必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Tokyo

省份(region): Tokyo

国家(country): Japan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       20.33.0.0 - 20.128.255.255
CIDR:           20.128.0.0/16, 20.64.0.0/10, 20.34.0.0/15, 20.33.0.0/16, 20.40.0.0/13, 20.48.0.0/12, 20.36.0.0/14
NetName:        MSFT
NetHandle:      NET-20-33-0-0-1
Parent:         NET20 (NET-20-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Microsoft Corporation (MSFT)
RegDate:        2017-10-18
Updated:        2021-12-14
Ref:            https://rdap.arin.net/registry/ip/20.33.0.0



OrgName:        Microsoft Corporation
OrgId:          MSFT
Address:        One Microsoft Way
City:           Redmond
StateProv:      WA
PostalCode:     98052
Country:        US
RegDate:        1998-07-10
Updated:        2025-06-10
Comment:        To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment:        * https://cert.microsoft.com.  
Comment:        
Comment:        For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment:        * abuse@microsoft.com.  
Comment:        
Comment:        To report security vulnerabilities in Microsoft products and services, please contact:
Comment:        * secure@microsoft.com.  
Comment:        
Comment:        For legal and law enforcement-related requests, please contact:
Comment:        * msndcc@microsoft.com
Comment:        
Comment:        For routing, peering or DNS issues, please 
Comment:        contact:
Comment:        * IOC@microsoft.com
Ref:            https://rdap.arin.net/registry/entity/MSFT


OrgTechHandle: BEDAR6-ARIN
OrgTechName:   Bedard, Dawn 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  dabedard@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/BEDAR6-ARIN

OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName:   Chaturmohta, Somesh 
OrgRoutingPhone:  +1-425-882-8080 
OrgRoutingEmail:  someshch@microsoft.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/CHATU3-ARIN

OrgTechHandle: SINGH683-ARIN
OrgTechName:   Singh, Prachi 
OrgTechPhone:  +1-425-707-5601 
OrgTechEmail:  pracsin@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/SINGH683-ARIN

OrgTechHandle: IPHOS5-ARIN
OrgTechName:   IPHostmaster, IPHostmaster 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  iphostmaster@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPHOS5-ARIN

OrgAbuseHandle: MAC74-ARIN
OrgAbuseName:   Microsoft Abuse Contact
OrgAbusePhone:  +1-425-882-8080 
OrgAbuseEmail:  abuse@microsoft.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/MAC74-ARIN

OrgTechHandle: MRPD-ARIN
OrgTechName:   Microsoft Routing, Peering, and DNS
OrgTechPhone:  +1-425-882-8080 
OrgTechEmail:  IOC@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/MRPD-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.89.19.185
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12189
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;20.89.19.185.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026070500 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 06 01:30:02 CST 2026
;; MSG SIZE  rcvd: 105
HOST信息:
Host 185.19.89.20.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 185.19.89.20.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
222.186.31.83 attack
Sep 27 07:41:20 localhost sshd[82579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83  user=root
Sep 27 07:41:22 localhost sshd[82579]: Failed password for root from 222.186.31.83 port 14069 ssh2
Sep 27 07:41:24 localhost sshd[82579]: Failed password for root from 222.186.31.83 port 14069 ssh2
Sep 27 07:41:20 localhost sshd[82579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83  user=root
Sep 27 07:41:22 localhost sshd[82579]: Failed password for root from 222.186.31.83 port 14069 ssh2
Sep 27 07:41:24 localhost sshd[82579]: Failed password for root from 222.186.31.83 port 14069 ssh2
Sep 27 07:41:20 localhost sshd[82579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83  user=root
Sep 27 07:41:22 localhost sshd[82579]: Failed password for root from 222.186.31.83 port 14069 ssh2
Sep 27 07:41:24 localhost sshd[82579]: Failed pas
...
2020-09-27 15:48:52
52.175.204.16 attack
Sep 27 09:19:05 ns3164893 sshd[19520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.175.204.16
Sep 27 09:19:07 ns3164893 sshd[19520]: Failed password for invalid user 148 from 52.175.204.16 port 31808 ssh2
...
2020-09-27 15:53:56
117.144.189.69 attack
Sep 27 10:14:12 vpn01 sshd[10805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.144.189.69
Sep 27 10:14:15 vpn01 sshd[10805]: Failed password for invalid user hdfs from 117.144.189.69 port 37765 ssh2
...
2020-09-27 16:18:08
104.211.203.197 attackspambots
Sep 27 09:15:01 ns381471 sshd[24919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.203.197
Sep 27 09:15:03 ns381471 sshd[24919]: Failed password for invalid user 148 from 104.211.203.197 port 29081 ssh2
2020-09-27 15:49:33
83.233.231.3 attackbots
Sep 27 09:48:34 host2 sshd[1796495]: Failed password for root from 83.233.231.3 port 43960 ssh2
Sep 27 09:48:33 host2 sshd[1796495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.233.231.3  user=root
Sep 27 09:48:34 host2 sshd[1796495]: Failed password for root from 83.233.231.3 port 43960 ssh2
Sep 27 09:52:14 host2 sshd[1797161]: Invalid user admin from 83.233.231.3 port 54508
Sep 27 09:52:14 host2 sshd[1797161]: Invalid user admin from 83.233.231.3 port 54508
...
2020-09-27 16:28:01
52.231.35.13 attackspambots
52.231.35.13 (KR/South Korea/-), 5 distributed sshd attacks on account [admin] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 27 07:58:41 server2 sshd[32545]: Invalid user admin from 51.140.165.127 port 5417
Sep 27 07:58:22 server2 sshd[32481]: Failed password for invalid user admin from 52.231.35.13 port 28712 ssh2
Sep 27 07:51:36 server2 sshd[30394]: Failed password for invalid user admin from 104.248.114.67 port 54616 ssh2
Sep 27 07:51:38 server2 sshd[30559]: Invalid user admin from 164.90.147.219 port 33608
Sep 27 07:58:21 server2 sshd[32481]: Invalid user admin from 52.231.35.13 port 28712

