Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
Make a comment on this IP
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       2603:1000:: - 2603:10FF:FFFF:FFFF:FFFF:FFFF:FFFF:FFFF
CIDR:           2603:1000::/24
NetName:        MSFT
NetHandle:      NET6-2603-1000-1
Parent:         NET6-2600 (NET6-2600-1)
NetType:        Direct Allocation
OriginAS:       
Organization:   Microsoft Corporation (MSFT)
RegDate:        2014-06-05
Updated:        2014-06-05
Comment:        To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to: 
Comment:        * https://cert.microsoft.com. 
Comment:        
Comment:        For SPAM and other abuse issues, such as Microsoft Accounts, please contact: 
Comment:        * abuse@microsoft.com. 
Comment:        
Comment:        To report security vulnerabilities in Microsoft products and services, please contact: 
Comment:        * secure@microsoft.com. 
Comment:        
Comment:        For legal and law enforcement-related requests, please contact: 
Comment:        * msndcc@microsoft.com 
Comment:        
Comment:        For routing, peering or DNS issues, please 
Comment:        contact: 
Comment:        * IOC@microsoft.com
Ref:            https://rdap.arin.net/registry/ip/2603:1000::



OrgName:        Microsoft Corporation
OrgId:          MSFT
Address:        One Microsoft Way
City:           Redmond
StateProv:      WA
PostalCode:     98052
Country:        US
RegDate:        1998-07-10
Updated:        2025-06-10
Comment:        To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment:        * https://cert.microsoft.com.  
Comment:        
Comment:        For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment:        * abuse@microsoft.com.  
Comment:        
Comment:        To report security vulnerabilities in Microsoft products and services, please contact:
Comment:        * secure@microsoft.com.  
Comment:        
Comment:        For legal and law enforcement-related requests, please contact:
Comment:        * msndcc@microsoft.com
Comment:        
Comment:        For routing, peering or DNS issues, please 
Comment:        contact:
Comment:        * IOC@microsoft.com
Ref:            https://rdap.arin.net/registry/entity/MSFT


OrgTechHandle: BEDAR6-ARIN
OrgTechName:   Bedard, Dawn 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  dabedard@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/BEDAR6-ARIN

OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName:   Chaturmohta, Somesh 
OrgRoutingPhone:  +1-425-882-8080 
OrgRoutingEmail:  someshch@microsoft.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/CHATU3-ARIN

OrgAbuseHandle: MAC74-ARIN
OrgAbuseName:   Microsoft Abuse Contact
OrgAbusePhone:  +1-425-882-8080 
OrgAbuseEmail:  abuse@microsoft.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/MAC74-ARIN

OrgTechHandle: MRPD-ARIN
OrgTechName:   Microsoft Routing, Peering, and DNS
OrgTechPhone:  +1-425-882-8080 
OrgTechEmail:  IOC@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/MRPD-ARIN

OrgTechHandle: SINGH683-ARIN
OrgTechName:   Singh, Prachi 
OrgTechPhone:  +1-425-707-5601 
OrgTechEmail:  pracsin@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/SINGH683-ARIN

OrgTechHandle: IPHOS5-ARIN
OrgTechName:   IPHostmaster, IPHostmaster 
OrgTechPhone:  +1-425-538-6637 
OrgTechEmail:  iphostmaster@microsoft.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPHOS5-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
Dig info:
b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 2603:10b6:101:21::3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 46537
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;2603:10b6:101:21::3.		IN	A

;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Fri Sep 19 09:36:03 CST 2025
;; MSG SIZE  rcvd: 48

