City: Dublin
Region: Leinster
Country: Ireland
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 20.192.0.0 - 20.255.255.255
CIDR: 20.192.0.0/10
NetName: MSFT
NetHandle: NET-20-192-0-0-1
Parent: NET20 (NET-20-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Microsoft Corporation (MSFT)
RegDate: 2017-10-18
Updated: 2021-12-14
Ref: https://rdap.arin.net/registry/ip/20.192.0.0
OrgName: Microsoft Corporation
OrgId: MSFT
Address: One Microsoft Way
City: Redmond
StateProv: WA
PostalCode: 98052
Country: US
RegDate: 1998-07-10
Updated: 2025-06-10
Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
Comment: * https://cert.microsoft.com.
Comment:
Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
Comment: * abuse@microsoft.com.
Comment:
Comment: To report security vulnerabilities in Microsoft products and services, please contact:
Comment: * secure@microsoft.com.
Comment:
Comment: For legal and law enforcement-related requests, please contact:
Comment: * msndcc@microsoft.com
Comment:
Comment: For routing, peering or DNS issues, please
Comment: contact:
Comment: * IOC@microsoft.com
Ref: https://rdap.arin.net/registry/entity/MSFT
OrgTechHandle: BEDAR6-ARIN
OrgTechName: Bedard, Dawn
OrgTechPhone: +1-425-538-6637
OrgTechEmail: dabedard@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/BEDAR6-ARIN
OrgTechHandle: MRPD-ARIN
OrgTechName: Microsoft Routing, Peering, and DNS
OrgTechPhone: +1-425-882-8080
OrgTechEmail: IOC@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
OrgTechHandle: IPHOS5-ARIN
OrgTechName: IPHostmaster, IPHostmaster
OrgTechPhone: +1-425-538-6637
OrgTechEmail: iphostmaster@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPHOS5-ARIN
OrgTechHandle: SINGH683-ARIN
OrgTechName: Singh, Prachi
OrgTechPhone: +1-425-707-5601
OrgTechEmail: pracsin@microsoft.com
OrgTechRef: https://rdap.arin.net/registry/entity/SINGH683-ARIN
OrgRoutingHandle: CHATU3-ARIN
OrgRoutingName: Chaturmohta, Somesh
OrgRoutingPhone: +1-425-882-8080
OrgRoutingEmail: someshch@microsoft.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CHATU3-ARIN
OrgAbuseHandle: MAC74-ARIN
OrgAbuseName: Microsoft Abuse Contact
OrgAbusePhone: +1-425-882-8080
OrgAbuseEmail: abuse@microsoft.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.223.183.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13613
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;20.223.183.68. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026040901 1800 900 604800 86400
;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 10 04:30:02 CST 2026
;; MSG SIZE rcvd: 106Host 68.183.223.20.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 68.183.223.20.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 212.64.77.182 | attackspam | Jan 24 22:52:42 MK-Soft-VM6 sshd[27842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.77.182 Jan 24 22:52:45 MK-Soft-VM6 sshd[27842]: Failed password for invalid user abc from 212.64.77.182 port 46944 ssh2 ... |
2020-01-25 05:56:22 |
| 122.51.188.20 | attack | Jan 24 21:49:23 DAAP sshd[32033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.188.20 user=root Jan 24 21:49:26 DAAP sshd[32033]: Failed password for root from 122.51.188.20 port 45768 ssh2 Jan 24 21:52:34 DAAP sshd[32098]: Invalid user test from 122.51.188.20 port 41416 Jan 24 21:52:34 DAAP sshd[32098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.188.20 Jan 24 21:52:34 DAAP sshd[32098]: Invalid user test from 122.51.188.20 port 41416 Jan 24 21:52:35 DAAP sshd[32098]: Failed password for invalid user test from 122.51.188.20 port 41416 ssh2 ... |
2020-01-25 05:31:47 |
