h2177944 sshd\[4643\]: Invalid user emily from 178.128.42.36 port 47550 Sep 21 18:41:08 h2177944 sshd\[4643\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.42.36 Sep 21 18:41:10 h2177944 sshd\[4643\]: Failed password for invalid user emily from 178.128.42.36 port 47550 ssh2 Sep 21 18:45:19 h2177944 sshd\[4743\]: Invalid user delivery from 178.128.42.36 port 33398 Sep 21 18:45:19 h2177944 sshd\[4743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.42.36 ... |
2019-09-22 00:57:51 |
| 37.59.110.165 | attackbots | Sep 21 13:10:47 plusreed sshd[21819]: Invalid user user from 37.59.110.165 ... |
2019-09-22 01:16:55 |
| 23.94.205.209 | attack | Sep 21 10:43:18 vtv3 sshd\[24817\]: Invalid user ben from 23.94.205.209 port 48776 Sep 21 10:43:18 vtv3 sshd\[24817\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.205.209 Sep 21 10:43:20 vtv3 sshd\[24817\]: Failed password for invalid user ben from 23.94.205.209 port 48776 ssh2 Sep 21 10:46:58 vtv3 sshd\[26928\]: Invalid user tempuser from 23.94.205.209 port 41214 Sep 21 10:46:58 vtv3 sshd\[26928\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.205.209 Sep 21 10:57:48 vtv3 sshd\[32290\]: Invalid user temp from 23.94.205.209 port 46640 Sep 21 10:57:48 vtv3 sshd\[32290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.205.209 Sep 21 10:57:50 vtv3 sshd\[32290\]: Failed password for invalid user temp from 23.94.205.209 port 46640 ssh2 Sep 21 11:01:30 vtv3 sshd\[1924\]: Invalid user gpadmin from 23.94.205.209 port 39088 Sep 21 11:01:30 vtv3 sshd\[1924\]: pam_unix |
2019-09-22 00:59:36 |
| 81.9.24.36 | attackspambots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 13:08:41,295 INFO [shellcode_manager] (81.9.24.36) no match, writing hexdump (62fac287814c195fd321eaba9c13180c :6283) - SMB (Unknown) |
2019-09-22 01:21:15 |
| 54.37.68.191 | attackbots | Sep 21 12:48:10 ny01 sshd[6679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.68.191 Sep 21 12:48:12 ny01 sshd[6679]: Failed password for invalid user usbmux from 54.37.68.191 port 47466 ssh2 Sep 21 12:51:59 ny01 sshd[7403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.68.191 |
2019-09-22 01:09:58 |
| 51.159.17.204 | attack | Sep 21 18:01:44 apollo sshd\[12623\]: Invalid user clinton from 51.159.17.204Sep 21 18:01:46 apollo sshd\[12623\]: Failed password for invalid user clinton from 51.159.17.204 port 59854 ssh2Sep 21 18:22:44 apollo sshd\[12661\]: Failed password for root from 51.159.17.204 port 52390 ssh2 ... |
2019-09-22 00:46:06 |
| 177.91.68.206 | attackbotsspam | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 12:49:57,711 INFO [amun_request_handler] PortScan Detected on Port: 445 (177.91.68.206) |
2019-09-22 01:04:28 |
| 192.168.100.200 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 21-09-2019 17:15:20. |
2019-09-22 00:34:57 |
| 185.100.87.250 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 12:52:29,241 INFO [amun_request_handler] unknown vuln (Attacker: 185.100.87.250 Port: 3268, Mess: ['0\x84\x00\x00\x00-\x02\x01\x07c\x84\x00\x00\x00$\x04\x00\n\x01\x00\n\x01\x00\x02\x01\x00\x02\x01d\x01\x01\x00\x87\x0bobjectClass0\x84\x00\x00\x00\x00'] (51) Stages: ['TREND_STAGE1']) |
2019-09-22 00:42:24 |
| 102.165.36.235 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 21-09-2019 13:55:19. |
2019-09-22 00:44:42 |
| 58.59.12.99 | attack | SMB Server BruteForce Attack |
2019-09-22 00:41:09 |
| 54.39.97.17 | attackbotsspam | Sep 21 07:03:44 sachi sshd\[14287\]: Invalid user password123 from 54.39.97.17 Sep 21 07:03:44 sachi sshd\[14287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=17.ip-54-39-97.net Sep 21 07:03:46 sachi sshd\[14287\]: Failed password for invalid user password123 from 54.39.97.17 port 58042 ssh2 Sep 21 07:07:58 sachi sshd\[14692\]: Invalid user 1234 from 54.39.97.17 Sep 21 07:07:58 sachi sshd\[14692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=17.ip-54-39-97.net |
2019-09-22 01:14:26 |
| 37.6.119.54 | attackbotsspam | Unauthorised access (Sep 21) SRC=37.6.119.54 LEN=40 TTL=50 ID=8782 TCP DPT=8080 WINDOW=41407 SYN |
2019-09-22 01:03:30 |
| 165.22.59.11 | attackspambots | Sep 21 15:37:32 dedicated sshd[20308]: Invalid user alin from 165.22.59.11 port 46490 |
2019-09-22 00:53:35 |
| 40.73.25.111 | attackspambots | Sep 21 06:45:26 lcdev sshd\[28431\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.25.111 user=root Sep 21 06:45:28 lcdev sshd\[28431\]: Failed password for root from 40.73.25.111 port 15984 ssh2 Sep 21 06:49:43 lcdev sshd\[28860\]: Invalid user debian from 40.73.25.111 Sep 21 06:49:43 lcdev sshd\[28860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.25.111 Sep 21 06:49:45 lcdev sshd\[28860\]: Failed password for invalid user debian from 40.73.25.111 port 30770 ssh2 |
2019-09-22 01:05:26 |