'
Host info
Host 3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.2.0.0.1.0.1.0.6.b.0.1.3.0.6.2.ip6.arpa not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.2.0.0.1.0.1.0.6.b.0.1.3.0.6.2.ip6.arpa: NXDOMAIN
Related comments:
IP Type Details Datetime
192.144.184.199 attack 
Unauthorized connection attempt detected from IP address 192.144.184.199 to port 2220 [J]
 2020-02-05 14:03:14
220.191.208.204 attack 
Unauthorized connection attempt detected from IP address 220.191.208.204 to port 2220 [J]
 2020-02-05 13:34:37
91.211.247.59 attack 
Autoban   91.211.247.59 AUTH/CONNECT
 2020-02-05 13:53:40
117.0.59.186 attackspambots 
MultiHost/MultiPort Probe, Scan, Hack -
 2020-02-05 13:27:41
222.186.173.183 attackspam 
Feb  5 06:31:18 vpn01 sshd[30809]: Failed password for root from 222.186.173.183 port 64492 ssh2
Feb  5 06:31:20 vpn01 sshd[30809]: Failed password for root from 222.186.173.183 port 64492 ssh2
...
 2020-02-05 13:36:27
121.46.26.126 attack 
Feb  5 06:17:48 vpn01 sshd[30515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.26.126
Feb  5 06:17:50 vpn01 sshd[30515]: Failed password for invalid user suporte from 121.46.26.126 port 59798 ssh2
...
 2020-02-05 14:01:38
192.169.243.124 attackbots 
Autoban   192.169.243.124 AUTH/CONNECT
 2020-02-05 13:33:26
218.92.0.148 attack 
Unauthorized connection attempt detected from IP address 218.92.0.148 to port 22 [J]
 2020-02-05 13:34:24
103.219.112.47 attackbots 
$lgm
 2020-02-05 13:30:38
222.186.175.147 attackspambots 
Failed password for root from 222.186.175.147 port 23886 ssh2
Failed password for root from 222.186.175.147 port 23886 ssh2
Failed password for root from 222.186.175.147 port 23886 ssh2
Failed password for root from 222.186.175.147 port 23886 ssh2
 2020-02-05 13:24:22
106.13.36.115 attackspambots 
Unauthorized connection attempt detected from IP address 106.13.36.115 to port 2220 [J]
 2020-02-05 14:00:30
139.155.55.30 attack 
Feb  5 02:54:45 vps46666688 sshd[5031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.55.30
Feb  5 02:54:47 vps46666688 sshd[5031]: Failed password for invalid user shonta from 139.155.55.30 port 51042 ssh2
...
 2020-02-05 14:06:44
137.59.0.6 attackbotsspam 
2020-02-05T05:51:13.873457  sshd[17497]: Invalid user jenkins from 137.59.0.6 port 54402
2020-02-05T05:51:13.887934  sshd[17497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.59.0.6
2020-02-05T05:51:13.873457  sshd[17497]: Invalid user jenkins from 137.59.0.6 port 54402
2020-02-05T05:51:15.799851  sshd[17497]: Failed password for invalid user jenkins from 137.59.0.6 port 54402 ssh2
2020-02-05T05:55:03.305428  sshd[17605]: Invalid user cuongtv from 137.59.0.6 port 41063
...
 2020-02-05 13:29:47
222.186.15.158 attackbots 
Feb  5 06:56:19 dcd-gentoo sshd[3980]: User root from 222.186.15.158 not allowed because none of user's groups are listed in AllowGroups
Feb  5 06:56:21 dcd-gentoo sshd[3980]: error: PAM: Authentication failure for illegal user root from 222.186.15.158
Feb  5 06:56:19 dcd-gentoo sshd[3980]: User root from 222.186.15.158 not allowed because none of user's groups are listed in AllowGroups
Feb  5 06:56:21 dcd-gentoo sshd[3980]: error: PAM: Authentication failure for illegal user root from 222.186.15.158
Feb  5 06:56:19 dcd-gentoo sshd[3980]: User root from 222.186.15.158 not allowed because none of user's groups are listed in AllowGroups
Feb  5 06:56:21 dcd-gentoo sshd[3980]: error: PAM: Authentication failure for illegal user root from 222.186.15.158
Feb  5 06:56:21 dcd-gentoo sshd[3980]: Failed keyboard-interactive/pam for invalid user root from 222.186.15.158 port 27965 ssh2
...
 2020-02-05 13:58:33
212.47.253.178 attack 
Feb  4 19:54:16 auw2 sshd\[31932\]: Invalid user teamspeak1 from 212.47.253.178
Feb  4 19:54:16 auw2 sshd\[31932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178-253-47-212.rev.cloud.scaleway.com
Feb  4 19:54:18 auw2 sshd\[31932\]: Failed password for invalid user teamspeak1 from 212.47.253.178 port 60958 ssh2
Feb  4 19:57:36 auw2 sshd\[32192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178-253-47-212.rev.cloud.scaleway.com  user=root
Feb  4 19:57:38 auw2 sshd\[32192\]: Failed password for root from 212.47.253.178 port 33862 ssh2
 2020-02-05 14:00:51

Recently Reported IPs

158.94.208.219 192.168.2.200 161.35.11.45 65.58.176.203
64.62.156.137 118.249.231.51 20.163.5.243 103.235.221.28
180.213.197.233 51.159.214.48 20.118.209.103 124.225.164.8
45.32.204.212 45.32.204.205 129.28.14.231 183.230.181.24
45.32.204.163 45.32.204.192 61.242.155.179 57.158.76.204