| 192.144.176.136 | attackbotsspam | 2020-01-24T14:31:36.0675991495-001 sshd[8916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.176.136 2020-01-24T14:31:36.0585891495-001 sshd[8916]: Invalid user user from 192.144.176.136 port 55178 2020-01-24T14:31:37.7437751495-001 sshd[8916]: Failed password for invalid user user from 192.144.176.136 port 55178 ssh2 2020-01-24T15:32:47.0491261495-001 sshd[11331]: Invalid user omv from 192.144.176.136 port 45374 2020-01-24T15:32:47.0610321495-001 sshd[11331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.176.136 2020-01-24T15:32:47.0491261495-001 sshd[11331]: Invalid user omv from 192.144.176.136 port 45374 2020-01-24T15:32:48.7016401495-001 sshd[11331]: Failed password for invalid user omv from 192.144.176.136 port 45374 ssh2 2020-01-24T15:36:04.9758801495-001 sshd[11452]: Invalid user uftp from 192.144.176.136 port 44728 2020-01-24T15:36:04.9833851495-001 sshd[11452]: pam_unix(sshd:au ... |
2020-01-25 05:36:25 |
| 46.224.1.114 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-01-25 06:06:01 |
| 154.8.231.250 | attackbotsspam | 2020-01-24T21:54:16.326968shield sshd\[28122\]: Invalid user sabnzbd from 154.8.231.250 port 57986 2020-01-24T21:54:16.330225shield sshd\[28122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.231.250 2020-01-24T21:54:18.476686shield sshd\[28122\]: Failed password for invalid user sabnzbd from 154.8.231.250 port 57986 ssh2 2020-01-24T21:55:57.473968shield sshd\[28616\]: Invalid user jenns from 154.8.231.250 port 37104 2020-01-24T21:55:57.478174shield sshd\[28616\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.231.250 |
2020-01-25 06:07:19 |
| 79.232.195.150 | attack | Honeypot attack, port: 81, PTR: p4FE8C396.dip0.t-ipconnect.de. |
2020-01-25 05:42:14 |
| 134.119.223.66 | attack | [2020-01-24 16:36:42] NOTICE[1148][C-00001fea] chan_sip.c: Call from '' (134.119.223.66:59329) to extension '220101148614236058' rejected because extension not found in context 'public'. [2020-01-24 16:36:42] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-01-24T16:36:42.087-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="220101148614236058",SessionID="0x7fd82c047508",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.223.66/59329",ACLName="no_extension_match" [2020-01-24 16:37:32] NOTICE[1148][C-00001ff0] chan_sip.c: Call from '' (134.119.223.66:50826) to extension '330101148614236058' rejected because extension not found in context 'public'. [2020-01-24 16:37:32] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-01-24T16:37:32.400-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="330101148614236058",SessionID="0x7fd82c1014f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAdd ... |
2020-01-25 05:49:05 |
| 176.100.57.195 | attackbots | Honeypot attack, port: 445, PTR: PTR record not found |
2020-01-25 05:33:23 |
| 188.217.41.101 | attack | Unauthorized connection attempt detected from IP address 188.217.41.101 to port 5555 [J] |
2020-01-25 06:06:54 |
| 58.246.51.190 | attack | Unauthorized connection attempt detected from IP address 58.246.51.190 to port 22 [T] |
2020-01-25 06:05:02 |
| 36.230.92.214 | attack | Fail2Ban Ban Triggered |
2020-01-25 05:28:49 |
| 107.173.46.22 | attack | Unauthorized connection attempt detected from IP address 107.173.46.22 to port 3389 |
2020-01-25 06:08:07 |
| 61.164.13.233 | attack | Honeypot attack, port: 445, PTR: PTR record not found |
2020-01-25 06:00:48 |
| 31.201.90.83 | attackbotsspam | Autoban 31.201.90.83 AUTH/CONNECT |
2020-01-25 05:49:20 |
| 106.52.89.51 | attackbotsspam | 21 attempts against mh-ssh on echoip |
2020-01-25 06:00:17 |