20.169.105.213

基本信息:

城市(city): Phoenix

省份(region): Arizona

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       20.160.0.0 - 20.175.255.255
CIDR:           20.160.0.0/12
NetName:        MSFT
NetHandle:      NET-20-160-0-0-1
Parent:         NET20 (NET-20-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Microsoft Corporation (MSFT)
RegDate:        2017-02-22
Updated:        2017-02-22
Ref:            https://rdap.arin.net/registry/ip/20.160.0.0



OrgName:        Microsoft Corporation
OrgId:          MSFT
Address:        One Microsoft Way
City:           Redmond
StateProv:      WA
PostalCode:     98052
Country:        US
RegDate:        1998-07-10
Updated:        2025-06-10
Comment:        To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment:        * https://cert.microsoft.com.  
Comment:        
Comment:        For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment:        * abuse@microsoft.com.  
Comment:        
Comment:        To report security vulnerabilities in Microsoft products and services, please contact:
Comment:        * secure@microsoft.com.  
Comment:        
Comment:        For legal and law enforcement-related requests, please contact:
Comment:        * msndcc@microsoft.com
Comment:        
Comment:        For routing, peering or DNS issues, please 
Comment:        contact:
Comment:        * IOC@microsoft.com
Ref:            https://rdap.arin.net/registry/entity/MSFT


OrgTechHandle: BEDAR6-ARIN
OrgTechName:   Bedard, Dawn 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  dabedard@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/BEDAR6-ARIN

OrgAbuseHandle: MAC74-ARIN
OrgAbuseName:   Microsoft Abuse Contact
OrgAbusePhone:  +1-425-882-8080 
OrgAbuseEmail:  abuse@microsoft.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/MAC74-ARIN

OrgTechHandle: MRPD-ARIN
OrgTechName:   Microsoft Routing, Peering, and DNS
OrgTechPhone:  +1-425-882-8080 
OrgTechEmail:  IOC@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/MRPD-ARIN

OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName:   Chaturmohta, Somesh 
OrgRoutingPhone:  +1-425-882-8080 
OrgRoutingEmail:  someshch@microsoft.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/CHATU3-ARIN

OrgTechHandle: IPHOS5-ARIN
OrgTechName:   IPHostmaster, IPHostmaster 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  iphostmaster@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPHOS5-ARIN

OrgTechHandle: SINGH683-ARIN
OrgTechName:   Singh, Prachi 
OrgTechPhone:  +1-425-707-5601 
OrgTechEmail:  pracsin@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/SINGH683-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.169.105.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37855
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;20.169.105.213.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025100700 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 07 20:34:36 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

