52.180.144.125

基本信息:

城市(city): Des Moines

省份(region): Iowa

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       52.145.0.0 - 52.191.255.255
CIDR:           52.160.0.0/11, 52.145.0.0/16, 52.148.0.0/14, 52.152.0.0/13, 52.146.0.0/15
NetName:        MSFT
NetHandle:      NET-52-145-0-0-1
Parent:         NET52 (NET-52-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Microsoft Corporation (MSFT)
RegDate:        2015-11-24
Updated:        2021-12-14
Ref:            https://rdap.arin.net/registry/ip/52.145.0.0



OrgName:        Microsoft Corporation
OrgId:          MSFT
Address:        One Microsoft Way
City:           Redmond
StateProv:      WA
PostalCode:     98052
Country:        US
RegDate:        1998-07-10
Updated:        2025-06-10
Comment:        To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment:        * https://cert.microsoft.com.  
Comment:        
Comment:        For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment:        * abuse@microsoft.com.  
Comment:        
Comment:        To report security vulnerabilities in Microsoft products and services, please contact:
Comment:        * secure@microsoft.com.  
Comment:        
Comment:        For legal and law enforcement-related requests, please contact:
Comment:        * msndcc@microsoft.com
Comment:        
Comment:        For routing, peering or DNS issues, please 
Comment:        contact:
Comment:        * IOC@microsoft.com
Ref:            https://rdap.arin.net/registry/entity/MSFT


OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName:   Chaturmohta, Somesh 
OrgRoutingPhone:  +1-425-882-8080 
OrgRoutingEmail:  someshch@microsoft.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/CHATU3-ARIN

OrgTechHandle: BEDAR6-ARIN
OrgTechName:   Bedard, Dawn 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  dabedard@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/BEDAR6-ARIN

OrgTechHandle: IPHOS5-ARIN
OrgTechName:   IPHostmaster, IPHostmaster 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  iphostmaster@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPHOS5-ARIN

OrgTechHandle: SINGH683-ARIN
OrgTechName:   Singh, Prachi 
OrgTechPhone:  +1-425-707-5601 
OrgTechEmail:  pracsin@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/SINGH683-ARIN

OrgAbuseHandle: MAC74-ARIN
OrgAbuseName:   Microsoft Abuse Contact
OrgAbusePhone:  +1-425-882-8080 
OrgAbuseEmail:  abuse@microsoft.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/MAC74-ARIN

OrgTechHandle: MRPD-ARIN
OrgTechName:   Microsoft Routing, Peering, and DNS
OrgTechPhone:  +1-425-882-8080 
OrgTechEmail:  IOC@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/MRPD-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.180.144.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8090
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.180.144.125.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025100700 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 07 20:33:17 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

125.144.180.52.in-addr.arpa domain name pointer azpdcgmcssbt.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
125.144.180.52.in-addr.arpa	name = azpdcgmcssbt.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
13.71.21.123	attackbotsspam	[ssh] SSH attack	2020-08-05 00:56:11
185.220.101.199	attackspambots	Unauthorized access to SSH at 4/Aug/2020:16:28:04 +0000. Received: (SSH-2.0-libssh2_1.9.0)	2020-08-05 01:02:39
186.206.157.34	attack	Aug 4 11:42:24 vps46666688 sshd[19354]: Failed password for root from 186.206.157.34 port 64760 ssh2 ...	2020-08-05 00:59:25
112.220.29.100	attackspam	Aug 4 18:34:09 abendstille sshd\[13892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.220.29.100 user=root Aug 4 18:34:11 abendstille sshd\[13892\]: Failed password for root from 112.220.29.100 port 33730 ssh2 Aug 4 18:38:39 abendstille sshd\[18429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.220.29.100 user=root Aug 4 18:38:42 abendstille sshd\[18429\]: Failed password for root from 112.220.29.100 port 44954 ssh2 Aug 4 18:43:11 abendstille sshd\[23176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.220.29.100 user=root ...	2020-08-05 01:18:02
159.89.48.222	attackspam	159.89.48.222 - - [04/Aug/2020:14:19:41 +0200] "GET /wp-login.php HTTP/1.1" 200 6398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.48.222 - - [04/Aug/2020:14:19:48 +0200] "POST /wp-login.php HTTP/1.1" 200 6649 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.48.222 - - [04/Aug/2020:14:19:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-05 01:09:15
194.26.29.142	attackbotsspam	08/04/2020-12:05:54.423239 194.26.29.142 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-08-05 00:51:51
106.110.235.6	attackbots	20 attempts against mh-ssh on field	2020-08-05 00:54:05
118.163.176.97	attack	Aug 4 18:17:57 rancher-0 sshd[776665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.163.176.97 user=root Aug 4 18:17:59 rancher-0 sshd[776665]: Failed password for root from 118.163.176.97 port 48020 ssh2 ...	2020-08-05 01:06:43
46.101.57.196	attack	46.101.57.196 - - [04/Aug/2020:15:33:50 +0200] "GET /wp-login.php HTTP/1.1" 200 5990 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.57.196 - - [04/Aug/2020:15:33:56 +0200] "POST /wp-login.php HTTP/1.1" 200 6220 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.57.196 - - [04/Aug/2020:15:34:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-05 01:17:16
31.28.163.41	attackspambots	[SID1] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-08-05 00:54:27
61.177.125.242	attackbots	Aug 4 12:15:02 icinga sshd[22021]: Failed password for root from 61.177.125.242 port 60821 ssh2 Aug 4 12:25:49 icinga sshd[39118]: Failed password for root from 61.177.125.242 port 50028 ssh2 ...	2020-08-05 00:35:10
1.10.202.142	attack	Unauthorized connection attempt from IP address 1.10.202.142 on Port 445(SMB)	2020-08-05 01:01:58
58.87.114.13	attackspam	Aug 4 14:09:39 lukav-desktop sshd\[12314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.114.13 user=root Aug 4 14:09:42 lukav-desktop sshd\[12314\]: Failed password for root from 58.87.114.13 port 59262 ssh2 Aug 4 14:11:18 lukav-desktop sshd\[15267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.114.13 user=root Aug 4 14:11:21 lukav-desktop sshd\[15267\]: Failed password for root from 58.87.114.13 port 51232 ssh2 Aug 4 14:13:05 lukav-desktop sshd\[22050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.114.13 user=root	2020-08-05 01:08:45
2401:4900:1958:a337:9d69:be44:7c5e:fdc1	attack	Wordpress attack	2020-08-05 01:04:41
144.64.3.101	attackspambots	Aug 4 06:15:44 firewall sshd[5830]: Failed password for root from 144.64.3.101 port 33436 ssh2 Aug 4 06:19:45 firewall sshd[7735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.64.3.101 user=root Aug 4 06:19:46 firewall sshd[7735]: Failed password for root from 144.64.3.101 port 44440 ssh2 ...	2020-08-05 01:15:03

最近上报的IP列表

198.235.24.212	45.187.123.146	158.94.209.13	78.31.250.141
231.31.42.173	231.31.42.111	46.203.77.149	46.101.110.174
47.254.35.229	104.248.130.244	159.89.12.105	64.227.112.102
209.38.237.181	167.71.42.213	164.90.177.25	159.223.26.129
138.197.177.250	64.227.116.108	209.38.203.91	134.122.90.165