城市(city): San Antonio
省份(region): Texas
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 20.33.0.0 - 20.128.255.255
CIDR: 20.64.0.0/10, 20.128.0.0/16, 20.33.0.0/16, 20.48.0.0/12, 20.40.0.0/13, 20.34.0.0/15, 20.36.0.0/14
NetName: MSFT
NetHandle: NET-20-33-0-0-1
Parent: NET20 (NET-20-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2017-10-18
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/20.33.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.65.136.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58808
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;20.65.136.30. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025101300 1800 900 604800 86400
;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 13 17:00:37 CST 2025
;; MSG SIZE rcvd: 10530.136.65.20.in-addr.arpa domain name pointer azpdsgl9thsy.stretchoid.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
30.136.65.20.in-addr.arpa name = azpdsgl9thsy.stretchoid.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 61.160.245.87 | attackspambots | Jul 24 03:24:50 firewall sshd[27884]: Invalid user ankesh from 61.160.245.87 Jul 24 03:24:51 firewall sshd[27884]: Failed password for invalid user ankesh from 61.160.245.87 port 50484 ssh2 Jul 24 03:30:03 firewall sshd[28067]: Invalid user allan from 61.160.245.87 ... |
2020-07-24 14:43:35 |
| 128.199.124.159 | attack | Jul 24 07:22:26 debian-2gb-nbg1-2 kernel: \[17826668.402714\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=128.199.124.159 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=60022 PROTO=TCP SPT=49868 DPT=20586 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-07-24 14:35:02 |
| 170.233.30.33 | attack | Jul 24 13:28:35 webhost01 sshd[30593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.233.30.33 Jul 24 13:28:37 webhost01 sshd[30593]: Failed password for invalid user composer from 170.233.30.33 port 39882 ssh2 ... |
2020-07-24 14:32:28 |
| 117.5.159.144 | attackbotsspam | 20/7/24@01:20:28: FAIL: Alarm-Network address from=117.5.159.144 20/7/24@01:20:28: FAIL: Alarm-Network address from=117.5.159.144 ... |
2020-07-24 14:10:20 |
| 134.122.72.221 | attackspambots | firewall-block, port(s): 2282/tcp |
2020-07-24 14:33:08 |
| 188.244.29.196 | attackspam | Blog Spam |
2020-07-24 14:38:17 |
| 165.22.251.121 | attackbotsspam | xmlrpc attack |
2020-07-24 14:12:18 |
| 71.168.190.128 | attack | Host Scan |
2020-07-24 14:17:07 |
| 111.161.74.118 | attackbots | Jul 23 19:19:28 php1 sshd\[26538\]: Invalid user tester from 111.161.74.118 Jul 23 19:19:28 php1 sshd\[26538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.118 Jul 23 19:19:30 php1 sshd\[26538\]: Failed password for invalid user tester from 111.161.74.118 port 57526 ssh2 Jul 23 19:23:36 php1 sshd\[26921\]: Invalid user pdfbox from 111.161.74.118 Jul 23 19:23:36 php1 sshd\[26921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.118 |
2020-07-24 14:44:39 |
| 106.12.173.149 | attackspam | Jul 24 06:10:25 game-panel sshd[10302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.173.149 Jul 24 06:10:27 game-panel sshd[10302]: Failed password for invalid user cronuser from 106.12.173.149 port 49382 ssh2 Jul 24 06:12:18 game-panel sshd[10351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.173.149 |
2020-07-24 14:16:26 |
| 50.236.62.30 | attackspam | Jul 24 07:55:06 ip106 sshd[23022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.236.62.30 Jul 24 07:55:08 ip106 sshd[23022]: Failed password for invalid user frank from 50.236.62.30 port 46178 ssh2 ... |
2020-07-24 14:02:15 |
| 164.132.38.166 | attack | 164.132.38.166 - - \[24/Jul/2020:07:20:28 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 164.132.38.166 - - \[24/Jul/2020:07:20:29 +0200\] "POST /wp-login.php HTTP/1.0" 200 6267 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 164.132.38.166 - - \[24/Jul/2020:07:20:30 +0200\] "POST /wp-login.php HTTP/1.0" 200 6263 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2020-07-24 14:04:57 |
| 178.16.175.146 | attack | Jul 24 07:51:13 srv-ubuntu-dev3 sshd[74200]: Invalid user lfq from 178.16.175.146 Jul 24 07:51:13 srv-ubuntu-dev3 sshd[74200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.16.175.146 Jul 24 07:51:13 srv-ubuntu-dev3 sshd[74200]: Invalid user lfq from 178.16.175.146 Jul 24 07:51:15 srv-ubuntu-dev3 sshd[74200]: Failed password for invalid user lfq from 178.16.175.146 port 42830 ssh2 Jul 24 07:55:02 srv-ubuntu-dev3 sshd[74622]: Invalid user admin from 178.16.175.146 Jul 24 07:55:02 srv-ubuntu-dev3 sshd[74622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.16.175.146 Jul 24 07:55:02 srv-ubuntu-dev3 sshd[74622]: Invalid user admin from 178.16.175.146 Jul 24 07:55:03 srv-ubuntu-dev3 sshd[74622]: Failed password for invalid user admin from 178.16.175.146 port 2756 ssh2 Jul 24 07:58:50 srv-ubuntu-dev3 sshd[75059]: Invalid user ubuntu from 178.16.175.146 ... |
2020-07-24 14:15:23 |
| 200.45.147.129 | attack | 2020-07-24T05:48:01.374339vps1033 sshd[15047]: Invalid user dmg from 200.45.147.129 port 5857 2020-07-24T05:48:01.379115vps1033 sshd[15047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host129.200-45-147.telecom.net.ar 2020-07-24T05:48:01.374339vps1033 sshd[15047]: Invalid user dmg from 200.45.147.129 port 5857 2020-07-24T05:48:03.403190vps1033 sshd[15047]: Failed password for invalid user dmg from 200.45.147.129 port 5857 ssh2 2020-07-24T05:53:05.576055vps1033 sshd[25968]: Invalid user max from 200.45.147.129 port 51485 ... |
2020-07-24 14:23:34 |
| 89.139.203.206 | attackspam | Host Scan |
2020-07-24 14:37:44 |