213.105.169.20.in-addr.arpa domain name pointer azpdwggixp25.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
213.105.169.20.in-addr.arpa	name = azpdwggixp25.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.28.32.18	attack	Oct 2 20:41:39 hosting sshd[10843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.28.32.18 user=root Oct 2 20:41:41 hosting sshd[10843]: Failed password for root from 103.28.32.18 port 43578 ssh2 ...	2020-10-03 01:50:54
202.142.177.84	attackbots	TCP (SYN) 202.142.177.84:18633 -> port 445, len 52	2020-10-03 02:00:34
187.111.192.13	attack	Oct 2 14:36:28 vps46666688 sshd[8262]: Failed password for root from 187.111.192.13 port 50576 ssh2 ...	2020-10-03 02:05:56
211.103.4.100	attack	DATE:2020-10-02 17:06:09, IP:211.103.4.100, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-10-03 02:01:43
121.201.124.41	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2020-10-03 02:07:23
192.241.239.15	attack	27017/tcp 161/udp 512/tcp... [2020-08-21/10-01]14pkt,13pt.(tcp),1pt.(udp)	2020-10-03 01:37:06
159.89.49.238	attackbotsspam	Invalid user paulo from 159.89.49.238 port 43424	2020-10-03 01:56:48
128.14.230.12	attackbots	Oct 2 23:07:23 mx sshd[1117690]: Failed password for root from 128.14.230.12 port 54446 ssh2 Oct 2 23:11:43 mx sshd[1117844]: Invalid user aaron from 128.14.230.12 port 35944 Oct 2 23:11:43 mx sshd[1117844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.14.230.12 Oct 2 23:11:43 mx sshd[1117844]: Invalid user aaron from 128.14.230.12 port 35944 Oct 2 23:11:45 mx sshd[1117844]: Failed password for invalid user aaron from 128.14.230.12 port 35944 ssh2 ...	2020-10-03 02:06:30
209.97.138.179	attackspam	Oct 2 02:39:08 web9 sshd\[19908\]: Invalid user sid from 209.97.138.179 Oct 2 02:39:08 web9 sshd\[19908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.138.179 Oct 2 02:39:09 web9 sshd\[19908\]: Failed password for invalid user sid from 209.97.138.179 port 46878 ssh2 Oct 2 02:42:55 web9 sshd\[20435\]: Invalid user nextcloud from 209.97.138.179 Oct 2 02:42:55 web9 sshd\[20435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.138.179	2020-10-03 02:10:44
122.155.93.23	attackspambots	1433/tcp 1433/tcp 1433/tcp [2020-08-28/10-01]3pkt	2020-10-03 02:05:08
212.179.226.196	attackspam	2020-10-02T11:58:56.645254paragon sshd[585643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.179.226.196 2020-10-02T11:58:56.641305paragon sshd[585643]: Invalid user admin from 212.179.226.196 port 37736 2020-10-02T11:58:59.422801paragon sshd[585643]: Failed password for invalid user admin from 212.179.226.196 port 37736 ssh2 2020-10-02T12:03:44.634055paragon sshd[585723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.179.226.196 user=root 2020-10-02T12:03:47.280279paragon sshd[585723]: Failed password for root from 212.179.226.196 port 46044 ssh2 ...	2020-10-03 01:57:38
89.187.178.104	attackbots	[2020-10-01 16:35:15] NOTICE[1182][C-000002d0] chan_sip.c: Call from '' (89.187.178.104:59354) to extension '9993011972595725668' rejected because extension not found in context 'public'. [2020-10-01 16:35:15] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-01T16:35:15.797-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9993011972595725668",SessionID="0x7f22f8010848",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/89.187.178.104/59354",ACLName="no_extension_match" [2020-10-01 16:39:32] NOTICE[1182][C-000002d4] chan_sip.c: Call from '' (89.187.178.104:50179) to extension '9997011972595725668' rejected because extension not found in context 'public'. [2020-10-01 16:39:32] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-01T16:39:32.384-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9997011972595725668",SessionID="0x7f22f8033458",LocalAddress="IPV4/UDP/192.168.244.6/5060",Remot ...	2020-10-03 01:45:08
185.142.236.35	attackbotsspam	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-03 01:49:25
106.12.198.236	attackspambots	Invalid user nagios from 106.12.198.236 port 47634	2020-10-03 02:11:05
51.254.156.114	attackspam	Oct 2 19:24:06 DAAP sshd[479]: Invalid user amsftp from 51.254.156.114 port 46082 Oct 2 19:24:06 DAAP sshd[479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.156.114 Oct 2 19:24:06 DAAP sshd[479]: Invalid user amsftp from 51.254.156.114 port 46082 Oct 2 19:24:09 DAAP sshd[479]: Failed password for invalid user amsftp from 51.254.156.114 port 46082 ssh2 Oct 2 19:27:46 DAAP sshd[536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.156.114 user=root Oct 2 19:27:49 DAAP sshd[536]: Failed password for root from 51.254.156.114 port 56278 ssh2 ...	2020-10-03 01:42:43

最近上报的IP列表

45.187.123.146	158.94.209.13	78.31.250.141	231.31.42.173
231.31.42.111	46.203.77.149	46.101.110.174	47.254.35.229
104.248.130.244	159.89.12.105	64.227.112.102	209.38.237.181
167.71.42.213	164.90.177.25	159.223.26.129	138.197.177.250
64.227.116.108	209.38.203.91	134.122.90.165	112.32.57.228