城市(city): Washington
省份(region): Virginia
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 40.74.0.0 - 40.125.127.255
CIDR: 40.125.0.0/17, 40.80.0.0/12, 40.74.0.0/15, 40.76.0.0/14, 40.124.0.0/16, 40.112.0.0/13, 40.96.0.0/12, 40.120.0.0/14
NetName: MSFT
NetHandle: NET-40-74-0-0-1
Parent: NET40 (NET-40-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2015-02-23
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/40.74.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 40.90.250.163
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42287
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;40.90.250.163. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025113000 1800 900 604800 86400
;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 30 17:01:07 CST 2025
;; MSG SIZE rcvd: 106163.250.90.40.in-addr.arpa domain name pointer azpdegqcfxtk.stretchoid.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
163.250.90.40.in-addr.arpa name = azpdegqcfxtk.stretchoid.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 222.186.173.154 | attackspambots | Dec 5 20:29:44 hanapaa sshd\[30841\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root Dec 5 20:29:46 hanapaa sshd\[30841\]: Failed password for root from 222.186.173.154 port 6334 ssh2 Dec 5 20:29:50 hanapaa sshd\[30841\]: Failed password for root from 222.186.173.154 port 6334 ssh2 Dec 5 20:29:54 hanapaa sshd\[30841\]: Failed password for root from 222.186.173.154 port 6334 ssh2 Dec 5 20:30:03 hanapaa sshd\[30877\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root |
2019-12-06 14:45:00 |
| 77.232.128.87 | attackbots | Dec 6 07:58:40 vps647732 sshd[16407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.232.128.87 Dec 6 07:58:41 vps647732 sshd[16407]: Failed password for invalid user guest from 77.232.128.87 port 46076 ssh2 ... |
2019-12-06 15:04:13 |
| 162.158.79.84 | attackspambots | Automated report (2019-12-06T04:58:23+00:00). Scraper detected at this address. |
2019-12-06 14:25:45 |
| 222.186.173.142 | attackspambots | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root Failed password for root from 222.186.173.142 port 42150 ssh2 Failed password for root from 222.186.173.142 port 42150 ssh2 Failed password for root from 222.186.173.142 port 42150 ssh2 Failed password for root from 222.186.173.142 port 42150 ssh2 |
2019-12-06 14:45:20 |
| 191.241.66.82 | attackspambots | postfix |
2019-12-06 14:48:27 |
| 138.204.225.226 | attackbotsspam | DATE:2019-12-06 07:30:10, IP:138.204.225.226, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc) |
2019-12-06 15:10:02 |
| 49.206.17.36 | attackspambots | 2019-12-06T07:30:06.772951scmdmz1 sshd\[17423\]: Invalid user frighten123 from 49.206.17.36 port 36418 2019-12-06T07:30:06.777538scmdmz1 sshd\[17423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.206.17.36 2019-12-06T07:30:09.394353scmdmz1 sshd\[17423\]: Failed password for invalid user frighten123 from 49.206.17.36 port 36418 ssh2 ... |
2019-12-06 15:06:51 |
| 111.231.79.44 | attack | Dec 6 07:02:54 microserver sshd[32346]: Invalid user senjuro from 111.231.79.44 port 58260 Dec 6 07:02:54 microserver sshd[32346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.79.44 Dec 6 07:02:56 microserver sshd[32346]: Failed password for invalid user senjuro from 111.231.79.44 port 58260 ssh2 Dec 6 07:09:44 microserver sshd[33223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.79.44 user=root Dec 6 07:09:46 microserver sshd[33223]: Failed password for root from 111.231.79.44 port 36448 ssh2 Dec 6 07:22:37 microserver sshd[35323]: Invalid user halldis from 111.231.79.44 port 49136 Dec 6 07:22:37 microserver sshd[35323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.79.44 Dec 6 07:22:38 microserver sshd[35323]: Failed password for invalid user halldis from 111.231.79.44 port 49136 ssh2 Dec 6 07:29:16 microserver sshd[36156]: Invalid user gaynor from |
2019-12-06 14:57:25 |
| 191.243.143.170 | attackbots | $f2bV_matches |
2019-12-06 15:12:53 |
| 181.129.182.3 | attackbotsspam | Dec 6 07:24:07 OPSO sshd\[20252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.129.182.3 user=root Dec 6 07:24:08 OPSO sshd\[20252\]: Failed password for root from 181.129.182.3 port 41842 ssh2 Dec 6 07:30:00 OPSO sshd\[21722\]: Invalid user news from 181.129.182.3 port 36238 Dec 6 07:30:00 OPSO sshd\[21722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.129.182.3 Dec 6 07:30:02 OPSO sshd\[21722\]: Failed password for invalid user news from 181.129.182.3 port 36238 ssh2 |
2019-12-06 14:50:10 |
| 200.148.2.41 | attackspam | Telnetd brute force attack detected by fail2ban |
2019-12-06 15:09:14 |
| 83.97.20.46 | attack | 12/06/2019-07:30:35.494227 83.97.20.46 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-12-06 15:03:35 |
| 112.85.42.173 | attackbotsspam | Dec 5 20:53:54 hpm sshd\[10898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root Dec 5 20:53:56 hpm sshd\[10898\]: Failed password for root from 112.85.42.173 port 28558 ssh2 Dec 5 20:54:06 hpm sshd\[10898\]: Failed password for root from 112.85.42.173 port 28558 ssh2 Dec 5 20:54:09 hpm sshd\[10898\]: Failed password for root from 112.85.42.173 port 28558 ssh2 Dec 5 20:54:13 hpm sshd\[10956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root |
2019-12-06 14:57:08 |
| 69.55.49.194 | attackspam | Dec 5 20:58:46 php1 sshd\[1897\]: Invalid user admin from 69.55.49.194 Dec 5 20:58:46 php1 sshd\[1897\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.55.49.194 Dec 5 20:58:47 php1 sshd\[1897\]: Failed password for invalid user admin from 69.55.49.194 port 50578 ssh2 Dec 5 21:04:30 php1 sshd\[2423\]: Invalid user yoyo from 69.55.49.194 Dec 5 21:04:30 php1 sshd\[2423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.55.49.194 |
2019-12-06 15:05:07 |
| 45.143.221.23 | attackbots | Attempted to connect 3 times to port 5060 UDP |
2019-12-06 15:08:08 |