IP Addresses Blocked:

51.140.165.127 (GB/United Kingdom/-)
2020-09-27 15:59:07
180.123.69.123 attack
" "
2020-09-27 16:30:15
64.227.7.123 attackspambots
64.227.7.123 - - [27/Sep/2020:05:56:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2172 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
64.227.7.123 - - [27/Sep/2020:05:56:23 +0100] "POST /wp-login.php HTTP/1.1" 200 2199 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
64.227.7.123 - - [27/Sep/2020:05:56:24 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-27 16:22:59
218.92.0.185 attack
Sep 27 09:31:46 ns308116 sshd[19664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.185  user=root
Sep 27 09:31:48 ns308116 sshd[19664]: Failed password for root from 218.92.0.185 port 20045 ssh2
Sep 27 09:31:52 ns308116 sshd[19664]: Failed password for root from 218.92.0.185 port 20045 ssh2
Sep 27 09:31:56 ns308116 sshd[19664]: Failed password for root from 218.92.0.185 port 20045 ssh2
Sep 27 09:31:59 ns308116 sshd[19664]: Failed password for root from 218.92.0.185 port 20045 ssh2
...
2020-09-27 16:33:27
36.133.40.45 attackspambots
Sep 27 08:56:04 v22019038103785759 sshd\[24407\]: Invalid user administrador from 36.133.40.45 port 52514
Sep 27 08:56:04 v22019038103785759 sshd\[24407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.40.45
Sep 27 08:56:07 v22019038103785759 sshd\[24407\]: Failed password for invalid user administrador from 36.133.40.45 port 52514 ssh2
Sep 27 09:02:07 v22019038103785759 sshd\[25001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.40.45  user=root
Sep 27 09:02:09 v22019038103785759 sshd\[25001\]: Failed password for root from 36.133.40.45 port 57006 ssh2
...
2020-09-27 15:52:09
152.136.36.250 attackspam
invalid login attempt (samp)
2020-09-27 16:04:58
217.27.117.136 attackspam
$f2bV_matches
2020-09-27 16:01:38
118.24.208.24 attackspambots
Sep 27 10:04:28 sip sshd[22150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.208.24
Sep 27 10:04:30 sip sshd[22150]: Failed password for invalid user markus from 118.24.208.24 port 54536 ssh2
Sep 27 10:13:49 sip sshd[24664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.208.24
2020-09-27 16:20:57
123.13.210.89 attackbots
SSH Brute-Forcing (server2)
2020-09-27 16:04:10
122.114.14.153 attackbotsspam
Sep 27 06:06:30 cho sshd[3757246]: Failed password for invalid user user from 122.114.14.153 port 56320 ssh2
Sep 27 06:10:54 cho sshd[3757526]: Invalid user cashier from 122.114.14.153 port 57828
Sep 27 06:10:54 cho sshd[3757526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.14.153 
Sep 27 06:10:54 cho sshd[3757526]: Invalid user cashier from 122.114.14.153 port 57828
Sep 27 06:10:56 cho sshd[3757526]: Failed password for invalid user cashier from 122.114.14.153 port 57828 ssh2
...
2020-09-27 16:26:43

最近上报的IP列表

34.34.253.193 27.30.123.159 36.248.156.97 2606:4700:10::6816:2568
2606:4700:10::6814:6094 221.211.156.141 27.227.110.48 113.215.188.175
104.164.8.79 2606:4700:10::6814:7569 2606:4700:10::6816:482 2606:4700:10::6814:9909
2606:4700:10::ac43:1906 168.144.130.27 159.89.1.53 20.151.225.63
2606:4700:10::6814:4448 2606:4700:10::6814:7199 2606:4700:10::6814:8990 14.104.26.95