20.72.234.123 - IPInfo

基本信息:

城市(city): unknown

省份(region): Washington

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       20.33.0.0 - 20.128.255.255
CIDR:           20.64.0.0/10, 20.36.0.0/14, 20.34.0.0/15, 20.40.0.0/13, 20.128.0.0/16, 20.48.0.0/12, 20.33.0.0/16
NetName:        MSFT
NetHandle:      NET-20-33-0-0-1
Parent:         NET20 (NET-20-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Microsoft Corporation (MSFT)
RegDate:        2017-10-18
Updated:        2021-12-14
Ref:            https://rdap.arin.net/registry/ip/20.33.0.0



OrgName:        Microsoft Corporation
OrgId:          MSFT
Address:        One Microsoft Way
City:           Redmond
StateProv:      WA
PostalCode:     98052
Country:        US
RegDate:        1998-07-10
Updated:        2025-06-10
Comment:        To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment:        * https://cert.microsoft.com.  
Comment:        
Comment:        For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment:        * abuse@microsoft.com.  
Comment:        
Comment:        To report security vulnerabilities in Microsoft products and services, please contact:
Comment:        * secure@microsoft.com.  
Comment:        
Comment:        For legal and law enforcement-related requests, please contact:
Comment:        * msndcc@microsoft.com
Comment:        
Comment:        For routing, peering or DNS issues, please 
Comment:        contact:
Comment:        * IOC@microsoft.com
Ref:            https://rdap.arin.net/registry/entity/MSFT


OrgTechHandle: MRPD-ARIN
OrgTechName:   Microsoft Routing, Peering, and DNS
OrgTechPhone:  +1-425-882-8080 
OrgTechEmail:  IOC@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/MRPD-ARIN

OrgTechHandle: SINGH683-ARIN
OrgTechName:   Singh, Prachi 
OrgTechPhone:  +1-425-707-5601 
OrgTechEmail:  pracsin@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/SINGH683-ARIN

OrgTechHandle: IPHOS5-ARIN
OrgTechName:   IPHostmaster, IPHostmaster 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  iphostmaster@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPHOS5-ARIN

OrgTechHandle: BEDAR6-ARIN
OrgTechName:   Bedard, Dawn 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  dabedard@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/BEDAR6-ARIN

OrgAbuseHandle: MAC74-ARIN
OrgAbuseName:   Microsoft Abuse Contact
OrgAbusePhone:  +1-425-882-8080 
OrgAbuseEmail:  abuse@microsoft.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/MAC74-ARIN

OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName:   Chaturmohta, Somesh 
OrgRoutingPhone:  +1-425-882-8080 
OrgRoutingEmail:  someshch@microsoft.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/CHATU3-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.72.234.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9797
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;20.72.234.123.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026031802 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 19 07:01:23 CST 2026
;; MSG SIZE  rcvd: 106

HOST信息:

Host 123.234.72.20.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 123.234.72.20.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
2604:a880:cad:d0::54f:c001	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-12-25 05:13:14
80.82.70.239	attackbots	Dec 24 22:22:32 debian-2gb-nbg1-2 kernel: \[875290.086841\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.70.239 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=5925 PROTO=TCP SPT=41223 DPT=3244 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-25 05:28:54
118.24.162.32	attackspam	Dec 24 20:53:58 XXX sshd[31145]: Invalid user supersys from 118.24.162.32 port 45272	2019-12-25 05:02:52
185.209.0.92	attackspambots	12/24/2019-16:05:57.169577 185.209.0.92 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-25 05:13:58
103.28.52.65	attack	103.28.52.65 - - \[24/Dec/2019:16:29:25 +0100\] "POST /wp-login.php HTTP/1.0" 200 7544 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.28.52.65 - - \[24/Dec/2019:16:29:29 +0100\] "POST /wp-login.php HTTP/1.0" 200 7411 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.28.52.65 - - \[24/Dec/2019:16:29:33 +0100\] "POST /wp-login.php HTTP/1.0" 200 7407 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-25 05:13:00
5.104.58.209	attackbots	Unauthorized connection attempt detected from IP address 5.104.58.209 to port 445	2019-12-25 05:08:07
137.135.213.165	attackbotsspam	Dec 24 20:00:28 XXX sshd[30692]: Invalid user matthieu from 137.135.213.165 port 56972	2019-12-25 05:11:26
188.130.5.177	attackbotsspam	Dec 24 15:55:57 zeus sshd[7472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.130.5.177 Dec 24 15:55:59 zeus sshd[7472]: Failed password for invalid user galaxiv from 188.130.5.177 port 43166 ssh2 Dec 24 15:59:17 zeus sshd[7525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.130.5.177 Dec 24 15:59:19 zeus sshd[7525]: Failed password for invalid user 12345 from 188.130.5.177 port 47294 ssh2	2019-12-25 05:23:59
70.118.31.195	attackspambots	Automatic report - Port Scan Attack	2019-12-25 05:08:34
86.243.205.194	attackspambots	Automatic report - Port Scan	2019-12-25 05:27:43
222.186.175.140	attackspambots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Failed password for root from 222.186.175.140 port 62618 ssh2 Failed password for root from 222.186.175.140 port 62618 ssh2 Failed password for root from 222.186.175.140 port 62618 ssh2 Failed password for root from 222.186.175.140 port 62618 ssh2	2019-12-25 05:18:26
103.254.120.222	attack	Invalid user wall from 103.254.120.222 port 40030	2019-12-25 05:14:48
46.166.148.42	attack	\[2019-12-24 15:38:38\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-24T15:38:38.144-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="190441241815740",SessionID="0x7f0fb4a5a908",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.148.42/50354",ACLName="no_extension_match" \[2019-12-24 15:39:13\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-24T15:39:13.525-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="77011441241815740",SessionID="0x7f0fb4a5a908",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.148.42/49487",ACLName="no_extension_match" \[2019-12-24 15:39:49\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-24T15:39:49.850-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="6253011441241815740",SessionID="0x7f0fb4a5a908",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.148.42/64111",ACLName="	2019-12-25 04:58:58
45.146.201.134	attackspambots	Lines containing failures of 45.146.201.134 Dec 24 15:03:39 shared04 postfix/smtpd[3203]: connect from countess.jovenesarrechas.com[45.146.201.134] Dec 24 15:03:39 shared04 policyd-spf[3361]: prepend Received-SPF: None (mailfrom) identhostnamey=mailfrom; client-ip=45.146.201.134; helo=countess.rbaaq.com; envelope-from=x@x Dec x@x Dec 24 15:03:39 shared04 postfix/smtpd[3203]: disconnect from countess.jovenesarrechas.com[45.146.201.134] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Dec 24 15:03:51 shared04 postfix/smtpd[664]: connect from countess.jovenesarrechas.com[45.146.201.134] Dec 24 15:03:51 shared04 policyd-spf[667]: prepend Received-SPF: None (mailfrom) identhostnamey=mailfrom; client-ip=45.146.201.134; helo=countess.rbaaq.com; envelope-from=x@x Dec x@x Dec 24 15:03:51 shared04 postfix/smtpd[664]: disconnect from countess.jovenesarrechas.com[45.146.201.134] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Dec 24 15:05:06 shared04 postfix/smtpd........ ------------------------------	2019-12-25 04:54:58
49.232.5.122	attack	Dec 24 18:27:46 mout sshd[27991]: Invalid user basnett from 49.232.5.122 port 55594	2019-12-25 04:57:05

最近上报的IP列表

111.18.74.64	2606:4700:10::6816:1345	2606:4700:10::6816:2999	2606:4700:10::6814:6530
2606:4700:10::6814:4688	2606:4700:10::6814:6356	2606:4700:10::6816:3220	2606:4700:10::6816:994
2606:4700:10::6816:1052	2606:4700:10::6814:7179	2606:4700:10::6816:4527	198.169.25.68
188.166.156.192	117.189.169.2	122.192.203.31	2606:4700:10::6814:9820
2606:4700:10::6816:3410	110.78.154.114	183.153.99.76	20.110.8.25