City: Campinas
Region: Sao Paulo
Country: Brazil
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 20.192.0.0 - 20.255.255.255
CIDR: 20.192.0.0/10
NetName: MSFT
NetHandle: NET-20-192-0-0-1
Parent: NET20 (NET-20-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2017-10-18
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/20.192.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.201.39.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46995
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;20.201.39.131. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026031600 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 16 18:01:01 CST 2026
;; MSG SIZE rcvd: 106Host 131.39.201.20.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 131.39.201.20.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 167.71.132.134 | attack | Invalid user max from 167.71.132.134 port 57164 |
2019-08-29 16:30:58 |
| 153.35.123.27 | attack | Aug 29 02:07:45 mail sshd\[2748\]: Failed password for invalid user paradigm from 153.35.123.27 port 44610 ssh2 Aug 29 02:24:20 mail sshd\[2957\]: Invalid user webaccess from 153.35.123.27 port 40626 ... |
2019-08-29 16:35:37 |
| 157.253.205.57 | attack | invalid user |
2019-08-29 16:44:06 |
| 116.196.113.152 | attack | 2019-08-29T02:20:00.091509abusebot-2.cloudsearch.cf sshd\[30324\]: Invalid user donna from 116.196.113.152 port 50294 |
2019-08-29 16:36:39 |
| 115.124.30.41 | attackbots | Received: from out30-41.freemail.mail.aliyun.com (out30-41.freemail.mail.aliyun.com [115.124.30.41])
by m0116275.mta.everyone.net (EON-INBOUND) with ESMTP id m0116275.5d55275e.71e390
for <@antihotmail.com>; Wed, 28 Aug 2019 15:50:17 -0700 |
2019-08-29 17:21:28 |
| 177.1.213.19 | attackspam | Aug 29 10:30:09 nextcloud sshd\[16826\]: Invalid user compania from 177.1.213.19 Aug 29 10:30:09 nextcloud sshd\[16826\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 Aug 29 10:30:11 nextcloud sshd\[16826\]: Failed password for invalid user compania from 177.1.213.19 port 12048 ssh2 ... |
2019-08-29 17:12:35 |
| 187.146.61.78 | attack | Automatic report - Port Scan Attack |
2019-08-29 16:52:29 |
| 188.166.235.171 | attack | Aug 29 07:22:38 MK-Soft-VM3 sshd\[25373\]: Invalid user pass123 from 188.166.235.171 port 37866 Aug 29 07:22:38 MK-Soft-VM3 sshd\[25373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.235.171 Aug 29 07:22:40 MK-Soft-VM3 sshd\[25373\]: Failed password for invalid user pass123 from 188.166.235.171 port 37866 ssh2 ... |
2019-08-29 17:19:07 |
| 178.128.72.117 | attackspambots | 178.128.72.117 - - [29/Aug/2019:10:50:17 +0200] "POST [munged]wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000 |
2019-08-29 16:54:54 |
| 5.26.250.185 | attackspambots | Aug 29 10:58:22 rpi sshd[7147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.26.250.185 Aug 29 10:58:23 rpi sshd[7147]: Failed password for invalid user doughty from 5.26.250.185 port 31679 ssh2 |
2019-08-29 16:58:53 |
| 182.139.134.107 | attackbots | Aug 29 09:49:52 server sshd[47882]: Failed password for invalid user ghost from 182.139.134.107 port 9281 ssh2 Aug 29 09:56:11 server sshd[49346]: Failed password for invalid user leonard from 182.139.134.107 port 15425 ssh2 Aug 29 09:59:11 server sshd[50095]: Failed password for invalid user jobs from 182.139.134.107 port 49710 ssh2 |
2019-08-29 16:35:08 |
| 80.82.70.239 | attackbotsspam | Multiport scan : 16 ports scanned 2179 2183 2187 2189 2190 2191 2195 2197 2201 2202 2205 2208 2209 2210 2211 2218 |
2019-08-29 16:41:46 |
| 34.220.124.211 | attackbotsspam | 2019-08-29T08:36:30.009278abusebot-6.cloudsearch.cf sshd\[5920\]: Invalid user sham from 34.220.124.211 port 41490 |
2019-08-29 16:57:05 |
| 181.49.117.136 | attack | Aug 29 02:34:28 legacy sshd[21510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.117.136 Aug 29 02:34:30 legacy sshd[21510]: Failed password for invalid user shield from 181.49.117.136 port 40600 ssh2 Aug 29 02:38:59 legacy sshd[21588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.117.136 ... |
2019-08-29 16:30:29 |
| 113.6.165.20 | attack | Unauthorised access (Aug 29) SRC=113.6.165.20 LEN=40 TTL=49 ID=37486 TCP DPT=8080 WINDOW=7425 SYN Unauthorised access (Aug 29) SRC=113.6.165.20 LEN=40 TTL=49 ID=11106 TCP DPT=8080 WINDOW=35496 SYN Unauthorised access (Aug 28) SRC=113.6.165.20 LEN=40 TTL=49 ID=49528 TCP DPT=8080 WINDOW=58030 SYN |
2019-08-29 16:54:02 |